Update all OWASP names (!136) · Merge requests · GitLab.org / security-products / sast-rules

Craig Smith requested to merge craigmsmith-fix-owasp-naming into main Apr 26, 2023

What does this MR do?

metadata.owasp strings are inconsistent. This MR updates all the rules that have the OWASP field set to follow the pattern: A{number}:{year}-{Title} as per https://owasp.org/www-project-top-ten/2017/

It also adds the job owasp-name-check to ensure all updates to the OWASP value stays within that pattern.

What are the relevant issue numbers?

https://gitlab.com/gitlab-org/security-products/analyzers/semgrep/-/issues/127

Edited Apr 26, 2023 by Craig Smith

Update all OWASP names

What does this MR do?

What are the relevant issue numbers?

Merge request reports