@critiq/rules 0.0.2 → 0.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (396) hide show
  1. package/README.md +52 -4
  2. package/catalog.yaml +1775 -192
  3. package/package.json +6 -1
  4. package/rules/go/go.correctness.defer-close-before-check.rule.yaml +44 -0
  5. package/rules/go/go.correctness.defer-in-loop.rule.yaml +47 -0
  6. package/rules/go/go.correctness.nil-context-passed.rule.yaml +43 -0
  7. package/rules/go/go.correctness.nil-map-assignment.rule.yaml +42 -0
  8. package/rules/go/go.correctness.time-tick-leak.rule.yaml +44 -0
  9. package/rules/go/go.correctness.unused-append-result.rule.yaml +43 -0
  10. package/rules/go/go.correctness.waitgroup-add-in-goroutine.rule.yaml +45 -0
  11. package/rules/go/go.performance.no-regex-construction-in-loop.rule.yaml +33 -0
  12. package/rules/go/go.performance.no-sync-fs-in-request-path.rule.yaml +33 -0
  13. package/rules/go/go.performance.no-unbounded-concurrency.rule.yaml +33 -0
  14. package/rules/go/go.security.bind-all-interfaces.rule.yaml +57 -0
  15. package/rules/go/go.security.echo-sensitive-binding-without-validation.rule.yaml +56 -0
  16. package/rules/go/go.security.echo-unsafe-multipart-upload.rule.yaml +55 -0
  17. package/rules/go/go.security.fiber-sensitive-binding-without-validation.rule.yaml +55 -0
  18. package/rules/go/go.security.fiber-unsafe-multipart-upload.rule.yaml +55 -0
  19. package/rules/go/go.security.gin-sensitive-binding-without-validation.rule.yaml +55 -0
  20. package/rules/go/go.security.gin-trust-all-proxies.rule.yaml +55 -0
  21. package/rules/go/go.security.gin-wildcard-cors-with-credentials.rule.yaml +57 -0
  22. package/rules/go/go.security.insecure-rand-seed.rule.yaml +55 -0
  23. package/rules/go/go.security.insecure-ssh-host-key.rule.yaml +57 -0
  24. package/rules/go/go.security.insecure-ssl-protocol.rule.yaml +56 -0
  25. package/rules/go/go.security.insecure-temp-file.rule.yaml +57 -0
  26. package/rules/go/go.security.jwt-without-verification.rule.yaml +56 -0
  27. package/rules/go/go.security.net-http-missing-timeouts.rule.yaml +55 -0
  28. package/rules/go/go.security.pprof-exposed.rule.yaml +56 -0
  29. package/rules/go/go.security.sensitive-data-egress.rule.yaml +56 -0
  30. package/rules/go/go.security.tar-path-traversal.rule.yaml +55 -0
  31. package/rules/go/go.security.template-unescaped-request-value.rule.yaml +55 -0
  32. package/rules/go/go.security.tls-missing-min-version.rule.yaml +55 -0
  33. package/rules/go/go.security.unsafe-package-import.rule.yaml +55 -0
  34. package/rules/go/go.security.weak-bcrypt-cost.rule.yaml +56 -0
  35. package/rules/go/go.security.weak-crypto-import.rule.yaml +57 -0
  36. package/rules/go/go.security.weak-rsa-key-size.rule.yaml +57 -0
  37. package/rules/go/go.security.weak-tls-cipher.rule.yaml +56 -0
  38. package/rules/go/go.testing.real-network-in-unit-test.rule.yaml +33 -0
  39. package/rules/go/go.testing.t-skip-without-ticket-reference.rule.yaml +33 -0
  40. package/rules/go/go.testing.time-sleep-in-unit-test.rule.yaml +33 -0
  41. package/rules/java/java.correctness.catch-null-pointer.rule.yaml +40 -0
  42. package/rules/java/java.correctness.empty-catch.rule.yaml +40 -0
  43. package/rules/java/java.correctness.equals-on-array.rule.yaml +40 -0
  44. package/rules/java/java.correctness.return-in-finally.rule.yaml +40 -0
  45. package/rules/java/java.correctness.sync-on-string-literal.rule.yaml +40 -0
  46. package/rules/java/java.correctness.unsafe-optional-get.rule.yaml +40 -0
  47. package/rules/java/java.performance.no-regex-construction-in-loop.rule.yaml +33 -0
  48. package/rules/java/java.performance.no-sync-fs-in-request-path.rule.yaml +33 -0
  49. package/rules/java/java.performance.no-unbounded-concurrency.rule.yaml +33 -0
  50. package/rules/java/java.security.android-screenshot-exposure.rule.yaml +48 -0
  51. package/rules/java/java.security.android-world-readable-mode.rule.yaml +48 -0
  52. package/rules/java/java.security.hibernate-sql-concatenation.rule.yaml +62 -0
  53. package/rules/java/java.security.insecure-cipher-mode.rule.yaml +52 -0
  54. package/rules/java/java.security.insecure-network-protocol.rule.yaml +52 -0
  55. package/rules/java/java.security.insecure-ssl-context.rule.yaml +52 -0
  56. package/rules/java/java.security.jpa-concatenated-query.rule.yaml +60 -0
  57. package/rules/java/java.security.jwt-without-verification.rule.yaml +53 -0
  58. package/rules/java/java.security.null-cipher.rule.yaml +52 -0
  59. package/rules/java/java.security.permissive-cors.rule.yaml +53 -0
  60. package/rules/java/java.security.predictable-securerandom.rule.yaml +59 -0
  61. package/rules/java/java.security.reflected-output-from-request.rule.yaml +45 -0
  62. package/rules/java/java.security.servlet-insecure-cookie.rule.yaml +48 -0
  63. package/rules/java/java.security.shell-runtime-exec.rule.yaml +58 -0
  64. package/rules/java/java.security.spring-actuator-health-details-always.rule.yaml +53 -0
  65. package/rules/java/java.security.spring-actuator-sensitive-exposure.rule.yaml +53 -0
  66. package/rules/java/java.security.spring-csrf-globally-disabled.rule.yaml +62 -0
  67. package/rules/java/java.security.spring-debug-exposure.rule.yaml +48 -0
  68. package/rules/java/java.security.spring-permit-all-default.rule.yaml +60 -0
  69. package/rules/java/java.security.spring-webmvc-unrestricted-data-binding.rule.yaml +60 -0
  70. package/rules/java/java.security.template-unescaped-user-output.rule.yaml +59 -0
  71. package/rules/java/java.security.trust-all-certificates.rule.yaml +52 -0
  72. package/rules/java/java.security.unsafe-jackson-deserialization.rule.yaml +59 -0
  73. package/rules/java/java.security.weak-rsa-key-size.rule.yaml +54 -0
  74. package/rules/java/java.security.xxe-document-builder.rule.yaml +59 -0
  75. package/rules/java/java.security.xxe-xml-input-factory.rule.yaml +59 -0
  76. package/rules/java/java.testing.disabled-without-ticket-reference.rule.yaml +33 -0
  77. package/rules/java/java.testing.http-client-in-unit-test.rule.yaml +33 -0
  78. package/rules/java/java.testing.thread-sleep-in-unit-test.rule.yaml +33 -0
  79. package/rules/php/php.correctness.duplicate-array-key.rule.yaml +36 -0
  80. package/rules/php/php.correctness.error-suppression-operator.rule.yaml +36 -0
  81. package/rules/php/php.correctness.nullsafe-returned-by-reference.rule.yaml +36 -0
  82. package/rules/php/php.correctness.switch-multiple-default.rule.yaml +36 -0
  83. package/rules/php/php.correctness.unreachable-after-return.rule.yaml +36 -0
  84. package/rules/php/php.performance.no-regex-construction-in-loop.rule.yaml +33 -0
  85. package/rules/php/php.performance.no-sync-fs-in-request-path.rule.yaml +33 -0
  86. package/rules/php/php.performance.no-unbounded-concurrency.rule.yaml +33 -0
  87. package/rules/php/php.security.debug-function-exposure.rule.yaml +55 -0
  88. package/rules/php/php.security.insecure-cors-wildcard-with-credentials.rule.yaml +51 -0
  89. package/rules/php/php.security.insecure-mail-or-file-transport.rule.yaml +51 -0
  90. package/rules/php/php.security.insecure-session-id-generation.rule.yaml +51 -0
  91. package/rules/php/php.security.insecure-session-or-cookie-config.rule.yaml +52 -0
  92. package/rules/php/php.security.laravel-sensitive-csrf-exclusion.rule.yaml +55 -0
  93. package/rules/php/php.security.laravel-unsafe-blade-output.rule.yaml +55 -0
  94. package/rules/php/php.security.laravel-unsafe-mass-assignment.rule.yaml +58 -0
  95. package/rules/php/php.security.no-dynamic-eval.rule.yaml +52 -0
  96. package/rules/php/php.security.sensitive-data-egress.rule.yaml +52 -0
  97. package/rules/php/php.security.symfony-csrf-disabled.rule.yaml +55 -0
  98. package/rules/php/php.security.symfony-debug-exposure.rule.yaml +57 -0
  99. package/rules/php/php.security.unsafe-file-upload-handling.rule.yaml +51 -0
  100. package/rules/php/php.security.unsafe-include-with-user-input.rule.yaml +52 -0
  101. package/rules/php/php.security.weak-cipher.rule.yaml +51 -0
  102. package/rules/php/php.security.wordpress-missing-nonce-or-capability.rule.yaml +55 -0
  103. package/rules/php/php.security.wordpress-unprepared-sql.rule.yaml +55 -0
  104. package/rules/php/php.security.xml-external-entity.rule.yaml +53 -0
  105. package/rules/php/php.testing.curl-in-unit-test.rule.yaml +33 -0
  106. package/rules/php/php.testing.mark-test-skipped-without-ticket-reference.rule.yaml +33 -0
  107. package/rules/php/php.testing.sleep-in-unit-test.rule.yaml +33 -0
  108. package/rules/python/py.correctness.assert-on-tuple.rule.yaml +33 -0
  109. package/rules/python/py.correctness.bare-except.rule.yaml +33 -0
  110. package/rules/python/py.correctness.broad-exception-handler.rule.yaml +33 -0
  111. package/rules/python/py.correctness.dangerous-mutable-default.rule.yaml +33 -0
  112. package/rules/python/py.correctness.duplicate-dict-key.rule.yaml +33 -0
  113. package/rules/python/py.performance.no-regex-construction-in-loop.rule.yaml +33 -0
  114. package/rules/python/py.performance.no-sync-fs-in-request-path.rule.yaml +33 -0
  115. package/rules/python/py.performance.no-unbounded-concurrency.rule.yaml +33 -0
  116. package/rules/python/py.security.bind-all-interfaces.rule.yaml +55 -0
  117. package/rules/python/py.security.debugger-import.rule.yaml +55 -0
  118. package/rules/python/py.security.django-csrf-exempt-state-changing.rule.yaml +59 -0
  119. package/rules/python/py.security.django-format-html-unsafe.rule.yaml +56 -0
  120. package/rules/python/py.security.django-mark-safe.rule.yaml +56 -0
  121. package/rules/python/py.security.django-missing-csrf-middleware.rule.yaml +60 -0
  122. package/rules/python/py.security.django-security-middleware-missing.rule.yaml +60 -0
  123. package/rules/python/py.security.django-unsafe-production-settings.rule.yaml +60 -0
  124. package/rules/python/py.security.drf-allow-any-default.rule.yaml +59 -0
  125. package/rules/python/py.security.drf-allow-any-unsafe-method.rule.yaml +59 -0
  126. package/rules/python/py.security.dynamic-code-execution.rule.yaml +55 -0
  127. package/rules/python/py.security.fastapi-insecure-cors.rule.yaml +56 -0
  128. package/rules/python/py.security.flask-debug-enabled.rule.yaml +56 -0
  129. package/rules/python/py.security.flask-missing-upload-body-limit.rule.yaml +57 -0
  130. package/rules/python/py.security.flask-unsafe-html-output.rule.yaml +57 -0
  131. package/rules/python/py.security.flask-unsafe-upload-filename.rule.yaml +57 -0
  132. package/rules/python/py.security.insecure-temp-file.rule.yaml +55 -0
  133. package/rules/python/py.security.insecure-yaml-load.rule.yaml +55 -0
  134. package/rules/python/py.security.jinja-autoescape-disabled.rule.yaml +58 -0
  135. package/rules/python/py.security.subprocess-shell-enabled.rule.yaml +55 -0
  136. package/rules/python/py.testing.pytest-skip-without-ticket-reference.rule.yaml +33 -0
  137. package/rules/python/py.testing.real-network-in-unit-test.rule.yaml +33 -0
  138. package/rules/python/py.testing.time-sleep-in-unit-test.rule.yaml +33 -0
