Add three new rules based on past S1 incidents

This MR adds 3 new rules based on past S1 incidents, as part of https://gitlab.com/gitlab-com/gl-security/product-security/appsec/appsec-team/-/issues/620+.

The CVEs covered are:

• CVE-2022-1162
• CVE-2022-1680
• CVE-2022-2185

/cc @gitlab-com/gl-security/product-security/appsec for review

assigned to @ameyadarshan

changed the description

approved this merge request

@ameyadarshan as discussed, for clarity it would be good to have a dedicated specs folder, or have the filename with specs in it.

Appart from that LGTM

added 1 commit

• 7701fe84 - Update 12 files

Compare with previous version

reset approvals from @greg by pushing to the branch

enabled an automatic merge when all merge checks for 7701fe84 pass

approved this merge request

merged

mentioned in commit 9e97eeb5