Enhance sast-rule csharp/other/rule-UnsafeXSLTSettingUsed.yml (!291) · Merge requests · GitLab.org / security-products / sast-rules · GitLab

Lanka De Alwis requested to merge feat/issue-435927/unsafeXSLTSettingUsed into main Jan 04, 2024

Update rule:

Convert CWE 611 to 74
Update the rule to track EnableDocumentFunction according to massage

Related Issue: gitlab-org/gitlab#435927 (closed)

Updated rule in playground: https://semgrep.dev/playground/r/bwUb5bO/lk3.csharp_other_rule-unsafexsltsettingused

Edited Jan 05, 2024 by Lanka De Alwis