  139. package/rules/ruby/ruby.performance.no-regex-construction-in-loop.rule.yaml +33 -0
  140. package/rules/ruby/ruby.performance.no-sync-fs-in-request-path.rule.yaml +33 -0
  141. package/rules/ruby/ruby.performance.no-unbounded-concurrency.rule.yaml +33 -0
  142. package/rules/ruby/ruby.security.rails-csrf-disabled.rule.yaml +58 -0
  143. package/rules/ruby/ruby.security.rails-detailed-exceptions-enabled.rule.yaml +57 -0
  144. package/rules/ruby/ruby.security.rails-open-redirect.rule.yaml +58 -0
  145. package/rules/ruby/ruby.security.rails-unsafe-html-output.rule.yaml +59 -0
  146. package/rules/ruby/ruby.security.rails-unsafe-render.rule.yaml +58 -0
  147. package/rules/ruby/ruby.security.rails-unsafe-session-or-cookie-store.rule.yaml +58 -0
  148. package/rules/ruby/ruby.security.rails-unsafe-strong-parameters.rule.yaml +59 -0
  149. package/rules/ruby/ruby.security.sensitive-data-egress.rule.yaml +55 -0
  150. package/rules/ruby/ruby.security.sidekiq-web-unauthenticated-mount.rule.yaml +55 -0
  151. package/rules/ruby/ruby.testing.focused-example.rule.yaml +33 -0
  152. package/rules/ruby/ruby.testing.pending-without-ticket-reference.rule.yaml +33 -0
  153. package/rules/ruby/ruby.testing.real-network-in-unit-test.rule.yaml +33 -0
  154. package/rules/ruby/ruby.testing.skip-without-ticket-reference.rule.yaml +33 -0
  155. package/rules/ruby/ruby.testing.sleep-in-unit-test.rule.yaml +33 -0
  156. package/rules/rust/rust.correctness.block-on-in-async.rule.yaml +48 -0
  157. package/rules/rust/rust.correctness.forget-join-handle.rule.yaml +48 -0
  158. package/rules/rust/rust.correctness.mutex-held-across-await.rule.yaml +48 -0
  159. package/rules/rust/rust.correctness.std-mutex-in-async-fn.rule.yaml +48 -0
  160. package/rules/rust/rust.correctness.thread-sleep-in-async.rule.yaml +48 -0
  161. package/rules/rust/rust.correctness.unbounded-channel.rule.yaml +49 -0
  162. package/rules/rust/rust.correctness.unchecked-index.rule.yaml +46 -0
  163. package/rules/rust/rust.performance.no-regex-construction-in-loop.rule.yaml +33 -0
  164. package/rules/rust/rust.performance.no-sync-fs-in-request-path.rule.yaml +33 -0
  165. package/rules/rust/rust.performance.no-unbounded-concurrency.rule.yaml +33 -0
  166. package/rules/rust/rust.security.actix-wildcard-cors-with-credentials.rule.yaml +60 -0
  167. package/rules/rust/rust.security.axum-body-limit-disabled.rule.yaml +58 -0
  168. package/rules/rust/rust.security.axum-insecure-cors-with-credentials.rule.yaml +60 -0
  169. package/rules/rust/rust.security.bind-all-interfaces.rule.yaml +57 -0
  170. package/rules/rust/rust.security.insecure-ssh-host-key.rule.yaml +57 -0
  171. package/rules/rust/rust.security.insecure-ssl-protocol.rule.yaml +57 -0
  172. package/rules/rust/rust.security.insecure-temp-file.rule.yaml +57 -0
  173. package/rules/rust/rust.security.insecure-yaml-load.rule.yaml +57 -0
  174. package/rules/rust/rust.security.jwt-without-verification.rule.yaml +57 -0
  175. package/rules/rust/rust.security.panic-in-async-handler.rule.yaml +57 -0
  176. package/rules/rust/rust.security.rocket-panic-prone-request-handler.rule.yaml +58 -0
  177. package/rules/rust/rust.security.rocket-unsafe-template-output.rule.yaml +60 -0
  178. package/rules/rust/rust.security.shell-command-spawn.rule.yaml +57 -0
  179. package/rules/rust/rust.security.sqlx-diesel-raw-interpolated-query.rule.yaml +60 -0
  180. package/rules/rust/rust.security.template-unescaped-request-value.rule.yaml +57 -0
  181. package/rules/rust/rust.security.tls-missing-min-version.rule.yaml +57 -0
  182. package/rules/rust/rust.security.warp-blocking-or-panic-in-async-handler.rule.yaml +58 -0
  183. package/rules/rust/rust.security.weak-crypto-import.rule.yaml +55 -0
  184. package/rules/rust/rust.security.weak-rsa-key-size.rule.yaml +57 -0
  185. package/rules/rust/rust.security.weak-tls-cipher.rule.yaml +57 -0
  186. package/rules/rust/rust.testing.ignore-without-ticket-reference.rule.yaml +33 -0
  187. package/rules/rust/rust.testing.real-network-in-unit-test.rule.yaml +33 -0
  188. package/rules/rust/rust.testing.thread-sleep-in-unit-test.rule.yaml +33 -0
  189. package/rules/shared/security.archive-path-traversal.rule.yaml +51 -0
  190. package/rules/shared/security.external-file-upload.rule.yaml +50 -0
  191. package/rules/shared/security.insecure-http-transport.rule.yaml +10 -0
  192. package/rules/shared/security.no-command-execution-with-request-input.rule.yaml +10 -0
  193. package/rules/shared/security.no-hardcoded-credentials.rule.yaml +10 -0
  194. package/rules/shared/security.no-request-path-file-read.rule.yaml +10 -0
  195. package/rules/shared/security.no-sensitive-data-in-logs-and-telemetry.rule.yaml +10 -0
  196. package/rules/shared/security.no-sql-interpolation.rule.yaml +10 -0
  197. package/rules/shared/security.permissive-file-permissions.rule.yaml +50 -0
  198. package/rules/shared/security.sensitive-data-egress.rule.yaml +46 -0
  199. package/rules/shared/security.tls-verification-disabled.rule.yaml +10 -0
  200. package/rules/shared/security.unsafe-deserialization.rule.yaml +10 -0
  201. package/rules/shared/security.weak-hash-algorithm.rule.yaml +10 -0
  202. package/rules/typescript/ts.correctness.array-callback-missing-return.rule.yaml +35 -0
  203. package/rules/typescript/ts.correctness.array-sort-without-compare.rule.yaml +35 -0
  204. package/rules/typescript/ts.correctness.assignment-in-condition.rule.yaml +36 -0
  205. package/rules/typescript/ts.correctness.assignment-to-import-binding.rule.yaml +36 -0
  206. package/rules/typescript/ts.correctness.async-promise-executor.rule.yaml +36 -0
  207. package/rules/typescript/ts.correctness.control-flow-in-finally.rule.yaml +35 -0
  208. package/rules/typescript/ts.correctness.duplicate-function-parameter.rule.yaml +36 -0
  209. package/rules/typescript/ts.correctness.duplicate-if-else-condition.rule.yaml +35 -0
  210. package/rules/typescript/ts.correctness.duplicate-import-source.rule.yaml +36 -0
  211. package/rules/typescript/ts.correctness.duplicate-object-key.rule.yaml +36 -0
  212. package/rules/typescript/ts.correctness.duplicate-switch-case.rule.yaml +36 -0
  213. package/rules/typescript/ts.correctness.empty-block-statement.rule.yaml +35 -0
  214. package/rules/typescript/ts.correctness.for-in-on-array.rule.yaml +35 -0
  215. package/rules/typescript/ts.correctness.identical-comparison-operands.rule.yaml +36 -0
  216. package/rules/typescript/ts.correctness.infinite-loop.rule.yaml +32 -0
  217. package/rules/typescript/ts.correctness.invalid-await-expression.rule.yaml +32 -0
  218. package/rules/typescript/ts.correctness.invalid-typeof-comparison.rule.yaml +35 -0
  219. package/rules/typescript/ts.correctness.missing-async-on-promise-method.rule.yaml +32 -0
  220. package/rules/typescript/ts.correctness.missing-super-call.rule.yaml +35 -0
  221. package/rules/typescript/ts.correctness.no-floating-promise-in-function.rule.yaml +32 -0
  222. package/rules/typescript/ts.correctness.no-misused-promises.rule.yaml +32 -0
  223. package/rules/typescript/ts.correctness.promise-reject-non-error.rule.yaml +35 -0
  224. package/rules/typescript/ts.correctness.reassign-catch-binding.rule.yaml +35 -0
  225. package/rules/typescript/ts.correctness.regexp-pattern-unusual-control-character.rule.yaml +35 -0
  226. package/rules/typescript/ts.correctness.self-assignment.rule.yaml +36 -0
  227. package/rules/typescript/ts.correctness.this-before-super.rule.yaml +35 -0
  228. package/rules/typescript/ts.correctness.unnecessary-return-await.rule.yaml +32 -0
  229. package/rules/typescript/ts.correctness.use-number-is-nan.rule.yaml +35 -0
  230. package/rules/typescript/ts.next.server-action-missing-local-auth.rule.yaml +48 -0
  231. package/rules/typescript/ts.performance.no-array-spread-in-hot-loop.rule.yaml +32 -0
  232. package/rules/typescript/ts.performance.no-await-in-loop.rule.yaml +32 -0
  233. package/rules/typescript/ts.performance.no-cache-miss-from-unstable-key.rule.yaml +32 -0
  234. package/rules/typescript/ts.performance.no-expensive-sort-in-render-path.rule.yaml +32 -0
  235. package/rules/typescript/ts.performance.no-json-parse-stringify-clone.rule.yaml +32 -0
  236. package/rules/typescript/ts.performance.no-large-object-spread-in-loop.rule.yaml +32 -0
  237. package/rules/typescript/ts.performance.no-n-plus-one-await-in-map.rule.yaml +32 -0
  238. package/rules/typescript/ts.performance.no-redundant-network-fetch.rule.yaml +32 -0
  239. package/rules/typescript/ts.performance.no-regex-construction-in-loop.rule.yaml +32 -0
  240. package/rules/typescript/ts.performance.no-sync-fs-in-request-path.rule.yaml +32 -0
  241. package/rules/typescript/ts.performance.no-unbounded-concurrency.rule.yaml +32 -0
  242. package/rules/typescript/ts.quality.no-ambiguous-abbreviations.rule.yaml +27 -0
  243. package/rules/typescript/ts.quality.no-barrel-file-cycle.rule.yaml +27 -0
  244. package/rules/typescript/ts.quality.no-boolean-parameter-trap.rule.yaml +27 -0
  245. package/rules/typescript/ts.quality.no-dead-export.rule.yaml +27 -0
  246. package/rules/typescript/ts.quality.no-empty-function.rule.yaml +32 -0
  247. package/rules/typescript/ts.quality.no-hidden-side-effect-import.rule.yaml +27 -0
  248. package/rules/typescript/ts.quality.no-inconsistent-error-shape.rule.yaml +27 -0
  249. package/rules/typescript/ts.quality.no-mixed-abstraction-level.rule.yaml +27 -0
  250. package/rules/typescript/ts.quality.no-primitive-obsession-in-domain-model.rule.yaml +27 -0
  251. package/rules/typescript/ts.quality.no-temporal-coupling.rule.yaml +27 -0
  252. package/rules/typescript/ts.quality.no-wide-public-surface.rule.yaml +27 -0
  253. package/rules/typescript/ts.react.no-accessibility-label-missing.rule.yaml +36 -0
  254. package/rules/typescript/ts.react.no-activedescendant-on-non-focusable-host.rule.yaml +36 -0
  255. package/rules/typescript/ts.react.no-bind-in-jsx-props.rule.yaml +36 -0
  256. package/rules/typescript/ts.react.no-children-prop.rule.yaml +34 -0
  257. package/rules/typescript/ts.react.no-click-without-keyboard-handler.rule.yaml +36 -0
  258. package/rules/typescript/ts.react.no-deprecated-create-factory.rule.yaml +34 -0
  259. package/rules/typescript/ts.react.no-deprecated-react-dom-root-api.rule.yaml +34 -0
  260. package/rules/typescript/ts.react.no-derived-state-from-props.rule.yaml +34 -0
  261. package/rules/typescript/ts.react.no-direct-state-mutation.rule.yaml +34 -0
  262. package/rules/typescript/ts.react.no-duplicate-jsx-attributes.rule.yaml +34 -0
  263. package/rules/typescript/ts.react.no-effect-fetch-without-cancellation.rule.yaml +35 -0
  264. package/rules/typescript/ts.react.no-find-dom-node.rule.yaml +34 -0
  265. package/rules/typescript/ts.react.no-img-missing-alt-text.rule.yaml +36 -0
  266. package/rules/typescript/ts.react.no-index-as-key-in-dynamic-list.rule.yaml +34 -0
  267. package/rules/typescript/ts.react.no-interactive-role-on-static-semantics.rule.yaml +36 -0
