• Update sast-rules version 2.1.2 (!386)
  • Add rules/lgpl-cc/java/crypto/rule-GCMNonceReuse.yml to detect reuse of cryptographic initialization vector
  • Update go/injection/rule-ssrf.yml to use taint instead of search mode and add improved patterns and tests
  • Update rules/lgpl/javascript/xss/rule-handlebars_safestring.yml to use taint mode, update metadata and add sanitizer patterns and tests
  • Update go/sql/rule-concat-sqli.yml to use taint mode to reduce false-positives
  • Remove duplicate rule rules/lgpl/javascript/exec/rule-generic_os_command_exec.yml