From: Zipeng WU <zipeng.wu@sonarsource.com>
Date: Wed, 3 Mar 2021 15:59:44 +0000 (+0100)
Subject: SONAR-14536 Add Security Report PDF
X-Git-Tag: 8.8.0.42792~43
X-Git-Url: https://source.dussan.org/?a=commitdiff_plain;h=19b1cc5031afac8928aa7dff6370f96d76390a1a;p=sonarqube.git

SONAR-14536 Add Security Report PDF
---

diff --git a/server/sonar-server-common/src/main/java/org/sonar/server/security/SecurityStandards.java b/server/sonar-server-common/src/main/java/org/sonar/server/security/SecurityStandards.java
index 22f10f78d5a..a6473f10db6 100644
--- a/server/sonar-server-common/src/main/java/org/sonar/server/security/SecurityStandards.java
+++ b/server/sonar-server-common/src/main/java/org/sonar/server/security/SecurityStandards.java
@@ -115,20 +115,20 @@ public final class SecurityStandards {
   public enum SQCategory {
     BUFFER_OVERFLOW("buffer-overflow", HIGH),
     SQL_INJECTION("sql-injection", HIGH),
+    RCE("rce", MEDIUM),
+    OBJECT_INJECTION("object-injection", LOW),
     COMMAND_INJECTION("command-injection", HIGH),
     PATH_TRAVERSAL_INJECTION("path-traversal-injection", HIGH),
     LDAP_INJECTION("ldap-injection", LOW),
     XPATH_INJECTION("xpath-injection", LOW),
-    RCE("rce", MEDIUM),
+    LOG_INJECTION("log-injection", LOW),
+    XXE("xxe", MEDIUM),
+    XSS("xss", HIGH),
     DOS("dos", MEDIUM),
     SSRF("ssrf", MEDIUM),
     CSRF("csrf", HIGH),
-    XSS("xss", HIGH),
-    LOG_INJECTION("log-injection", LOW),
     HTTP_RESPONSE_SPLITTING("http-response-splitting", LOW),
     OPEN_REDIRECT("open-redirect", MEDIUM),
-    XXE("xxe", MEDIUM),
-    OBJECT_INJECTION("object-injection", LOW),
     WEAK_CRYPTOGRAPHY("weak-cryptography", MEDIUM),
     AUTH("auth", HIGH),
     INSECURE_CONF("insecure-conf", LOW),