just rules adding
[code-scanner:ror-sec-scanner.git] / rules / 24_information_leak.rule
1 Desc: Information Leak
2
3 # impact        CWE identifier          regex
4 medium          CWE-200                 \.find[\w_]*\s*[\(]*.*params\s*\[\s*:id\s*\]
5 medium          CWE-200                 filter_parameter_logging