[Auto] Latest versions as of 2025-07-02T0213

TeamModerne · TeamModerne · commit 4a356cca9bcd · 2025-07-02T02:13:16.000Z
diff --git a/docs/recipes/cryptography/README.md b/docs/recipes/cryptography/README.md
@@ -21,6 +21,7 @@ _Recipes that include further recipes, often including the individual recipes be
 * [Find hardcoded numbers passed into `RSAKeyGenParameterSpec`](./findhardcodedrsakeygenparameterspec.md)
 * [Find hardcoded protocols on SSL socket creation](./findhardcodedprotocolsonsslsocketcreation.md)
 * [Find hardcoded protocols on SSL sockets](./findhardcodedprotocolsonsslsocketsetprotocols.md)
+* [Find insecure `Security.setProperty` calls](./findinsecuresecuritysetproperties.md)
 * [Find where `SSLContext` is set as system default](./findsslcontextdefault.md)
 * [Hardcoded algorithm specific parameters](./findhardcodedalgorithmspecificparameters.md)
 * [Hardcoded ciphersuite choice](./findhardcodedciphersuitechoice.md)
diff --git a/docs/recipes/cryptography/findinsecuresecuritysetproperties.md b/docs/recipes/cryptography/findinsecuresecuritysetproperties.md
@@ -0,0 +1,126 @@
+---
+sidebar_label: "Find insecure Security.setProperty calls"
+---
+
+import Tabs from '@theme/Tabs';
+import TabItem from '@theme/TabItem';
+
+# Find insecure `Security.setProperty` calls
+
+**io.moderne.cryptography.FindInsecureSecuritySetProperties**
+
+_Locate calls to `Security.setProperty` that set insecure properties._
+
+## Recipe source
+
+This recipe is only available to users of [Moderne](https://docs.moderne.io/).
+
+
+This recipe is available under the [Moderne Proprietary License](https://docs.moderne.io/licensing/overview).
+
+
+## Usage
+
+This recipe has no required configuration options. Users of Moderne can run it via the Moderne CLI:
+<Tabs groupId="projectType">
+
+
+<TabItem value="moderne-cli" label="Moderne CLI">
+
+You will need to have configured the [Moderne CLI](https://docs.moderne.io/user-documentation/moderne-cli/getting-started/cli-intro) on your machine before you can run the following command.
+
+```shell title="shell"
+mod run . --recipe FindInsecureSecuritySetProperties
+```
+
+If the recipe is not available locally, then you can install it using:
+```shell
+mod config recipes jar install io.moderne.recipe:rewrite-cryptography:{{VERSION_IO_MODERNE_RECIPE_REWRITE_CRYPTOGRAPHY}}
+```
+</TabItem>
+</Tabs>
+
+## See how this recipe works across multiple open-source repositories
+
+import RecipeCallout from '@site/src/components/ModerneLink';
+
+<RecipeCallout link="https://app.moderne.io/recipes/io.moderne.cryptography.FindInsecureSecuritySetProperties" />
+
+The community edition of the Moderne platform enables you to easily run recipes across thousands of open-source repositories.
+
+Please [contact Moderne](https://moderne.io/product) for more information about safely running the recipes on your own codebase in a private SaaS.
+## Data Tables
+
+<Tabs groupId="data-tables">
+<TabItem value="io.moderne.cryptography.table.InsecureSetProperties" label="InsecureSetProperties">
+
+### Insecure `Security.setProperty(..)` uses.
+**io.moderne.cryptography.table.InsecureSetProperties**
+
+_An itemization of the properties used in such calls_
+
+| Column Name | Description |
+| ----------- | ----------- |
+| Source code | The source code where the insecure property is defined, which may not contain a `Security.setProperty(..)` call directly if the property was defined somewhere and through data flow analysis we've concluded that it is later used in a `Security.setProperty(..)` call. |
+| Property | The property that is set insecurely, e.g. `crypto.policy`. |
+
+</TabItem>
+
+<TabItem value="org.openrewrite.table.SourcesFileResults" label="SourcesFileResults">
+
+### Source files that had results
+**org.openrewrite.table.SourcesFileResults**
+
+_Source files that were modified by the recipe run._
+
+| Column Name | Description |
+| ----------- | ----------- |
+| Source path before the run | The source path of the file before the run. `null` when a source file was created during the run. |
+| Source path after the run | A recipe may modify the source path. This is the path after the run. `null` when a source file was deleted during the run. |
+| Parent of the recipe that made changes | In a hierarchical recipe, the parent of the recipe that made a change. Empty if this is the root of a hierarchy or if the recipe is not hierarchical at all. |
+| Recipe that made changes | The specific recipe that made a change. |
+| Estimated time saving | An estimated effort that a developer to fix manually instead of using this recipe, in unit of seconds. |
+| Cycle | The recipe cycle in which the change was made. |
+
+</TabItem>
+
+<TabItem value="org.openrewrite.table.SourcesFileErrors" label="SourcesFileErrors">
+
+### Source files that errored on a recipe
+**org.openrewrite.table.SourcesFileErrors**
+
+_The details of all errors produced by a recipe run._
+
+| Column Name | Description |
+| ----------- | ----------- |
+| Source path | The file that failed to parse. |
+| Recipe that made changes | The specific recipe that made a change. |
+| Stack trace | The stack trace of the failure. |
+
+</TabItem>
+
+<TabItem value="org.openrewrite.table.RecipeRunStats" label="RecipeRunStats">
+
+### Recipe performance
+**org.openrewrite.table.RecipeRunStats**
+
+_Statistics used in analyzing the performance of recipes._
+
+| Column Name | Description |
+| ----------- | ----------- |
+| The recipe | The recipe whose stats are being measured both individually and cumulatively. |
+| Source file count | The number of source files the recipe ran over. |
+| Source file changed count | The number of source files which were changed in the recipe run. Includes files created, deleted, and edited. |
+| Cumulative scanning time (ns) | The total time spent across the scanning phase of this recipe. |
+| 99th percentile scanning time (ns) | 99 out of 100 scans completed in this amount of time. |
+| Max scanning time (ns) | The max time scanning any one source file. |
+| Cumulative edit time (ns) | The total time spent across the editing phase of this recipe. |
+| 99th percentile edit time (ns) | 99 out of 100 edits completed in this amount of time. |
+| Max edit time (ns) | The max time editing any one source file. |
+
+</TabItem>
+
+</Tabs>
+
+## Contributors
+[Jonathan Schneider](mailto:jkschneider@gmail.com), [Tim te Beek](mailto:tim@moderne.io)
diff --git a/docs/recipes/cryptography/findsecuritysetproperties.md b/docs/recipes/cryptography/findsecuritysetproperties.md
@@ -58,6 +58,20 @@ Please [contact Moderne](https://moderne.io/product) for more information about
 ## Data Tables
 