  268. package/rules/typescript/ts.react.no-invalid-anchor-href.rule.yaml +36 -0
  269. package/rules/typescript/ts.react.no-jsx-props-spread.rule.yaml +35 -0
  270. package/rules/typescript/ts.react.no-keyboard-interaction-without-widget-role.rule.yaml +36 -0
  271. package/rules/typescript/ts.react.no-legacy-lifecycle.rule.yaml +34 -0
  272. package/rules/typescript/ts.react.no-missing-error-boundary.rule.yaml +36 -0
  273. package/rules/typescript/ts.react.no-positive-tabindex.rule.yaml +36 -0
  274. package/rules/typescript/ts.react.no-set-state-in-component-did-mount.rule.yaml +34 -0
  275. package/rules/typescript/ts.react.no-set-state-in-component-did-update.rule.yaml +34 -0
  276. package/rules/typescript/ts.react.no-static-element-with-synthetic-handlers.rule.yaml +36 -0
  277. package/rules/typescript/ts.react.no-string-ref.rule.yaml +34 -0
  278. package/rules/typescript/ts.react.no-target-blank-without-rel.rule.yaml +46 -0
  279. package/rules/typescript/ts.react.no-this-in-function-component.rule.yaml +34 -0
  280. package/rules/typescript/ts.react.no-uncontrolled-to-controlled-input.rule.yaml +34 -0
  281. package/rules/typescript/ts.react.no-widget-role-without-tabindex.rule.yaml +36 -0
  282. package/rules/typescript/ts.runtime.no-process-exit.rule.yaml +44 -0
  283. package/rules/typescript/ts.security.ajv-insecure-configuration.rule.yaml +44 -0
  284. package/rules/typescript/ts.security.angular-dom-sanitizer-bypass-untrusted-input.rule.yaml +48 -0
  285. package/rules/typescript/ts.security.apollo-server-csrf-disabled.rule.yaml +52 -0
  286. package/rules/typescript/ts.security.apollo-server-graphql-dev-tooling-exposure.rule.yaml +52 -0
  287. package/rules/typescript/ts.security.apollo-server-introspection-exposure.rule.yaml +51 -0
  288. package/rules/typescript/ts.security.apollo-server-missing-query-limits.rule.yaml +51 -0
  289. package/rules/typescript/ts.security.astro-vite-public-secret-define.rule.yaml +52 -0
  290. package/rules/typescript/ts.security.bind-to-all-interfaces.rule.yaml +10 -0
  291. package/rules/typescript/ts.security.browser-token-storage.rule.yaml +10 -0
  292. package/rules/typescript/ts.security.dangerous-insert-html.rule.yaml +10 -0
  293. package/rules/typescript/ts.security.dangerously-set-inner-html.rule.yaml +10 -0
  294. package/rules/typescript/ts.security.datadog-browser-track-user-interactions.rule.yaml +10 -0
  295. package/rules/typescript/ts.security.debug-mode-enabled.rule.yaml +10 -0
  296. package/rules/typescript/ts.security.debug-statement-in-source.rule.yaml +46 -0
  297. package/rules/typescript/ts.security.dynamodb-query-injection.rule.yaml +10 -0
  298. package/rules/typescript/ts.security.electron-dangerous-webpreferences.rule.yaml +45 -0
  299. package/rules/typescript/ts.security.electron-insecure-local-state.rule.yaml +45 -0
  300. package/rules/typescript/ts.security.electron-missing-ipc-origin-check.rule.yaml +45 -0
  301. package/rules/typescript/ts.security.electron-shell-open-external-unvalidated.rule.yaml +48 -0
  302. package/rules/typescript/ts.security.exposed-directory-listing.rule.yaml +10 -0
  303. package/rules/typescript/ts.security.express-cookie-missing-http-only.rule.yaml +16 -0
  304. package/rules/typescript/ts.security.express-default-cookie-config.rule.yaml +16 -0
  305. package/rules/typescript/ts.security.express-default-session-config.rule.yaml +16 -0
  306. package/rules/typescript/ts.security.express-error-handler-information-disclosure.rule.yaml +51 -0
  307. package/rules/typescript/ts.security.express-insecure-cookie.rule.yaml +16 -0
  308. package/rules/typescript/ts.security.express-missing-helmet.rule.yaml +16 -0
  309. package/rules/typescript/ts.security.express-nosql-injection.rule.yaml +16 -0
  310. package/rules/typescript/ts.security.express-permissive-cookie-config.rule.yaml +16 -0
  311. package/rules/typescript/ts.security.express-permissive-cors.rule.yaml +52 -0
  312. package/rules/typescript/ts.security.express-reduce-fingerprint.rule.yaml +16 -0
  313. package/rules/typescript/ts.security.express-static-assets-after-session.rule.yaml +16 -0
  314. package/rules/typescript/ts.security.express-static-dotfiles-allow.rule.yaml +51 -0
  315. package/rules/typescript/ts.security.express-unbounded-body-parser.rule.yaml +50 -0
  316. package/rules/typescript/ts.security.express-user-controlled-static-mount.rule.yaml +51 -0
  317. package/rules/typescript/ts.security.external-file-upload.rule.yaml +10 -0
  318. package/rules/typescript/ts.security.fastify-excessive-body-limit.rule.yaml +50 -0
  319. package/rules/typescript/ts.security.fastify-public-bind-without-trust-proxy.rule.yaml +54 -0
  320. package/rules/typescript/ts.security.file-generation.rule.yaml +10 -0
  321. package/rules/typescript/ts.security.format-string-using-user-input.rule.yaml +10 -0
  322. package/rules/typescript/ts.security.frontend-only-authorization.rule.yaml +10 -0
  323. package/rules/typescript/ts.security.graphql-upload-without-csrf-guard.rule.yaml +52 -0
  324. package/rules/typescript/ts.security.handlebars-no-escape.rule.yaml +10 -0
  325. package/rules/typescript/ts.security.hardcoded-auth-secret.rule.yaml +10 -0
  326. package/rules/typescript/ts.security.iframe-missing-sandbox-attribute.rule.yaml +45 -0
  327. package/rules/typescript/ts.security.import-using-user-input.rule.yaml +10 -0
  328. package/rules/typescript/ts.security.information-leakage.rule.yaml +10 -0
  329. package/rules/typescript/ts.security.insecure-allow-origin.rule.yaml +10 -0
  330. package/rules/typescript/ts.security.insecure-auth-cookie-flags.rule.yaml +10 -0
  331. package/rules/typescript/ts.security.insecure-content-security-policy-literal.rule.yaml +45 -0
  332. package/rules/typescript/ts.security.insecure-helmet-hardening-options.rule.yaml +46 -0
  333. package/rules/typescript/ts.security.insecure-password-hash-configuration.rule.yaml +10 -0
  334. package/rules/typescript/ts.security.insecure-websocket-transport.rule.yaml +10 -0
  335. package/rules/typescript/ts.security.insufficiently-random-values.rule.yaml +10 -0
  336. package/rules/typescript/ts.security.jwt-insecure-signing-algorithm.rule.yaml +45 -0
  337. package/rules/typescript/ts.security.jwt-not-revoked.rule.yaml +10 -0
  338. package/rules/typescript/ts.security.jwt-sensitive-claims.rule.yaml +10 -0
  339. package/rules/typescript/ts.security.legacy-buffer-constructor.rule.yaml +45 -0
  340. package/rules/typescript/ts.security.log-injection.rule.yaml +46 -0
  341. package/rules/typescript/ts.security.manual-html-sanitization.rule.yaml +10 -0
  342. package/rules/typescript/ts.security.missing-authorization-before-sensitive-action.rule.yaml +10 -0
  343. package/rules/typescript/ts.security.missing-integrity-check.rule.yaml +10 -0
  344. package/rules/typescript/ts.security.missing-message-origin-check.rule.yaml +10 -0
  345. package/rules/typescript/ts.security.missing-ownership-validation.rule.yaml +10 -0
  346. package/rules/typescript/ts.security.missing-request-timeout-or-retry.rule.yaml +10 -0
  347. package/rules/typescript/ts.security.nestjs-helmet-after-route-mount.rule.yaml +50 -0
  348. package/rules/typescript/ts.security.nestjs-missing-global-validation-pipe.rule.yaml +51 -0
  349. package/rules/typescript/ts.security.nestjs-skip-throttle-sensitive-route.rule.yaml +51 -0
  350. package/rules/typescript/ts.security.nestjs-validation-pipe-without-whitelist.rule.yaml +52 -0
  351. package/rules/typescript/ts.security.no-alert-confirm-prompt.rule.yaml +44 -0
  352. package/rules/typescript/ts.security.no-arguments-callee.rule.yaml +44 -0
  353. package/rules/typescript/ts.security.no-assign-mutable-export.rule.yaml +45 -0
  354. package/rules/typescript/ts.security.no-dynamic-execution.rule.yaml +10 -0
  355. package/rules/typescript/ts.security.no-fs-readfile-sync-in-handler.rule.yaml +46 -0
  356. package/rules/typescript/ts.security.no-global-native-reassignment.rule.yaml +44 -0
  357. package/rules/typescript/ts.security.no-innerhtml-assignment.rule.yaml +10 -0
  358. package/rules/typescript/ts.security.no-javascript-url.rule.yaml +44 -0
  359. package/rules/typescript/ts.security.no-native-prototype-extension.rule.yaml +44 -0
  360. package/rules/typescript/ts.security.no-sync-child-process-exec.rule.yaml +45 -0
  361. package/rules/typescript/ts.security.no-throw-literal.rule.yaml +44 -0
  362. package/rules/typescript/ts.security.no-with-statement.rule.yaml +44 -0
  363. package/rules/typescript/ts.security.non-literal-fs-filename.rule.yaml +10 -0
  364. package/rules/typescript/ts.security.nuxt-public-runtime-secret.rule.yaml +51 -0
  365. package/rules/typescript/ts.security.observable-timing-discrepancy.rule.yaml +10 -0
  366. package/rules/typescript/ts.security.open-redirect.rule.yaml +12 -0
  367. package/rules/typescript/ts.security.permissive-allow-origin.rule.yaml +10 -0
  368. package/rules/typescript/ts.security.permissive-file-permissions.rule.yaml +10 -0
  369. package/rules/typescript/ts.security.postmessage-wildcard-origin.rule.yaml +10 -0
  370. package/rules/typescript/ts.security.predictable-token-generation.rule.yaml +10 -0
  371. package/rules/typescript/ts.security.raw-html-using-user-input.rule.yaml +10 -0
  372. package/rules/typescript/ts.security.request-driven-array-index-access.rule.yaml +43 -0
  373. package/rules/typescript/ts.security.sensitive-data-egress.rule.yaml +11 -0
  374. package/rules/typescript/ts.security.sensitive-data-in-exception.rule.yaml +10 -0
  375. package/rules/typescript/ts.security.sensitive-data-written-to-file.rule.yaml +10 -0
  376. package/rules/typescript/ts.security.ssrf.rule.yaml +11 -0
  377. package/rules/typescript/ts.security.token-or-session-not-validated.rule.yaml +10 -0
  378. package/rules/typescript/ts.security.ui-redress.rule.yaml +10 -0
  379. package/rules/typescript/ts.security.unsafe-dirname-path-concat.rule.yaml +44 -0
  380. package/rules/typescript/ts.security.unsafe-dompurify-version.rule.yaml +46 -0
  381. package/rules/typescript/ts.security.unsafe-marked-version.rule.yaml +46 -0
  382. package/rules/typescript/ts.security.unsanitized-http-response.rule.yaml +10 -0
  383. package/rules/typescript/ts.security.unvalidated-external-input.rule.yaml +10 -0
  384. package/rules/typescript/ts.security.user-controlled-sendfile.rule.yaml +10 -0
  385. package/rules/typescript/ts.security.user-controlled-view-render.rule.yaml +10 -0
  386. package/rules/typescript/ts.security.weak-cipher-or-mode.rule.yaml +10 -0
  387. package/rules/typescript/ts.security.weak-key-strength.rule.yaml +10 -0
  388. package/rules/typescript/ts.security.weak-tls-version.rule.yaml +10 -0
  389. package/rules/typescript/ts.security.xml-parse-string-with-untrusted-input.rule.yaml +45 -0
  390. package/rules/typescript/ts.testing.no-flaky-timer-test.rule.yaml +38 -0
  391. package/rules/typescript/ts.testing.no-focused-test.rule.yaml +34 -0
  392. package/rules/typescript/ts.testing.no-missing-edge-case-tests.rule.yaml +35 -0
