Add change note + update query ID

joefarebrother · joefarebrother · commit 4967fe0b7772 · 2023-09-15T10:25:26.000+01:00
diff --git a/csharp/ql/src/Security Features/CWE-639/InsecureDirectObjectReference.ql b/csharp/ql/src/Security Features/CWE-639/InsecureDirectObjectReference.ql
@@ -6,7 +6,7 @@
  * @problem.severity error
  * @security-severity 7.5
  * @precision medium
- * @id cs/insecure-direct-object-reference
+ * @id cs/web/insecure-direct-object-reference
  * @tags security
  *       external/cwe-639
  */
diff --git a/csharp/ql/src/change-notes/2023-08-21-insecure-direct-object-reference.md b/csharp/ql/src/change-notes/2023-08-21-insecure-direct-object-reference.md
@@ -0,0 +1,4 @@
+---
+category: newQuery
+---
+* Added a new query, `cs/web/insecure-direct-object-reference`, to find instances of missing authorization checks for resources selected by an ID parameter.

-Original file line number
+Diff line change
@@ @@ -0,0 +1,4 @@ @@
 +---
 +category: newQuery
 +---
 +* Added a new query, `cs/web/insecure-direct-object-reference`, to find instances of missing authorization checks for resources selected by an ID parameter.