 <Tabs groupId="data-tables">
+<TabItem value="io.moderne.cryptography.table.InsecureSetProperties" label="InsecureSetProperties">
+
+### Insecure `Security.setProperty(..)` uses.
+**io.moderne.cryptography.table.InsecureSetProperties**
+
+_An itemization of the properties used in such calls_
+
+| Column Name | Description |
+| ----------- | ----------- |
+| Source code | The source code where the insecure property is defined, which may not contain a `Security.setProperty(..)` call directly if the property was defined somewhere and through data flow analysis we've concluded that it is later used in a `Security.setProperty(..)` call. |
+| Property | The property that is set insecurely, e.g. `crypto.policy`. |
+
+</TabItem>
+
 <TabItem value="org.openrewrite.table.SourcesFileResults" label="SourcesFileResults">
 
 ### Source files that had results
diff --git a/docs/recipes/cryptography/findsslconfiguration.md b/docs/recipes/cryptography/findsslconfiguration.md
@@ -61,11 +61,11 @@ _Records configuration of Secure Socket Layer (SSL) and Transport Layer Security
 
 | Column Name | Description |
 | ----------- | ----------- |
-| Source Path | Path to the source file where the SSL configuration is defined. |
+| Source path | Path to the source file where the SSL configuration is defined. |
 | Protocol | Protocol used by SSL to encrypt communications. e.g.: TLS |
-| Enabled Protocols | List of protocols enabled for SSL/TLS communication. e.g.: TLSv1.2|TLSv1.3 |
+| Enabled protocols | List of protocols enabled for SSL/TLS communication. e.g.: TLSv1.2|TLSv1.3 |
 | Ciphers | List of ciphers used for SSL/TLS encryption. e.g.: TLS_AES_128_GCM_SHA256|TLS_AES_256_GCM_SHA384 |
-| SSL Bundle | Spring SSL configuration bundle name |
+| SSL bundle | Spring SSL configuration bundle name |
 