  393. package/rules/typescript/ts.testing.no-network-call-in-unit-test.rule.yaml +38 -0
  394. package/rules/typescript/ts.testing.no-skipped-test-without-ticket.rule.yaml +34 -0
  395. package/rules/typescript/ts.testing.no-snapshot-without-intent.rule.yaml +34 -0
  396. package/rules/typescript/ts.testing.no-test-only-code-in-production.rule.yaml +38 -0
package/catalog.yaml CHANGED
@@ -21,6 +21,11 @@ rules:
21
21
  presets:
22
22
  - recommended
23
23
  - strict
24
+ - id: ts.correctness.control-flow-in-finally
25
+ rulePath: ./rules/typescript/ts.correctness.control-flow-in-finally.rule.yaml
26
+ presets:
27
+ - recommended
28
+ - strict
24
29
  - id: ts.correctness.missing-await-on-async-call
25
30
  rulePath: ./rules/typescript/ts.correctness.missing-await-on-async-call.rule.yaml
26
31
  presets:
@@ -42,6 +47,11 @@ rules:
42
47
  presets:
43
48
  - recommended
44
49
  - strict
50
+ - id: ts.correctness.invalid-typeof-comparison
51
+ rulePath: ./rules/typescript/ts.correctness.invalid-typeof-comparison.rule.yaml
52
+ presets:
53
+ - recommended
54
+ - strict
45
55
  - id: ts.correctness.blocking-call-in-async-flow
46
56
  rulePath: ./rules/typescript/ts.correctness.blocking-call-in-async-flow.rule.yaml
47
57
  presets:
@@ -52,6 +62,11 @@ rules:
52
62
  presets:
53
63
  - recommended
54
64
  - strict
65
+ - id: ts.correctness.missing-super-call
66
+ rulePath: ./rules/typescript/ts.correctness.missing-super-call.rule.yaml
67
+ presets:
68
+ - recommended
69
+ - strict
55
70
  - id: ts.correctness.missing-timeout-on-external-call
56
71
  rulePath: ./rules/typescript/ts.correctness.missing-timeout-on-external-call.rule.yaml
57
72
  presets:
@@ -63,6 +78,11 @@ rules:
63
78
  presets:
64
79
  - recommended
65
80
  - strict
81
+ - id: ts.correctness.promise-reject-non-error
82
+ rulePath: ./rules/typescript/ts.correctness.promise-reject-non-error.rule.yaml
83
+ presets:
84
+ - recommended
85
+ - strict
66
86
  - id: ts.correctness.nested-property-access-without-check
67
87
  rulePath: ./rules/typescript/ts.correctness.nested-property-access-without-check.rule.yaml
68
88
  presets:
@@ -87,11 +107,131 @@ rules:
87
107
  rulePath: ./rules/typescript/ts.correctness.shared-state-race.rule.yaml
88
108
  presets:
89
109
  - experimental
110
+ - id: ts.correctness.this-before-super
111
+ rulePath: ./rules/typescript/ts.correctness.this-before-super.rule.yaml
112
+ presets:
113
+ - recommended
114
+ - strict
90
115
  - id: ts.correctness.unreachable-statement
91
116
  rulePath: ./rules/typescript/ts.correctness.unreachable-statement.rule.yaml
92
117
  presets:
93
118
  - recommended
94
119
  - strict
120
+ - id: ts.correctness.array-callback-missing-return
121
+ rulePath: ./rules/typescript/ts.correctness.array-callback-missing-return.rule.yaml
122
+ presets:
123
+ - recommended
124
+ - strict
125
+ - id: ts.correctness.array-sort-without-compare
126
+ rulePath: ./rules/typescript/ts.correctness.array-sort-without-compare.rule.yaml
127
+ presets:
128
+ - recommended
129
+ - strict
130
+ - id: ts.correctness.assignment-in-condition
131
+ rulePath: ./rules/typescript/ts.correctness.assignment-in-condition.rule.yaml
132
+ presets:
133
+ - recommended
134
+ - strict
135
+ - id: ts.correctness.duplicate-function-parameter
136
+ rulePath: ./rules/typescript/ts.correctness.duplicate-function-parameter.rule.yaml
137
+ presets:
138
+ - recommended
139
+ - strict
140
+ - id: ts.correctness.duplicate-if-else-condition
141
+ rulePath: ./rules/typescript/ts.correctness.duplicate-if-else-condition.rule.yaml
142
+ presets:
143
+ - recommended
144
+ - strict
145
+ - id: ts.correctness.duplicate-object-key
146
+ rulePath: ./rules/typescript/ts.correctness.duplicate-object-key.rule.yaml
147
+ presets:
148
+ - recommended
149
+ - strict
150
+ - id: ts.correctness.duplicate-switch-case
151
+ rulePath: ./rules/typescript/ts.correctness.duplicate-switch-case.rule.yaml
152
+ presets:
153
+ - recommended
154
+ - strict
155
+ - id: ts.correctness.async-promise-executor
156
+ rulePath: ./rules/typescript/ts.correctness.async-promise-executor.rule.yaml
157
+ presets:
158
+ - recommended
159
+ - strict
160
+ - id: ts.correctness.infinite-loop
161
+ rulePath: ./rules/typescript/ts.correctness.infinite-loop.rule.yaml
162
+ presets:
163
+ - recommended
164
+ - strict
165
+ - id: ts.correctness.unnecessary-return-await
166
+ rulePath: ./rules/typescript/ts.correctness.unnecessary-return-await.rule.yaml
167
+ presets:
168
+ - recommended
169
+ - strict
170
+ - id: ts.correctness.invalid-await-expression
171
+ rulePath: ./rules/typescript/ts.correctness.invalid-await-expression.rule.yaml
172
+ presets:
173
+ - recommended
174
+ - strict
175
+ - id: ts.correctness.missing-async-on-promise-method
176
+ rulePath: ./rules/typescript/ts.correctness.missing-async-on-promise-method.rule.yaml
177
+ presets:
178
+ - recommended
179
+ - strict
180
+ - id: ts.correctness.no-floating-promise-in-function
181
+ rulePath: ./rules/typescript/ts.correctness.no-floating-promise-in-function.rule.yaml
182
+ presets:
183
+ - recommended
184
+ - strict
185
+ - id: ts.correctness.no-misused-promises
186
+ rulePath: ./rules/typescript/ts.correctness.no-misused-promises.rule.yaml
187
+ presets:
188
+ - recommended
189
+ - strict
190
+ - id: ts.correctness.assignment-to-import-binding
191
+ rulePath: ./rules/typescript/ts.correctness.assignment-to-import-binding.rule.yaml
192
+ presets:
193
+ - recommended
194
+ - strict
195
+ - id: ts.correctness.self-assignment
196
+ rulePath: ./rules/typescript/ts.correctness.self-assignment.rule.yaml
197
+ presets:
198
+ - recommended
199
+ - strict
200
+ - id: ts.correctness.identical-comparison-operands
201
+ rulePath: ./rules/typescript/ts.correctness.identical-comparison-operands.rule.yaml
202
+ presets:
203
+ - recommended
204
+ - strict
205
+ - id: ts.correctness.duplicate-import-source
206
+ rulePath: ./rules/typescript/ts.correctness.duplicate-import-source.rule.yaml
207
+ presets:
208
+ - recommended
209
+ - strict
210
+ - id: ts.correctness.empty-block-statement
211
+ rulePath: ./rules/typescript/ts.correctness.empty-block-statement.rule.yaml
212
+ presets:
213
+ - recommended
214
+ - strict
215
+ - id: ts.correctness.for-in-on-array
216
+ rulePath: ./rules/typescript/ts.correctness.for-in-on-array.rule.yaml
217
+ presets:
218
+ - recommended
219
+ - strict
220
+ - id: ts.correctness.reassign-catch-binding
221
+ rulePath: ./rules/typescript/ts.correctness.reassign-catch-binding.rule.yaml
222
+ presets:
223
+ - recommended
224
+ - strict
225
+ - id: ts.correctness.regexp-pattern-unusual-control-character
226
+ rulePath: ./rules/typescript/ts.correctness.regexp-pattern-unusual-control-character.rule.yaml
227
+ presets:
228
+ - recommended
229
+ - strict
230
+ - id: ts.correctness.use-number-is-nan
231
+ rulePath: ./rules/typescript/ts.correctness.use-number-is-nan.rule.yaml
232
+ presets:
233
+ - recommended
234
+ - strict
95
235
  - id: ts.quality.swallowed-error
96
236
  rulePath: ./rules/typescript/ts.quality.swallowed-error.rule.yaml
97
237
  presets:
@@ -134,6 +274,89 @@ rules:
134
274
  rulePath: ./rules/typescript/ts.quality.logic-change-without-test-updates.rule.yaml
135
275
  presets:
136
276
  - strict
277
+ - id: ts.quality.no-boolean-parameter-trap
278
+ rulePath: ./rules/typescript/ts.quality.no-boolean-parameter-trap.rule.yaml
279
+ presets:
280
+ - recommended
281
+ - strict
282
+ - id: ts.quality.no-primitive-obsession-in-domain-model
283
+ rulePath: ./rules/typescript/ts.quality.no-primitive-obsession-in-domain-model.rule.yaml
284
+ presets:
285
+ - strict
286
+ - id: ts.quality.no-wide-public-surface
287
+ rulePath: ./rules/typescript/ts.quality.no-wide-public-surface.rule.yaml
288
+ presets:
289
+ - strict
290
+ - id: ts.quality.no-barrel-file-cycle
291
+ rulePath: ./rules/typescript/ts.quality.no-barrel-file-cycle.rule.yaml
292
+ presets:
293
+ - strict
294
+ - id: ts.quality.no-hidden-side-effect-import
295
+ rulePath: ./rules/typescript/ts.quality.no-hidden-side-effect-import.rule.yaml
296
+ presets:
297
+ - recommended
298
+ - strict
299
+ - id: ts.quality.no-mixed-abstraction-level
300
+ rulePath: ./rules/typescript/ts.quality.no-mixed-abstraction-level.rule.yaml
301
+ presets:
302
+ - strict
303
+ - id: ts.quality.no-ambiguous-abbreviations
304
+ rulePath: ./rules/typescript/ts.quality.no-ambiguous-abbreviations.rule.yaml
305
+ presets:
306
+ - strict
307
+ - id: ts.quality.no-inconsistent-error-shape
308
+ rulePath: ./rules/typescript/ts.quality.no-inconsistent-error-shape.rule.yaml
309
+ presets:
310
+ - recommended
311
+ - strict
312
+ - id: ts.quality.no-temporal-coupling
313
+ rulePath: ./rules/typescript/ts.quality.no-temporal-coupling.rule.yaml
314
+ presets:
315
+ - strict
316
+ - id: ts.quality.no-dead-export
317
+ rulePath: ./rules/typescript/ts.quality.no-dead-export.rule.yaml
318
+ presets:
319
+ - strict
320
+ - id: ts.quality.no-empty-function
321
+ rulePath: ./rules/typescript/ts.quality.no-empty-function.rule.yaml
322
+ presets:
323
+ - recommended
324
+ - strict
325
+ - id: ts.testing.no-focused-test
326
+ rulePath: ./rules/typescript/ts.testing.no-focused-test.rule.yaml
327
+ presets:
328
+ - recommended
329
+ - strict
330
+ - id: ts.testing.no-skipped-test-without-ticket
331
+ rulePath: ./rules/typescript/ts.testing.no-skipped-test-without-ticket.rule.yaml
332
+ presets:
333
+ - recommended
334
+ - strict
335
+ - id: ts.testing.no-snapshot-without-intent
336
+ rulePath: ./rules/typescript/ts.testing.no-snapshot-without-intent.rule.yaml
337
+ presets:
338
+ - recommended
339
+ - strict
340
+ - id: ts.testing.no-flaky-timer-test
341
+ rulePath: ./rules/typescript/ts.testing.no-flaky-timer-test.rule.yaml
342
+ presets:
343
+ - recommended
344
+ - strict
345
+ - id: ts.testing.no-network-call-in-unit-test
346
+ rulePath: ./rules/typescript/ts.testing.no-network-call-in-unit-test.rule.yaml
347
+ presets:
348
+ - recommended
349
+ - strict
350
+ - id: ts.testing.no-missing-edge-case-tests
351
+ rulePath: ./rules/typescript/ts.testing.no-missing-edge-case-tests.rule.yaml
352
+ presets:
353
+ - recommended
354
+ - strict
355
+ - id: ts.testing.no-test-only-code-in-production
356
+ rulePath: ./rules/typescript/ts.testing.no-test-only-code-in-production.rule.yaml
357
+ presets:
358
+ - recommended
359
+ - strict
137
360
  - id: ts.config.no-process-env-outside-config
138
361
  rulePath: ./rules/typescript/ts.config.no-process-env-outside-config.rule.yaml
139
362
  presets:
@@ -186,414 +409,1774 @@ rules:
186
409
  rulePath: ./rules/typescript/ts.performance.unnecessary-rerenders-from-state-misuse.rule.yaml
187
410
  presets:
188
411
  - experimental
189
- - id: ts.react.no-cascaded-effect-fetches
190
- rulePath: ./rules/typescript/ts.react.no-cascaded-effect-fetches.rule.yaml
412
+ - id: ts.performance.no-array-spread-in-hot-loop
413
+ rulePath: ./rules/typescript/ts.performance.no-array-spread-in-hot-loop.rule.yaml
191
414
  presets:
415
+ - recommended
192
416
  - strict
193
- - id: ts.next.no-server-client-boundary-leaks
