• Update sast-rules version 2.5.7 (!461)
  • Fix java/inject/rule-SpotbugsPathTraversalAbsolute.yml to be less FP prone
  • Update java/crypto/rule-BlowfishKeySize.yml to cast key size to integer before comparing
  • Update java/crypto/rule-CipherDESInsecure.yml to detect DES ciphers from default property values
  • Update java/crypto/rule-CipherDESedeInsecure.yml to detect DESede ciphers from default property values
  • Update java/crypto/rule-CipherECBMode.yml to detect ciphers in ECB mode from default property values
  • Update java/crypto/rule-CipherIntegrity.yml to detect ciphers without message integrity from default property values
  • Update java/crypto/rule-CipherPaddingOracle.yml to detect vulnerable ciphers from default property values
  • Update java/crypto/rule-RsaNoPadding.yml to detect vulnerable ciphers from default property values
  • Update java/crypto/rule-WeakMessageDigest.yml to detect weak algorithms from default property values
  • Update java/crypto/rule-WeakTLSProtocolDefaultHttpClient.yml to remove unnecessary pattern-either
  • Update java/crypto/rule-WeakTLSProtocolSSLContext.yml to detect weak protocols from default property values
  • Update java/inject/rule-CommandInjection.yml to enhance patterns and use taint mode
  • Update java/inject/rule-SpotbugsPathTraversalAbsolute.yml to enhance patterns
  • Update java/inject/rule-SpotbugsPathTraversalAbsolute.yml to enhance patterns
  • Update java/xss/rule-XSSReqParamToServletWriter.yml to enhance patterns
  • Update rules/lgpl-cc/java/inject/rule-SqlInjection.yml to enhance patterns