Update rule metadata

SonarSource · Aug 21, 2020 · 3024015 · 3024015
1 parent d538360
commit 3024015
Show file tree

Hide file tree

Showing 6 changed files with 8 additions and 11 deletions.
diff --git a/javascript-checks/src/main/resources/org/sonar/l10n/javascript/rules/javascript/S2589.html b/javascript-checks/src/main/resources/org/sonar/l10n/javascript/rules/javascript/S2589.html
@@ -23,12 +23,7 @@ <h2>Compliant Solution</h2>
 </pre>
 <h2>See</h2>
 <ul>
- <li> MISRA C:2004, 13.7 - Boolean operations whose results are invariant shall not be permitted. </li>
- <li> MISRA C:2012, 14.3 - Controlling expressions shall not be invariant </li>
  <li> <a href="http://cwe.mitre.org/data/definitions/571">MITRE, CWE-571</a> - Expression is Always True </li>
  <li> <a href="http://cwe.mitre.org/data/definitions/570">MITRE, CWE-570</a> - Expression is Always False </li>
- <li> <a href="http://cwe.mitre.org/data/definitions/489">MITRE, CWE-489</a> - Leftover Debug Code </li>
- <li> <a href="https://www.securecoding.cert.org/confluence/x/NYA5">CERT, MSC12-C.</a> - Detect and remove code that has no effect or is never
- executed </li>
 </ul>
 
diff --git a/javascript-checks/src/main/resources/org/sonar/l10n/javascript/rules/javascript/S2598.html b/javascript-checks/src/main/resources/org/sonar/l10n/javascript/rules/javascript/S2598.html
@@ -1,6 +1,8 @@
 <p>These minimum restrictions should be applied when handling file uploads:</p>
-<p>- the file upload folder to restrict untrusted files to a specific folder.</p>
-<p>- the file extension of the uploaded file to prevent remote code execution.</p>
+<ul>
+ <li> the file upload folder to restrict untrusted files to a specific folder. </li>
+ <li> the file extension of the uploaded file to prevent remote code execution. </li>
+</ul>
 <p>Also the size of the uploaded file should be limited to prevent denial of service attacks. This requirement is covered by the rule S5693.</p>
 <h2>Noncompliant Code Example</h2>
 <p><a href="https://www.npmjs.com/package/formidable">formidable</a> module:</p>

diff --git a/javascript-checks/src/main/resources/org/sonar/l10n/javascript/rules/javascript/S4818.html b/javascript-checks/src/main/resources/org/sonar/l10n/javascript/rules/javascript/S4818.html
@@ -18,7 +18,7 @@ <h2>Ask Yourself Whether</h2>
  <li> input received from sockets is used without being sanitized. </li>
  <li> sensitive data is sent via sockets without being encrypted. </li>
 </ul>
-<p>You are at risk if you answered yes to any of these questions.</p>
+<p>There is a risk if you answered yes to any of those questions.</p>
 <h2>Recommended Secure Coding Practices</h2>
 <ul>
  <li> In many cases there is no need to open a socket yourself. Use instead libraries and existing protocols. </li>

diff --git a/...ecks/src/main/resources/org/sonar/l10n/javascript/rules/javascript/Sonar_way_profile.json b/...ecks/src/main/resources/org/sonar/l10n/javascript/rules/javascript/Sonar_way_profile.json
@@ -115,7 +115,7 @@
  "S4829",
  "S5122",
  "S5689",
- "S5691"
+ "S5691",
  "S5693"
  ]
 }
diff --git a/...n/resources/org/sonar/l10n/javascript/rules/javascript/Sonar_way_recommended_profile.json b/...n/resources/org/sonar/l10n/javascript/rules/javascript/Sonar_way_recommended_profile.json
@@ -186,7 +186,7 @@
  "S4829",
  "S5122",
  "S5689",
- "S5691"
+ "S5691",
  "S5693"
  ]
 }
diff --git a/sonarpedia.json b/sonarpedia.json
@@ -3,7 +3,7 @@
  "languages": [
  "JS"
  ],
- "latest-update": "2020-07-09T07:43:58.942706Z",
+ "latest-update": "2020-08-21T11:27:42.731721Z",
  "options": {
  "no-language-in-filenames": true,
  "preserve-filenames": true