194
- rulePath: ./rules/typescript/ts.next.no-server-client-boundary-leaks.rule.yaml
417
+ - id: ts.performance.no-regex-construction-in-loop
418
+ rulePath: ./rules/typescript/ts.performance.no-regex-construction-in-loop.rule.yaml
195
419
  presets:
420
+ - recommended
196
421
  - strict
197
- - id: security.no-sql-interpolation
198
- rulePath: ./rules/shared/security.no-sql-interpolation.rule.yaml
422
+ - id: ts.performance.no-json-parse-stringify-clone
423
+ rulePath: ./rules/typescript/ts.performance.no-json-parse-stringify-clone.rule.yaml
199
424
  presets:
200
425
  - recommended
201
426
  - strict
202
- - security
203
- - id: ts.security.no-dynamic-execution
204
- rulePath: ./rules/typescript/ts.security.no-dynamic-execution.rule.yaml
427
+ - id: ts.performance.no-sync-fs-in-request-path
428
+ rulePath: ./rules/typescript/ts.performance.no-sync-fs-in-request-path.rule.yaml
205
429
  presets:
206
430
  - recommended
207
431
  - strict
208
- - security
209
- - id: security.no-request-path-file-read
210
- rulePath: ./rules/shared/security.no-request-path-file-read.rule.yaml
432
+ - id: ts.performance.no-large-object-spread-in-loop
433
+ rulePath: ./rules/typescript/ts.performance.no-large-object-spread-in-loop.rule.yaml
211
434
  presets:
212
435
  - recommended
213
436
  - strict
214
- - security
215
- - id: security.no-command-execution-with-request-input
216
- rulePath: ./rules/shared/security.no-command-execution-with-request-input.rule.yaml
437
+ - id: ts.performance.no-n-plus-one-await-in-map
438
+ rulePath: ./rules/typescript/ts.performance.no-n-plus-one-await-in-map.rule.yaml
217
439
  presets:
218
440
  - recommended
219
441
  - strict
220
- - security
221
- - id: ts.security.dangerous-insert-html
222
- rulePath: ./rules/typescript/ts.security.dangerous-insert-html.rule.yaml
442
+ - id: ts.performance.no-unbounded-concurrency
443
+ rulePath: ./rules/typescript/ts.performance.no-unbounded-concurrency.rule.yaml
223
444
  presets:
224
445
  - recommended
225
446
  - strict
226
- - security
227
- - id: ts.security.dangerously-set-inner-html
228
- rulePath: ./rules/typescript/ts.security.dangerously-set-inner-html.rule.yaml
447
+ - id: ts.performance.no-redundant-network-fetch
448
+ rulePath: ./rules/typescript/ts.performance.no-redundant-network-fetch.rule.yaml
229
449
  presets:
230
450
  - recommended
231
451
  - strict
232
- - security
233
- - id: ts.security.no-innerhtml-assignment
234
- rulePath: ./rules/typescript/ts.security.no-innerhtml-assignment.rule.yaml
452
+ - id: ts.performance.no-expensive-sort-in-render-path
453
+ rulePath: ./rules/typescript/ts.performance.no-expensive-sort-in-render-path.rule.yaml
235
454
  presets:
236
455
  - recommended
237
456
  - strict
238
- - security
239
- - id: security.no-hardcoded-credentials
240
- rulePath: ./rules/shared/security.no-hardcoded-credentials.rule.yaml
457
+ - id: ts.performance.no-await-in-loop
458
+ rulePath: ./rules/typescript/ts.performance.no-await-in-loop.rule.yaml
241
459
  presets:
242
460
  - recommended
243
461
  - strict
244
- - security
245
- - id: ts.security.missing-authorization-before-sensitive-action
246
- rulePath: ./rules/typescript/ts.security.missing-authorization-before-sensitive-action.rule.yaml
462
+ - id: ts.performance.no-cache-miss-from-unstable-key
463
+ rulePath: ./rules/typescript/ts.performance.no-cache-miss-from-unstable-key.rule.yaml
247
464
  presets:
465
+ - recommended
248
466
  - strict
249
- - security
250
- - id: ts.security.missing-ownership-validation
251
- rulePath: ./rules/typescript/ts.security.missing-ownership-validation.rule.yaml
467
+ - id: go.performance.no-regex-construction-in-loop
468
+ rulePath: ./rules/go/go.performance.no-regex-construction-in-loop.rule.yaml
252
469
  presets:
253
470
  - strict
254
- - security
255
- - id: ts.security.frontend-only-authorization
256
- rulePath: ./rules/typescript/ts.security.frontend-only-authorization.rule.yaml
471
+ - id: go.performance.no-sync-fs-in-request-path
472
+ rulePath: ./rules/go/go.performance.no-sync-fs-in-request-path.rule.yaml
257
473
  presets:
258
- - experimental
259
- - id: ts.security.token-or-session-not-validated
260
- rulePath: ./rules/typescript/ts.security.token-or-session-not-validated.rule.yaml
474
+ - strict
475
+ - id: go.performance.no-unbounded-concurrency
476
+ rulePath: ./rules/go/go.performance.no-unbounded-concurrency.rule.yaml
261
477
  presets:
262
- - recommended
263
478
  - strict
264
- - security
265
- - id: ts.security.insecure-auth-cookie-flags
266
- rulePath: ./rules/typescript/ts.security.insecure-auth-cookie-flags.rule.yaml
479
+ - id: java.performance.no-regex-construction-in-loop
480
+ rulePath: ./rules/java/java.performance.no-regex-construction-in-loop.rule.yaml
267
481
  presets:
268
- - recommended
269
482
  - strict
270
- - security
271
- - id: ts.security.jwt-sensitive-claims
272
- rulePath: ./rules/typescript/ts.security.jwt-sensitive-claims.rule.yaml
483
+ - id: java.performance.no-sync-fs-in-request-path
484
+ rulePath: ./rules/java/java.performance.no-sync-fs-in-request-path.rule.yaml
273
485
  presets:
274
- - recommended
275
486
  - strict
276
- - security
277
- - id: ts.security.browser-token-storage
278
- rulePath: ./rules/typescript/ts.security.browser-token-storage.rule.yaml
487
+ - id: java.performance.no-unbounded-concurrency
488
+ rulePath: ./rules/java/java.performance.no-unbounded-concurrency.rule.yaml
279
489
  presets:
280
- - recommended
281
490
  - strict
282
- - security
283
- - id: security.tls-verification-disabled
284
- rulePath: ./rules/shared/security.tls-verification-disabled.rule.yaml
491
+ - id: php.correctness.duplicate-array-key
492
+ rulePath: ./rules/php/php.correctness.duplicate-array-key.rule.yaml
285
493
  presets:
286
- - recommended
287
494
  - strict
288
- - security
289
- - id: security.insecure-http-transport
290
- rulePath: ./rules/shared/security.insecure-http-transport.rule.yaml
495
+ - id: php.correctness.error-suppression-operator
496
+ rulePath: ./rules/php/php.correctness.error-suppression-operator.rule.yaml
291
497
  presets:
292
- - recommended
293
498
  - strict
294
- - security
295
- - id: ts.security.weak-tls-version
296
- rulePath: ./rules/typescript/ts.security.weak-tls-version.rule.yaml
499
+ - id: php.correctness.nullsafe-returned-by-reference
500
+ rulePath: ./rules/php/php.correctness.nullsafe-returned-by-reference.rule.yaml
297
501
  presets:
298
- - recommended
299
502
  - strict
300
- - security
301
- - id: ts.security.open-redirect
302
- rulePath: ./rules/typescript/ts.security.open-redirect.rule.yaml
503
+ - id: php.correctness.switch-multiple-default
504
+ rulePath: ./rules/php/php.correctness.switch-multiple-default.rule.yaml
303
505
  presets:
304
- - recommended
305
506
  - strict
306
- - security
307
- - id: ts.security.sensitive-data-egress
308
- rulePath: ./rules/typescript/ts.security.sensitive-data-egress.rule.yaml
507
+ - id: php.correctness.unreachable-after-return
508
+ rulePath: ./rules/php/php.correctness.unreachable-after-return.rule.yaml
309
509
  presets:
310
510
  - strict
311
- - security
312
- - id: security.no-sensitive-data-in-logs-and-telemetry
313
- rulePath: ./rules/shared/security.no-sensitive-data-in-logs-and-telemetry.rule.yaml
511
+ - id: php.performance.no-regex-construction-in-loop
512
+ rulePath: ./rules/php/php.performance.no-regex-construction-in-loop.rule.yaml
314
513
  presets:
315
514
  - strict
316
- - security
317
- - id: ts.security.ssrf
318
- rulePath: ./rules/typescript/ts.security.ssrf.rule.yaml
515
+ - id: php.performance.no-sync-fs-in-request-path
516
+ rulePath: ./rules/php/php.performance.no-sync-fs-in-request-path.rule.yaml
319
517
  presets:
320
- - recommended
321
518
  - strict
322
- - security
323
- - id: ts.security.bind-to-all-interfaces
324
- rulePath: ./rules/typescript/ts.security.bind-to-all-interfaces.rule.yaml
519
+ - id: php.performance.no-unbounded-concurrency
520
+ rulePath: ./rules/php/php.performance.no-unbounded-concurrency.rule.yaml
325
521
  presets:
326
- - recommended
327
522
  - strict
328
- - security
329
- - id: security.weak-hash-algorithm
330
- rulePath: ./rules/shared/security.weak-hash-algorithm.rule.yaml
523
+ - id: py.performance.no-regex-construction-in-loop
524
+ rulePath: ./rules/python/py.performance.no-regex-construction-in-loop.rule.yaml
331
525
  presets:
332
- - recommended
333
526
  - strict
334
- - security
335
- - id: ts.security.weak-cipher-or-mode
336
- rulePath: ./rules/typescript/ts.security.weak-cipher-or-mode.rule.yaml
527
+ - id: py.performance.no-sync-fs-in-request-path
528
+ rulePath: ./rules/python/py.performance.no-sync-fs-in-request-path.rule.yaml
337
529
  presets:
338
- - recommended
339
530
  - strict
340
- - security
341
- - id: ts.security.predictable-token-generation
342
- rulePath: ./rules/typescript/ts.security.predictable-token-generation.rule.yaml
531
+ - id: py.performance.no-unbounded-concurrency
532
+ rulePath: ./rules/python/py.performance.no-unbounded-concurrency.rule.yaml
343
533
  presets:
344
- - recommended
345
534
  - strict
346
- - security
347
- - id: ts.security.insufficiently-random-values
348
- rulePath: ./rules/typescript/ts.security.insufficiently-random-values.rule.yaml
535
+ - id: py.correctness.assert-on-tuple
536
+ rulePath: ./rules/python/py.correctness.assert-on-tuple.rule.yaml
349
537
  presets:
350
538
  - recommended
351
539
  - strict
352
- - security
353
- - id: ts.security.weak-key-strength
354
- rulePath: ./rules/typescript/ts.security.weak-key-strength.rule.yaml
540
+ - id: py.correctness.bare-except
541
+ rulePath: ./rules/python/py.correctness.bare-except.rule.yaml
355
542
  presets:
356
543
  - recommended
357
544
  - strict
358
- - security
359
- - id: ts.security.missing-integrity-check
360
- rulePath: ./rules/typescript/ts.security.missing-integrity-check.rule.yaml
545
+ - id: py.correctness.broad-exception-handler
546
+ rulePath: ./rules/python/py.correctness.broad-exception-handler.rule.yaml
361
547
  presets:
362
548
  - recommended
363
549
  - strict
364
- - security
365
- - id: ts.security.unvalidated-external-input
366
- rulePath: ./rules/typescript/ts.security.unvalidated-external-input.rule.yaml
550
+ - id: py.correctness.dangerous-mutable-default
551
+ rulePath: ./rules/python/py.correctness.dangerous-mutable-default.rule.yaml
367
552
  presets:
553
+ - recommended
368
554
  - strict
369
- - security
370
- - id: security.unsafe-deserialization
371
- rulePath: ./rules/shared/security.unsafe-deserialization.rule.yaml
555
+ - id: py.correctness.duplicate-dict-key
556
+ rulePath: ./rules/python/py.correctness.duplicate-dict-key.rule.yaml
372
557
  presets:
373
558
  - recommended
374
559
  - strict
375
- - security
376
- - id: ts.security.missing-request-timeout-or-retry
377
- rulePath: ./rules/typescript/ts.security.missing-request-timeout-or-retry.rule.yaml
560
+ - id: ruby.performance.no-regex-construction-in-loop
561
+ rulePath: ./rules/ruby/ruby.performance.no-regex-construction-in-loop.rule.yaml
