Update Node TLS Reject rule and tests
What does this MR do?
This MR updates the Node TLS Reject Rule and its correponsing test file.
- It modifies the patterns to cover more vulnerable cases i.e. reduce false negatives.
- It updates the description to add detailed explanation and secure code example.
- It updates the rule metadata (owasp mapping, cwe, shortdescription and also the severity and security-severity)
- It adds test cases to cover different syntax styles.
What are the relevant issue numbers?
This addresses the issue: gitlab-org/gitlab#440270 (closed)
Does this MR meet the acceptance criteria?
-
Changelog entry added -
Documentation created/updated for GitLab EE, if necessary -
Documentation created/updated for this project, if necessary -
Documentation reviewed by technical writer or follow-up review issue created -
Tests added for this feature/bug -
Job definition updated, if necessary -
Conforms to the code review guidelines -
Conforms to the Go guidelines -
Security reports checked/validated by reviewer
Edited by Hua Yan