just rules adding
[code-scanner:ror-sec-scanner.git] / rules / 25_improper_access_control.rule
1 Desc: Improper Access Control
2
3 # impact        CWE identifier          regex
4 medium          CWE-285                 \.(new|add|delete)[\w_]*\s*[\(]*.*params\s*\[\s*:id\s*\]