378
562
  presets:
379
563
  - strict
380
- - security
381
- - id: ts.security.datadog-browser-track-user-interactions
382
- rulePath: ./rules/typescript/ts.security.datadog-browser-track-user-interactions.rule.yaml
564
+ - id: ruby.performance.no-sync-fs-in-request-path
565
+ rulePath: ./rules/ruby/ruby.performance.no-sync-fs-in-request-path.rule.yaml
383
566
  presets:
384
567
  - strict
385
- - security
386
- - id: ts.security.dynamodb-query-injection
387
- rulePath: ./rules/typescript/ts.security.dynamodb-query-injection.rule.yaml
568
+ - id: ruby.performance.no-unbounded-concurrency
569
+ rulePath: ./rules/ruby/ruby.performance.no-unbounded-concurrency.rule.yaml
388
570
  presets:
389
- - recommended
390
571
  - strict
391
- - security
392
- - id: ts.security.hardcoded-auth-secret
393
- rulePath: ./rules/typescript/ts.security.hardcoded-auth-secret.rule.yaml
572
+ - id: rust.correctness.block-on-in-async
573
+ rulePath: ./rules/rust/rust.correctness.block-on-in-async.rule.yaml
574
+ presets:
575
+ - strict
576
+ - id: rust.correctness.forget-join-handle
577
+ rulePath: ./rules/rust/rust.correctness.forget-join-handle.rule.yaml
578
+ presets:
579
+ - strict
580
+ - id: rust.correctness.mutex-held-across-await
581
+ rulePath: ./rules/rust/rust.correctness.mutex-held-across-await.rule.yaml
582
+ presets:
583
+ - strict
584
+ - id: rust.correctness.std-mutex-in-async-fn
585
+ rulePath: ./rules/rust/rust.correctness.std-mutex-in-async-fn.rule.yaml
586
+ presets:
587
+ - strict
588
+ - id: rust.correctness.thread-sleep-in-async
589
+ rulePath: ./rules/rust/rust.correctness.thread-sleep-in-async.rule.yaml
590
+ presets:
591
+ - strict
592
+ - id: rust.correctness.unbounded-channel
593
+ rulePath: ./rules/rust/rust.correctness.unbounded-channel.rule.yaml
594
+ presets:
595
+ - strict
596
+ - id: rust.correctness.unchecked-index
597
+ rulePath: ./rules/rust/rust.correctness.unchecked-index.rule.yaml
598
+ presets:
599
+ - strict
600
+ - id: rust.performance.no-regex-construction-in-loop
601
+ rulePath: ./rules/rust/rust.performance.no-regex-construction-in-loop.rule.yaml
602
+ presets:
603
+ - strict
604
+ - id: rust.performance.no-sync-fs-in-request-path
605
+ rulePath: ./rules/rust/rust.performance.no-sync-fs-in-request-path.rule.yaml
606
+ presets:
607
+ - strict
608
+ - id: rust.performance.no-unbounded-concurrency
609
+ rulePath: ./rules/rust/rust.performance.no-unbounded-concurrency.rule.yaml
610
+ presets:
611
+ - strict
612
+ - id: ts.react.no-cascaded-effect-fetches
613
+ rulePath: ./rules/typescript/ts.react.no-cascaded-effect-fetches.rule.yaml
614
+ presets:
615
+ - strict
616
+ - id: ts.react.no-effect-fetch-without-cancellation
617
+ rulePath: ./rules/typescript/ts.react.no-effect-fetch-without-cancellation.rule.yaml
618
+ presets:
619
+ - strict
620
+ - id: ts.next.no-server-client-boundary-leaks
621
+ rulePath: ./rules/typescript/ts.next.no-server-client-boundary-leaks.rule.yaml
622
+ presets:
623
+ - strict
624
+ - id: ts.next.server-action-missing-local-auth
625
+ rulePath: ./rules/typescript/ts.next.server-action-missing-local-auth.rule.yaml
394
626
  presets:
395
627
  - recommended
396
628
  - strict
397
629
  - security
398
- - id: ts.security.import-using-user-input
399
- rulePath: ./rules/typescript/ts.security.import-using-user-input.rule.yaml
630
+ - id: ts.react.no-index-as-key-in-dynamic-list
631
+ rulePath: ./rules/typescript/ts.react.no-index-as-key-in-dynamic-list.rule.yaml
632
+ presets:
633
+ - strict
634
+ - id: ts.react.no-derived-state-from-props
635
+ rulePath: ./rules/typescript/ts.react.no-derived-state-from-props.rule.yaml
636
+ presets:
637
+ - strict
638
+ - id: ts.react.no-missing-error-boundary
639
+ rulePath: ./rules/typescript/ts.react.no-missing-error-boundary.rule.yaml
640
+ presets:
641
+ - strict
642
+ - id: ts.react.no-accessibility-label-missing
643
+ rulePath: ./rules/typescript/ts.react.no-accessibility-label-missing.rule.yaml
644
+ presets:
645
+ - strict
646
+ - id: ts.react.no-img-missing-alt-text
647
+ rulePath: ./rules/typescript/ts.react.no-img-missing-alt-text.rule.yaml
648
+ presets:
649
+ - strict
650
+ - id: ts.react.no-positive-tabindex
651
+ rulePath: ./rules/typescript/ts.react.no-positive-tabindex.rule.yaml
652
+ presets:
653
+ - strict
654
+ - id: ts.react.no-click-without-keyboard-handler
655
+ rulePath: ./rules/typescript/ts.react.no-click-without-keyboard-handler.rule.yaml
656
+ presets:
657
+ - strict
658
+ - id: ts.react.no-find-dom-node
659
+ rulePath: ./rules/typescript/ts.react.no-find-dom-node.rule.yaml
660
+ presets:
661
+ - strict
662
+ - id: ts.react.no-string-ref
663
+ rulePath: ./rules/typescript/ts.react.no-string-ref.rule.yaml
664
+ presets:
665
+ - strict
666
+ - id: ts.react.no-legacy-lifecycle
667
+ rulePath: ./rules/typescript/ts.react.no-legacy-lifecycle.rule.yaml
668
+ presets:
669
+ - strict
670
+ - id: ts.react.no-uncontrolled-to-controlled-input
671
+ rulePath: ./rules/typescript/ts.react.no-uncontrolled-to-controlled-input.rule.yaml
672
+ presets:
673
+ - strict
674
+ - id: ts.react.no-invalid-anchor-href
675
+ rulePath: ./rules/typescript/ts.react.no-invalid-anchor-href.rule.yaml
676
+ presets:
677
+ - strict
678
+ - id: ts.react.no-activedescendant-on-non-focusable-host
679
+ rulePath: ./rules/typescript/ts.react.no-activedescendant-on-non-focusable-host.rule.yaml
680
+ presets:
681
+ - strict
682
+ - id: ts.react.no-widget-role-without-tabindex
683
+ rulePath: ./rules/typescript/ts.react.no-widget-role-without-tabindex.rule.yaml
684
+ presets:
685
+ - strict
686
+ - id: ts.react.no-interactive-role-on-static-semantics
687
+ rulePath: ./rules/typescript/ts.react.no-interactive-role-on-static-semantics.rule.yaml
688
+ presets:
689
+ - strict
690
+ - id: ts.react.no-keyboard-interaction-without-widget-role
691
+ rulePath: ./rules/typescript/ts.react.no-keyboard-interaction-without-widget-role.rule.yaml
692
+ presets:
693
+ - strict
694
+ - id: ts.react.no-static-element-with-synthetic-handlers
695
+ rulePath: ./rules/typescript/ts.react.no-static-element-with-synthetic-handlers.rule.yaml
696
+ presets:
697
+ - strict
698
+ - id: ts.react.no-deprecated-react-dom-root-api
699
+ rulePath: ./rules/typescript/ts.react.no-deprecated-react-dom-root-api.rule.yaml
700
+ presets:
701
+ - strict
702
+ - id: ts.react.no-deprecated-create-factory
703
+ rulePath: ./rules/typescript/ts.react.no-deprecated-create-factory.rule.yaml
704
+ presets:
705
+ - strict
706
+ - id: ts.react.no-bind-in-jsx-props
707
+ rulePath: ./rules/typescript/ts.react.no-bind-in-jsx-props.rule.yaml
708
+ presets:
709
+ - recommended
710
+ - strict
711
+ - id: ts.react.no-jsx-props-spread
712
+ rulePath: ./rules/typescript/ts.react.no-jsx-props-spread.rule.yaml
713
+ presets:
714
+ - recommended
715
+ - strict
716
+ - id: ts.react.no-children-prop
717
+ rulePath: ./rules/typescript/ts.react.no-children-prop.rule.yaml
718
+ presets:
719
+ - recommended
720
+ - strict
721
+ - id: ts.react.no-set-state-in-component-did-mount
722
+ rulePath: ./rules/typescript/ts.react.no-set-state-in-component-did-mount.rule.yaml
723
+ presets:
724
+ - recommended
725
+ - strict
726
+ - id: ts.react.no-set-state-in-component-did-update
727
+ rulePath: ./rules/typescript/ts.react.no-set-state-in-component-did-update.rule.yaml
728
+ presets:
729
+ - recommended
730
+ - strict
731
+ - id: ts.react.no-direct-state-mutation
732
+ rulePath: ./rules/typescript/ts.react.no-direct-state-mutation.rule.yaml
733
+ presets:
734
+ - recommended
735
+ - strict
736
+ - id: ts.react.no-target-blank-without-rel
737
+ rulePath: ./rules/typescript/ts.react.no-target-blank-without-rel.rule.yaml
400
738
  presets:
401
739
  - recommended
402
740
  - strict
403
741
  - security
404
- - id: ts.security.insecure-allow-origin
405
- rulePath: ./rules/typescript/ts.security.insecure-allow-origin.rule.yaml
742
+ - id: ts.react.no-duplicate-jsx-attributes
743
+ rulePath: ./rules/typescript/ts.react.no-duplicate-jsx-attributes.rule.yaml
744
+ presets:
745
+ - recommended
746
+ - strict
747
+ - id: ts.react.no-this-in-function-component
748
+ rulePath: ./rules/typescript/ts.react.no-this-in-function-component.rule.yaml
749
+ presets:
750
+ - recommended
751
+ - strict
752
+ - id: security.no-sql-interpolation
753
+ rulePath: ./rules/shared/security.no-sql-interpolation.rule.yaml
406
754
  presets:
407
755
  - recommended
408
756
  - strict
409
757
  - security
410
- - id: ts.security.permissive-allow-origin
411
- rulePath: ./rules/typescript/ts.security.permissive-allow-origin.rule.yaml
758
+ - id: ts.security.no-dynamic-execution
759
+ rulePath: ./rules/typescript/ts.security.no-dynamic-execution.rule.yaml
412
760
  presets:
413
761
  - recommended
414
762
  - strict
415
763
  - security
416
- - id: ts.security.express-insecure-cookie
417
- rulePath: ./rules/typescript/ts.security.express-insecure-cookie.rule.yaml
764
+ - id: ts.security.no-with-statement
765
+ rulePath: ./rules/typescript/ts.security.no-with-statement.rule.yaml
418
766
  presets:
419
767
  - recommended
420
768
  - strict
421
769
  - security
422
- - id: ts.security.express-cookie-missing-http-only
423
- rulePath: ./rules/typescript/ts.security.express-cookie-missing-http-only.rule.yaml
770
+ - id: ts.security.no-arguments-callee
771
+ rulePath: ./rules/typescript/ts.security.no-arguments-callee.rule.yaml
424
772
  presets:
425
773
  - recommended
426
774
  - strict
427
775
  - security
428
- - id: ts.security.insecure-password-hash-configuration
429
- rulePath: ./rules/typescript/ts.security.insecure-password-hash-configuration.rule.yaml
776
+ - id: ts.security.no-javascript-url
777
+ rulePath: ./rules/typescript/ts.security.no-javascript-url.rule.yaml
430
778
  presets:
431
779
  - recommended
432
780
  - strict
433
781
  - security
434
- - id: ts.security.insecure-websocket-transport
435
- rulePath: ./rules/typescript/ts.security.insecure-websocket-transport.rule.yaml
782
+ - id: ts.security.no-native-prototype-extension
783
+ rulePath: ./rules/typescript/ts.security.no-native-prototype-extension.rule.yaml
436
784
  presets:
437
785
  - recommended
438
786
  - strict
439
787
  - security
440
- - id: ts.security.jwt-not-revoked
441
- rulePath: ./rules/typescript/ts.security.jwt-not-revoked.rule.yaml
788
+ - id: ts.security.no-global-native-reassignment
789
+ rulePath: ./rules/typescript/ts.security.no-global-native-reassignment.rule.yaml
442
790
  presets:
443
791
  - recommended
444
792
  - strict
445
793
  - security
446
- - id: ts.security.handlebars-no-escape
447
- rulePath: ./rules/typescript/ts.security.handlebars-no-escape.rule.yaml
794
+ - id: ts.security.no-throw-literal
795
+ rulePath: ./rules/typescript/ts.security.no-throw-literal.rule.yaml
448
796
  presets:
449
797
  - recommended
450
798
  - strict
451
799
  - security
452
- - id: ts.security.manual-html-sanitization
453
- rulePath: ./rules/typescript/ts.security.manual-html-sanitization.rule.yaml
800
+ - id: ts.security.no-alert-confirm-prompt
801
