From: Amélie Renard <44666826+amelie-renard-sonarsource@users.noreply.github.com> Date: Thu, 22 Jul 2021 13:58:35 +0000 (+0200) Subject: CPP-3167 Update "misra" and "based-on-misra" documentation X-Git-Tag: 9.1.0.47736~209 X-Git-Url: https://source.dussan.org/?a=commitdiff_plain;h=e62396f7c1d7b5267e982f7a200f291ab137387a;p=sonarqube.git CPP-3167 Update "misra" and "based-on-misra" documentation --- diff --git a/server/sonar-docs/src/pages/user-guide/built-in-rule-tags.md b/server/sonar-docs/src/pages/user-guide/built-in-rule-tags.md index c21506a16aa..d4b2091b27a 100644 --- a/server/sonar-docs/src/pages/user-guide/built-in-rule-tags.md +++ b/server/sonar-docs/src/pages/user-guide/built-in-rule-tags.md @@ -15,7 +15,6 @@ Tags are a way to categorize rules and issues. Issues inherit the tags on the ru * [cwe](https://rules.sonarsource.com/java/tag/cwe) - relates to a rule in the [Common Weakness Enumeration](http://cwe.mitre.org/). For more on CWE and on security-related rules in general, see [Security-related rules](/user-guide/security-rules/). * [design](https://rules.sonarsource.com/java/tag/design) - there is something questionable about the design of the code * [lock-in](https://rules.sonarsource.com/java/tag/lock-in) - environment-specific features are used -* [misra](https://rules.sonarsource.com/java/tag/misra) - relates to a rule in one of the [MISRA](http://www.misra.org.uk/) standards. While the MISRA rules are primarily about C and C++, many of them are not language-specific (E.G. don't use a float as a loop counter) but are simply good programming practices. That's why you'll see these tags on non-C/C++ rules. * [owasp](https://rules.sonarsource.com/java/tag/owasp) - relates to a rule in the [OWASP Top Ten](https://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project) security standards. Note, that the OWASP Top Ten is a list of high-level vulnerabilities which translates to many, many potential rules. * [pitfall](https://rules.sonarsource.com/java/tag/pitfall) - nothing is wrong yet, but something could go wrong in the future; a trap has been set for the next person, and they'll probably fall into it and screw up the code. * [sans-top25](https://rules.sonarsource.com/java/tag/sans-top25) - This tag is based on outdated statistics and should no longer be used. Instead, it's recommended to rely on the "CWE Top 25" reports, which are available in [Enterprise Edition](https://redirect.sonarsource.com/editions/enterprise.html).