wuhaoyang
|
1235996c01
|
修复xml和yml文件无法提示报错行的bug
|
9 months ago |
wuhaoyang
|
ae3b89750c
|
删除html语言扫描
|
9 months ago |
wuhaoyang
|
14b4286761
|
修改部分规则bug
|
9 months ago |
wuhaoyang
|
3a92071b20
|
Merge remote-tracking branch 'origin/master'
|
9 months ago |
wuhaoyang
|
4dd22a1901
|
添加cxx被测件
|
9 months ago |
renfengshan
|
b3c912b16b
|
更新“应返回该私有数值的副本”准则
|
9 months ago |
wuhaoyang
|
6bc841bd70
|
cxx添加扫描规则以及log文件扫描配置
|
10 months ago |
wuhaoyang
|
99536a6b4b
|
cxx优化准则以及配置
|
10 months ago |
wuhaoyang
|
4488230206
|
修改优化准则以及被测件
|
10 months ago |
wuhaoyang
|
65ed9f4927
|
优化准则:在访问文件或目录前对路径名进行验证
|
10 months ago |
wuhaoyang
|
576eec8ba0
|
Merge remote-tracking branch 'origin/master'
|
10 months ago |
renfengshan
|
d4db3b764b
|
更新“应返回该私有数值的副本”准则
|
10 months ago |
wuhaoyang
|
5529fed8a2
|
Merge remote-tracking branch 'origin/master'
|
10 months ago |
renfengshan
|
000f2d50e5
|
更新“应返回该私有数值的副本”准则
|
10 months ago |
wuhaoyang
|
9e2e3d1f0e
|
Merge remote-tracking branch 'origin/master'
|
10 months ago |
renfengshan
|
423d63d4f2
|
更新“应返回该私有数值的副本”准则
|
10 months ago |
wuhaoyang
|
e76715936e
|
武浩阳 工作暂存
|
10 months ago |
wuhaoyang
|
b4147782d6
|
修改c++封头
|
10 months ago |
wuhaoyang
|
b6e02e866c
|
优化java配置文件被测件
|
10 months ago |
wuhaoyang
|
c480a220c7
|
添加java配置文件被测件
|
10 months ago |
Guo XIn
|
4266e434e6
|
修复:因增加项目级检查导致单元测试执行失败的问题
|
10 months ago |
Guo XIn
|
7355607511
|
修复:使用realloc函数前应先清空敏感信息规则检查误报的问题
|
10 months ago |
Guo XIn
|
9211d5e728
|
修复:mvn verify命令执行失败的问题
|
10 months ago |
wuhaoyang
|
9e87bd6efb
|
添加java被测件
|
10 months ago |
wuhaoyang
|
45501f46f4
|
修改配置
|
10 months ago |
wuhaoyang
|
395f16889e
|
优化准则
|
10 months ago |
wuhaoyang
|
8dbb0daa4a
|
删除测试类无用代码
|
10 months ago |
wuhaoyang
|
292ff060d6
|
优化Java被测件
|
10 months ago |
wuhaoyang
|
07c325f619
|
添加规则条数
|
10 months ago |
RenFengJiang
|
10ac3cc724
|
优化:优化误报问题
|
10 months ago |
RenFengJiang
|
99060ade51
|
优化:优化被测件
|
10 months ago |
wuhaoyang
|
064bb0309e
|
优化准则:在程序中指定允许访问的文件或目录,在访问文件或目录前对路径名进行验证,确保仅允许访问指定的文件或目录
|
10 months ago |
wuhaoyang
|
28d4ce998d
|
优化准则:应使用单向加密算法对口令进行加密并存储
|
10 months ago |
Guo XIn
|
c0365cb297
|
新增准则:应通过用户名口令、数字证书等其他手段对主机身份进行鉴别
|
10 months ago |
RenFengJiang
|
aaee78b3fd
|
优化:添加获取判断中参数方式
|
10 months ago |
RenFengJiang
|
b2e20c1dec
|
优化:参数校验方法
|
10 months ago |
RenFengJiang
|
6ad1ea9a4a
|
优化:获取if中参数方法
|
10 months ago |
wuhaoyang
|
7699baf98d
|
更新文件头信息
|
10 months ago |
wuhaoyang
|
13bdd79c5b
|
新增准则:确保向所有格式字符串函数都传递一个不能由用户控制的静态格式化字符串,并且向该函数发送正确数量的参数。
|
10 months ago |
wuhaoyang
|
ab4ae0f844
|
Merge remote-tracking branch 'origin/master'
|
10 months ago |
RenFengJiang
|
38e3e658b3
|
新增:java对用户进行身份鉴别并建立一个新的会话时让原来的会话失效
|
10 months ago |
RenFengJiang
|
c70be3539f
|
新增:java将页面隐藏域字段、Cookie、URL等关键参数缓存到服务器端的会话中
|
10 months ago |
wuhaoyang
|
df706d522d
|
Merge remote-tracking branch 'origin/master'
|
10 months ago |
Guo XIn
|
5ce8feea75
|
Merge remote-tracking branch 'origin/master'
|
10 months ago |
Guo XIn
|
4cd845ed64
|
新增准则:建议将页面隐藏域字段、Cookie、URL等关键参数缓存到服务器端的会话中,并通过会话获取(未完成)
|
10 months ago |
wuhaoyang
|
57830d9d69
|
Merge remote-tracking branch 'origin/master'
# Conflicts:
# sonar-keyware-plugins-java/src/main/java/com/keyware/sonar/java/rules/checkers/ConfigurationFileChecker.java
|
10 months ago |
wuhaoyang
|
32dba7da4a
|
优化准则:通过用户名口令、数据证书等其他手段对用户身份进行验证。
|
10 months ago |
RenFengJiang
|
ac4eee2647
|
优化:java添加规则描述信息
|
10 months ago |
RenFengJiang
|
24ccac44f7
|
新增:C++应使用目前被业界专家认为较强的经过良好审核的加密PRNG算法
|
10 months ago |
Guo XIn
|
05ced611ef
|
Merge remote-tracking branch 'origin/master'
|
10 months ago |