+ rulePath: ./rules/typescript/ts.security.no-alert-confirm-prompt.rule.yaml
454
802
  presets:
803
+ - recommended
455
804
  - strict
456
805
  - security
457
- - id: ts.security.missing-message-origin-check
458
- rulePath: ./rules/typescript/ts.security.missing-message-origin-check.rule.yaml
806
+ - id: ts.runtime.no-process-exit
807
+ rulePath: ./rules/typescript/ts.runtime.no-process-exit.rule.yaml
459
808
  presets:
460
809
  - recommended
461
810
  - strict
462
811
  - security
463
- - id: ts.security.express-nosql-injection
464
- rulePath: ./rules/typescript/ts.security.express-nosql-injection.rule.yaml
812
+ - id: ts.security.unsafe-dirname-path-concat
813
+ rulePath: ./rules/typescript/ts.security.unsafe-dirname-path-concat.rule.yaml
465
814
  presets:
466
815
  - recommended
467
816
  - strict
468
817
  - security
469
- - id: ts.security.observable-timing-discrepancy
470
- rulePath: ./rules/typescript/ts.security.observable-timing-discrepancy.rule.yaml
818
+ - id: security.no-request-path-file-read
819
+ rulePath: ./rules/shared/security.no-request-path-file-read.rule.yaml
471
820
  presets:
472
821
  - recommended
473
822
  - strict
474
823
  - security
475
- - id: ts.security.external-file-upload
476
- rulePath: ./rules/typescript/ts.security.external-file-upload.rule.yaml
824
+ - id: security.no-command-execution-with-request-input
825
+ rulePath: ./rules/shared/security.no-command-execution-with-request-input.rule.yaml
477
826
  presets:
478
827
  - recommended
479
828
  - strict
480
829
  - security
481
- - id: ts.security.file-generation
482
- rulePath: ./rules/typescript/ts.security.file-generation.rule.yaml
830
+ - id: ts.security.dangerous-insert-html
831
+ rulePath: ./rules/typescript/ts.security.dangerous-insert-html.rule.yaml
483
832
  presets:
484
833
  - recommended
485
834
  - strict
486
835
  - security
487
- - id: ts.security.non-literal-fs-filename
488
- rulePath: ./rules/typescript/ts.security.non-literal-fs-filename.rule.yaml
836
+ - id: ts.security.dangerously-set-inner-html
837
+ rulePath: ./rules/typescript/ts.security.dangerously-set-inner-html.rule.yaml
489
838
  presets:
490
839
  - recommended
491
840
  - strict
492
841
  - security
493
- - id: ts.security.permissive-file-permissions
494
- rulePath: ./rules/typescript/ts.security.permissive-file-permissions.rule.yaml
842
+ - id: ts.security.no-innerhtml-assignment
843
+ rulePath: ./rules/typescript/ts.security.no-innerhtml-assignment.rule.yaml
495
844
  presets:
496
845
  - recommended
497
846
  - strict
498
847
  - security
499
- - id: ts.security.postmessage-wildcard-origin
500
- rulePath: ./rules/typescript/ts.security.postmessage-wildcard-origin.rule.yaml
848
+ - id: security.no-hardcoded-credentials
849
+ rulePath: ./rules/shared/security.no-hardcoded-credentials.rule.yaml
501
850
  presets:
502
851
  - recommended
503
852
  - strict
504
853
  - security
505
- - id: ts.security.raw-html-using-user-input
506
- rulePath: ./rules/typescript/ts.security.raw-html-using-user-input.rule.yaml
854
+ - id: ts.security.missing-authorization-before-sensitive-action
855
+ rulePath: ./rules/typescript/ts.security.missing-authorization-before-sensitive-action.rule.yaml
856
+ presets:
857
+ - strict
858
+ - security
859
+ - id: ts.security.missing-ownership-validation
860
+ rulePath: ./rules/typescript/ts.security.missing-ownership-validation.rule.yaml
861
+ presets:
862
+ - strict
863
+ - security
864
+ - id: ts.security.frontend-only-authorization
865
+ rulePath: ./rules/typescript/ts.security.frontend-only-authorization.rule.yaml
866
+ presets:
867
+ - experimental
868
+ - id: ts.security.token-or-session-not-validated
869
+ rulePath: ./rules/typescript/ts.security.token-or-session-not-validated.rule.yaml
507
870
  presets:
508
871
  - recommended
509
872
  - strict
510
873
  - security
511
- - id: ts.security.sensitive-data-in-exception
512
- rulePath: ./rules/typescript/ts.security.sensitive-data-in-exception.rule.yaml
874
+ - id: ts.security.insecure-auth-cookie-flags
875
+ rulePath: ./rules/typescript/ts.security.insecure-auth-cookie-flags.rule.yaml
513
876
  presets:
514
877
  - recommended
515
878
  - strict
516
879
  - security
517
- - id: ts.security.sensitive-data-written-to-file
518
- rulePath: ./rules/typescript/ts.security.sensitive-data-written-to-file.rule.yaml
880
+ - id: ts.security.jwt-sensitive-claims
881
+ rulePath: ./rules/typescript/ts.security.jwt-sensitive-claims.rule.yaml
519
882
  presets:
520
883
  - recommended
521
884
  - strict
522
885
  - security
523
- - id: ts.security.information-leakage
524
- rulePath: ./rules/typescript/ts.security.information-leakage.rule.yaml
886
+ - id: ts.security.angular-dom-sanitizer-bypass-untrusted-input
887
+ rulePath: ./rules/typescript/ts.security.angular-dom-sanitizer-bypass-untrusted-input.rule.yaml
525
888
  presets:
526
889
  - recommended
527
890
  - strict
528
891
  - security
529
- - id: ts.security.ui-redress
530
- rulePath: ./rules/typescript/ts.security.ui-redress.rule.yaml
892
+ - id: ts.security.astro-vite-public-secret-define
893
+ rulePath: ./rules/typescript/ts.security.astro-vite-public-secret-define.rule.yaml
531
894
  presets:
532
895
  - recommended
533
896
  - strict
534
897
  - security
535
- - id: ts.security.format-string-using-user-input
536
- rulePath: ./rules/typescript/ts.security.format-string-using-user-input.rule.yaml
898
+ - id: ts.security.nuxt-public-runtime-secret
899
+ rulePath: ./rules/typescript/ts.security.nuxt-public-runtime-secret.rule.yaml
537
900
  presets:
538
901
  - recommended
539
902
  - strict
540
903
  - security
541
- - id: ts.security.user-controlled-sendfile
542
- rulePath: ./rules/typescript/ts.security.user-controlled-sendfile.rule.yaml
904
+ - id: ts.security.apollo-server-csrf-disabled
905
+ rulePath: ./rules/typescript/ts.security.apollo-server-csrf-disabled.rule.yaml
543
906
  presets:
544
907
  - recommended
545
908
  - strict
546
909
  - security
547
- - id: ts.security.user-controlled-view-render
548
- rulePath: ./rules/typescript/ts.security.user-controlled-view-render.rule.yaml
910
+ - id: ts.security.apollo-server-introspection-exposure
911
+ rulePath: ./rules/typescript/ts.security.apollo-server-introspection-exposure.rule.yaml
549
912
  presets:
913
+ - recommended
550
914
  - strict
551
915
  - security
552
- - id: ts.security.exposed-directory-listing
553
- rulePath: ./rules/typescript/ts.security.exposed-directory-listing.rule.yaml
916
+ - id: ts.security.apollo-server-missing-query-limits
917
+ rulePath: ./rules/typescript/ts.security.apollo-server-missing-query-limits.rule.yaml
554
918
  presets:
555
919
  - recommended
556
920
  - strict
557
921
  - security
558
- - id: ts.security.express-default-session-config
559
- rulePath: ./rules/typescript/ts.security.express-default-session-config.rule.yaml
922
+ - id: ts.security.apollo-server-graphql-dev-tooling-exposure
923
+ rulePath: ./rules/typescript/ts.security.apollo-server-graphql-dev-tooling-exposure.rule.yaml
560
924
  presets:
925
+ - recommended
561
926
  - strict
562
927
  - security
563
- - id: ts.security.express-default-cookie-config
564
- rulePath: ./rules/typescript/ts.security.express-default-cookie-config.rule.yaml
928
+ - id: ts.security.graphql-upload-without-csrf-guard
929
+ rulePath: ./rules/typescript/ts.security.graphql-upload-without-csrf-guard.rule.yaml
930
+ presets:
931
+ - recommended
932
+ - strict
933
+ - security
934
+ - id: ts.security.browser-token-storage
935
+ rulePath: ./rules/typescript/ts.security.browser-token-storage.rule.yaml
565
936
  presets:
937
+ - recommended
566
938
  - strict
567
939
  - security
568
- - id: ts.security.express-permissive-cookie-config
569
- rulePath: ./rules/typescript/ts.security.express-permissive-cookie-config.rule.yaml
940
+ - id: security.tls-verification-disabled
941
+ rulePath: ./rules/shared/security.tls-verification-disabled.rule.yaml
570
942
  presets:
943
+ - recommended
571
944
  - strict
572
945
  - security
573
- - id: ts.security.express-static-assets-after-session
574
- rulePath: ./rules/typescript/ts.security.express-static-assets-after-session.rule.yaml
946
+ - id: security.insecure-http-transport
947
+ rulePath: ./rules/shared/security.insecure-http-transport.rule.yaml
575
948
  presets:
949
+ - recommended
576
950
  - strict
577
951
  - security
578
- - id: ts.security.express-missing-helmet
579
- rulePath: ./rules/typescript/ts.security.express-missing-helmet.rule.yaml
952
+ - id: ts.security.weak-tls-version
953
+ rulePath: ./rules/typescript/ts.security.weak-tls-version.rule.yaml
580
954
  presets:
955
+ - recommended
581
956
  - strict
582
957
  - security
583
- - id: ts.security.express-reduce-fingerprint
584
- rulePath: ./rules/typescript/ts.security.express-reduce-fingerprint.rule.yaml
958
+ - id: ts.security.open-redirect
959
+ rulePath: ./rules/typescript/ts.security.open-redirect.rule.yaml
585
960
  presets:
961
+ - recommended
586
962
  - strict
587
963
  - security
588
- - id: ts.security.debug-mode-enabled
589
- rulePath: ./rules/typescript/ts.security.debug-mode-enabled.rule.yaml
964
+ - id: ts.security.sensitive-data-egress
965
+ rulePath: ./rules/typescript/ts.security.sensitive-data-egress.rule.yaml
966
+ presets:
967
+ - strict
968
+ - security
969
+ - id: security.sensitive-data-egress
970
+ rulePath: ./rules/shared/security.sensitive-data-egress.rule.yaml
971
+ presets:
972
+ - strict
973
+ - security
974
+ - id: ts.security.unsafe-dompurify-version
975
+ rulePath: ./rules/typescript/ts.security.unsafe-dompurify-version.rule.yaml
976
+ presets:
977
+ - strict
978
+ - security
979
+ - id: ts.security.unsafe-marked-version
980
+ rulePath: ./rules/typescript/ts.security.unsafe-marked-version.rule.yaml
981
+ presets:
982
+ - strict
983
+ - security
984
+ - id: security.no-sensitive-data-in-logs-and-telemetry
985
+ rulePath: ./rules/shared/security.no-sensitive-data-in-logs-and-telemetry.rule.yaml
986
+ presets:
987
+ - strict
988
+ - security
989
+ - id: ts.security.ssrf
990
+ rulePath: ./rules/typescript/ts.security.ssrf.rule.yaml
590
991
  presets:
591
992
  - recommended
592
993
  - strict
593
994
  - security
594
- - id: ts.security.unsanitized-http-response
595
- rulePath: ./rules/typescript/ts.security.unsanitized-http-response.rule.yaml
995
+ - id: ts.security.bind-to-all-interfaces
996
+ rulePath: ./rules/typescript/ts.security.bind-to-all-interfaces.rule.yaml
997
+ presets:
998
+ - recommended
999
+ - strict
1000
+ - security
1001
+ - id: security.weak-hash-algorithm
1002
+ rulePath: ./rules/shared/security.weak-hash-algorithm.rule.yaml
596
1003
  presets:
597
1004
  - recommended
598
1005
  - strict
599
1006
  - security
1007
+ - id: ts.security.weak-cipher-or-mode
1008
+ rulePath: ./rules/typescript/ts.security.weak-cipher-or-mode.rule.yaml
1009
+ presets:
1010
+ - recommended
1011
+ - strict
1012
+ - security
1013
+ - id: ts.security.predictable-token-generation
1014
+ rulePath: ./rules/typescript/ts.security.predictable-token-generation.rule.yaml
1015
+ presets:
1016
+ - recommended
1017