 </TabItem>
 
@@ -126,4 +126,4 @@ _Statistics used in analyzing the performance of recipes._
 </Tabs>
 
 ## Contributors
-[Sam Snyder](mailto:sam@moderne.io), [Tim te Beek](mailto:tim@moderne.io)
+[Sam Snyder](mailto:sam@moderne.io), [Tim te Beek](mailto:tim@moderne.io), [Jonathan Schneider](mailto:jkschneider@gmail.com)
diff --git a/docs/recipes/cryptography/postquantumcryptography.md b/docs/recipes/cryptography/postquantumcryptography.md
@@ -127,6 +127,20 @@ _The text of matching method invocations._
 
 </TabItem>
 
+<TabItem value="io.moderne.cryptography.table.InsecureSetProperties" label="InsecureSetProperties">
+
+### Insecure `Security.setProperty(..)` uses.
+**io.moderne.cryptography.table.InsecureSetProperties**
+
+_An itemization of the properties used in such calls_
+
+| Column Name | Description |
+| ----------- | ----------- |
+| Source code | The source code where the insecure property is defined, which may not contain a `Security.setProperty(..)` call directly if the property was defined somewhere and through data flow analysis we've concluded that it is later used in a `Security.setProperty(..)` call. |
+| Property | The property that is set insecurely, e.g. `crypto.policy`. |
+
+</TabItem>
+
 <TabItem value="io.moderne.cryptography.table.SslConfiguration" label="SslConfiguration">
 
 ### Ssl configuration
@@ -136,11 +150,11 @@ _Records configuration of Secure Socket Layer (SSL) and Transport Layer Security
 
 | Column Name | Description |
 | ----------- | ----------- |
-| Source Path | Path to the source file where the SSL configuration is defined. |
+| Source path | Path to the source file where the SSL configuration is defined. |
 | Protocol | Protocol used by SSL to encrypt communications. e.g.: TLS |
-| Enabled Protocols | List of protocols enabled for SSL/TLS communication. e.g.: TLSv1.2|TLSv1.3 |
+| Enabled protocols | List of protocols enabled for SSL/TLS communication. e.g.: TLSv1.2|TLSv1.3 |
 | Ciphers | List of ciphers used for SSL/TLS encryption. e.g.: TLS_AES_128_GCM_SHA256|TLS_AES_256_GCM_SHA384 |
-| SSL Bundle | Spring SSL configuration bundle name |
+| SSL bundle | Spring SSL configuration bundle name |
 
 </TabItem>
 
diff --git a/docs/recipes/gradle/changedependency.md b/docs/recipes/gradle/changedependency.md
@@ -187,6 +187,25 @@ _Attempts to resolve maven metadata that failed._
 
 </TabItem>
 
+<TabItem value="org.openrewrite.maven.table.MavenMetadataFailures" label="MavenMetadataFailures">
+
+### Maven metadata failures
+**org.openrewrite.maven.table.MavenMetadataFailures**
+
+_Attempts to resolve maven metadata that failed._
+
+| Column Name | Description |
+| ----------- | ----------- |
+| Group id | The groupId of the artifact for which the metadata download failed. |
+| Artifact id | The artifactId of the artifact for which the metadata download failed. |
+| Version | The version of the artifact for which the metadata download failed. |
+| Maven repository | The URL of the Maven repository that the metadata download failed on. |
+| Snapshots | Does the repository support snapshots. |
+| Releases | Does the repository support releases. |
+| Failure | The reason the metadata download failed. |
+
+</TabItem>
+
 <TabItem value="org.openrewrite.table.SourcesFileResults" label="SourcesFileResults">
 
 ### Source files that had results
