From 119ddb45b87979b71df8afb8a6da6b6e9581da80 Mon Sep 17 00:00:00 2001 From: Philippe Perrin Date: Thu, 29 Sep 2022 16:47:19 +0200 Subject: SONAR-17393 E2E test for owasp-asvs security report --- .../src/main/java/org/sonar/xoo/rule/XooRulesDefinition.java | 7 +++++++ 1 file changed, 7 insertions(+) (limited to 'plugins/sonar-xoo-plugin/src') diff --git a/plugins/sonar-xoo-plugin/src/main/java/org/sonar/xoo/rule/XooRulesDefinition.java b/plugins/sonar-xoo-plugin/src/main/java/org/sonar/xoo/rule/XooRulesDefinition.java index 399e70c9d70..c15d84a32e8 100644 --- a/plugins/sonar-xoo-plugin/src/main/java/org/sonar/xoo/rule/XooRulesDefinition.java +++ b/plugins/sonar-xoo-plugin/src/main/java/org/sonar/xoo/rule/XooRulesDefinition.java @@ -251,6 +251,13 @@ public class XooRulesDefinition implements RulesDefinition { .addPciDss(PciDssVersion.V3_2, "10.1a.2c"); } + if (version != null && version.isGreaterThanOrEqual(Version.create(9, 6))) { + hotspot + .addOwaspAsvs(OwaspAsvsVersion.V4_0, "3.1.1", "4.2.2"); + oneVulnerabilityIssuePerModule + .addOwaspAsvs(OwaspAsvsVersion.V4_0, "11.1.2", "14.5.1"); + } + NewRule hotspotWithContexts = repo.createRule(HotspotWithContextsSensor.RULE_KEY) .setName("Find security hotspots with contexts") .setType(RuleType.SECURITY_HOTSPOT) -- cgit v1.2.3