+ - strict
1018
+ - security
1019
+ - id: ts.security.insufficiently-random-values
1020
+ rulePath: ./rules/typescript/ts.security.insufficiently-random-values.rule.yaml
1021
+ presets:
1022
+ - recommended
1023
+ - strict
1024
+ - security
1025
+ - id: ts.security.weak-key-strength
1026
+ rulePath: ./rules/typescript/ts.security.weak-key-strength.rule.yaml
1027
+ presets:
1028
+ - recommended
1029
+ - strict
1030
+ - security
1031
+ - id: ts.security.missing-integrity-check
1032
+ rulePath: ./rules/typescript/ts.security.missing-integrity-check.rule.yaml
1033
+ presets:
1034
+ - recommended
1035
+ - strict
1036
+ - security
1037
+ - id: ts.security.unvalidated-external-input
1038
+ rulePath: ./rules/typescript/ts.security.unvalidated-external-input.rule.yaml
1039
+ presets:
1040
+ - strict
1041
+ - security
1042
+ - id: security.unsafe-deserialization
1043
+ rulePath: ./rules/shared/security.unsafe-deserialization.rule.yaml
1044
+ presets:
1045
+ - recommended
1046
+ - strict
1047
+ - security
1048
+ - id: ts.security.missing-request-timeout-or-retry
1049
+ rulePath: ./rules/typescript/ts.security.missing-request-timeout-or-retry.rule.yaml
1050
+ presets:
1051
+ - strict
1052
+ - security
1053
+ - id: ts.security.datadog-browser-track-user-interactions
1054
+ rulePath: ./rules/typescript/ts.security.datadog-browser-track-user-interactions.rule.yaml
1055
+ presets:
1056
+ - strict
1057
+ - security
1058
+ - id: ts.security.dynamodb-query-injection
1059
+ rulePath: ./rules/typescript/ts.security.dynamodb-query-injection.rule.yaml
1060
+ presets:
1061
+ - recommended
1062
+ - strict
1063
+ - security
1064
+ - id: ts.security.hardcoded-auth-secret
1065
+ rulePath: ./rules/typescript/ts.security.hardcoded-auth-secret.rule.yaml
1066
+ presets:
1067
+ - recommended
1068
+ - strict
1069
+ - security
1070
+ - id: ts.security.import-using-user-input
1071
+ rulePath: ./rules/typescript/ts.security.import-using-user-input.rule.yaml
1072
+ presets:
1073
+ - recommended
1074
+ - strict
1075
+ - security
1076
+ - id: ts.security.insecure-allow-origin
1077
+ rulePath: ./rules/typescript/ts.security.insecure-allow-origin.rule.yaml
1078
+ presets:
1079
+ - recommended
1080
+ - strict
1081
+ - security
1082
+ - id: ts.security.permissive-allow-origin
1083
+ rulePath: ./rules/typescript/ts.security.permissive-allow-origin.rule.yaml
1084
+ presets:
1085
+ - recommended
1086
+ - strict
1087
+ - security
1088
+ - id: ts.security.express-insecure-cookie
1089
+ rulePath: ./rules/typescript/ts.security.express-insecure-cookie.rule.yaml
1090
+ presets:
1091
+ - recommended
1092
+ - strict
1093
+ - security
1094
+ - id: ts.security.express-cookie-missing-http-only
1095
+ rulePath: ./rules/typescript/ts.security.express-cookie-missing-http-only.rule.yaml
1096
+ presets:
1097
+ - recommended
1098
+ - strict
1099
+ - security
1100
+ - id: ts.security.insecure-password-hash-configuration
1101
+ rulePath: ./rules/typescript/ts.security.insecure-password-hash-configuration.rule.yaml
1102
+ presets:
1103
+ - recommended
1104
+ - strict
1105
+ - security
1106
+ - id: ts.security.insecure-websocket-transport
1107
+ rulePath: ./rules/typescript/ts.security.insecure-websocket-transport.rule.yaml
1108
+ presets:
1109
+ - recommended
1110
+ - strict
1111
+ - security
1112
+ - id: ts.security.jwt-not-revoked
1113
+ rulePath: ./rules/typescript/ts.security.jwt-not-revoked.rule.yaml
1114
+ presets:
1115
+ - recommended
1116
+ - strict
1117
+ - security
1118
+ - id: ts.security.handlebars-no-escape
1119
+ rulePath: ./rules/typescript/ts.security.handlebars-no-escape.rule.yaml
1120
+ presets:
1121
+ - recommended
1122
+ - strict
1123
+ - security
1124
+ - id: ts.security.manual-html-sanitization
1125
+ rulePath: ./rules/typescript/ts.security.manual-html-sanitization.rule.yaml
1126
+ presets:
1127
+ - strict
1128
+ - security
1129
+ - id: ts.security.missing-message-origin-check
1130
+ rulePath: ./rules/typescript/ts.security.missing-message-origin-check.rule.yaml
1131
+ presets:
1132
+ - recommended
1133
+ - strict
1134
+ - security
1135
+ - id: ts.security.nestjs-helmet-after-route-mount
1136
+ rulePath: ./rules/typescript/ts.security.nestjs-helmet-after-route-mount.rule.yaml
1137
+ presets:
1138
+ - recommended
1139
+ - strict
1140
+ - security
1141
+ - id: ts.security.nestjs-missing-global-validation-pipe
1142
+ rulePath: ./rules/typescript/ts.security.nestjs-missing-global-validation-pipe.rule.yaml
1143
+ presets:
1144
+ - recommended
1145
+ - strict
1146
+ - security
1147
+ - id: ts.security.nestjs-skip-throttle-sensitive-route
1148
+ rulePath: ./rules/typescript/ts.security.nestjs-skip-throttle-sensitive-route.rule.yaml
1149
+ presets:
1150
+ - recommended
1151
+ - strict
1152
+ - security
1153
+ - id: ts.security.nestjs-validation-pipe-without-whitelist
1154
+ rulePath: ./rules/typescript/ts.security.nestjs-validation-pipe-without-whitelist.rule.yaml
1155
+ presets:
1156
+ - recommended
1157
+ - strict
1158
+ - security
1159
+ - id: ts.security.express-nosql-injection
1160
+ rulePath: ./rules/typescript/ts.security.express-nosql-injection.rule.yaml
1161
+ presets:
1162
+ - recommended
1163
+ - strict
1164
+ - security
1165
+ - id: ts.security.observable-timing-discrepancy
1166
+ rulePath: ./rules/typescript/ts.security.observable-timing-discrepancy.rule.yaml
1167
+ presets:
1168
+ - recommended
1169
+ - strict
1170
+ - security
1171
+ - id: ts.security.external-file-upload
1172
+ rulePath: ./rules/typescript/ts.security.external-file-upload.rule.yaml
1173
+ presets:
1174
+ - recommended
1175
+ - strict
1176
+ - security
1177
+ - id: security.external-file-upload
1178
+ rulePath: ./rules/shared/security.external-file-upload.rule.yaml
1179
+ presets:
1180
+ - recommended
1181
+ - strict
1182
+ - security
1183
+ - id: security.archive-path-traversal
1184
+ rulePath: ./rules/shared/security.archive-path-traversal.rule.yaml
1185
+ presets:
1186
+ - recommended
1187
+ - strict
1188
+ - security
1189
+ - id: ts.security.file-generation
1190
+ rulePath: ./rules/typescript/ts.security.file-generation.rule.yaml
1191
+ presets:
1192
+ - recommended
1193
+ - strict
1194
+ - security
1195
+ - id: ts.security.non-literal-fs-filename
1196
+ rulePath: ./rules/typescript/ts.security.non-literal-fs-filename.rule.yaml
1197
+ presets:
1198
+ - recommended
1199
+ - strict
1200
+ - security
1201
+ - id: ts.security.permissive-file-permissions
1202
+ rulePath: ./rules/typescript/ts.security.permissive-file-permissions.rule.yaml
1203
+ presets:
1204
+ - recommended
1205
+ - strict
1206
+ - security
1207
+ - id: security.permissive-file-permissions
1208
+ rulePath: ./rules/shared/security.permissive-file-permissions.rule.yaml
1209
+ presets:
1210
+ - recommended
1211
+ - strict
1212
+ - security
1213
+ - id: ts.security.postmessage-wildcard-origin
1214
+ rulePath: ./rules/typescript/ts.security.postmessage-wildcard-origin.rule.yaml
1215
+ presets:
1216
+ - recommended
1217
+ - strict
1218
+ - security
1219
+ - id: ts.security.raw-html-using-user-input
1220
+ rulePath: ./rules/typescript/ts.security.raw-html-using-user-input.rule.yaml
1221
+ presets:
1222
+ - recommended
1223
+ - strict
1224
+ - security
1225
+ - id: ts.security.sensitive-data-in-exception
1226
+ rulePath: ./rules/typescript/ts.security.sensitive-data-in-exception.rule.yaml
1227
+ presets:
1228
+ - recommended
1229
+ - strict
1230
+ - security
1231
+ - id: ts.security.sensitive-data-written-to-file
1232
+ rulePath: ./rules/typescript/ts.security.sensitive-data-written-to-file.rule.yaml
1233
+ presets:
1234
+ - recommended
1235
+ - strict
1236
+ - security
1237
+ - id: ts.security.information-leakage
1238
+ rulePath: ./rules/typescript/ts.security.information-leakage.rule.yaml
1239
+ presets:
1240
+ - recommended
1241
+ - strict
1242
+ - security
1243
+ - id: ts.security.ui-redress
1244
+ rulePath: ./rules/typescript/ts.security.ui-redress.rule.yaml
1245
+ presets:
1246
+ - recommended
1247
+ - strict
1248
+ - security
1249
+ - id: ts.security.insecure-helmet-hardening-options
1250
+ rulePath: ./rules/typescript/ts.security.insecure-helmet-hardening-options.rule.yaml
1251
+ presets:
1252
+ - strict
1253
+ - security
1254
+ - id: ts.security.express-static-dotfiles-allow
1255
+ rulePath: ./rules/typescript/ts.security.express-static-dotfiles-allow.rule.yaml
1256
+ presets:
1257
+ - strict
1258
+ - security
1259
+ - id: ts.security.insecure-content-security-policy-literal
1260
+ rulePath: ./rules/typescript/ts.security.insecure-content-security-policy-literal.rule.yaml
1261
+ presets:
1262
+ - strict
1263
+ - security
1264
+ - id: ts.security.ajv-insecure-configuration
1265
+ rulePath: ./rules/typescript/ts.security.ajv-insecure-configuration.rule.yaml
1266
+ presets:
1267
+ - strict
1268
+ - security
1269
+ - id: ts.security.xml-parse-string-with-untrusted-input
1270
+ rulePath: ./rules/typescript/ts.security.xml-parse-string-with-untrusted-input.rule.yaml
1271
+ presets:
1272
+ - strict
1273
+ - security
1274
+ - id: ts.security.express-error-handler-information-disclosure
1275
+ rulePath: ./rules/typescript/ts.security.express-error-handler-information-disclosure.rule.yaml
1276
+ presets:
1277
+ - strict
1278
+ - security
1279
+ - id: ts.security.express-permissive-cors
1280
+ rulePath: ./rules/typescript/ts.security.express-permissive-cors.rule.yaml
1281
+ presets:
1282
+ - strict
1283
+ - security
1284
+ - id: ts.security.no-sync-child-process-exec
1285
+ rulePath: ./rules/typescript/ts.security.no-sync-child-process-exec.rule.yaml
1286
+ presets:
1287
+ - recommended
1288
+ - strict
1289
+ - security
1290
+ - id: ts.security.no-fs-readfile-sync-in-handler
1291
+ rulePath: ./rules/typescript/ts.security.no-fs-readfile-sync-in-handler.rule.yaml
1292
+ presets:
1293
+ - recommended
1294
+ - strict
1295
+ - security
1296
+ - id: ts.security.no-assign-mutable-export
1297
+ rulePath: ./rules/typescript/ts.security.no-assign-mutable-export.rule.yaml
1298
+ presets:
1299
+ - strict
1300
+ - security
1301
+ - id: ts.security.request-driven-array-index-access
1302
+ rulePath: ./rules/typescript/ts.security.request-driven-array-index-access.rule.yaml
1303
+ presets:
1304
+ - strict
1305
+ - security
1306
+ - id: ts.security.express-user-controlled-static-mount
1307
+ rulePath: ./rules/typescript/ts.security.express-user-controlled-static-mount.rule.yaml
1308
+ presets:
1309
+ - strict
1310
+ - security
1311
+ - id: ts.security.legacy-buffer-constructor
1312
+ rulePath: ./rules/typescript/ts.security.legacy-buffer-constructor.rule.yaml
1313
+ presets:
1314
+ - recommended
1315
+ - strict
1316
+ - security
1317
+ - id: ts.security.iframe-missing-sandbox-attribute
1318
+ rulePath: ./rules/typescript/ts.security.iframe-missing-sandbox-attribute.rule.yaml
1319
+ presets:
1320
+ - strict
1321
+ - security
1322
+ - id: ts.security.jwt-insecure-signing-algorithm
1323
+ rulePath: ./rules/typescript/ts.security.jwt-insecure-signing-algorithm.rule.yaml
1324
+ presets:
1325
+ - recommended
1326
+ - strict
1327
+ - security
1328
+ - id: ts.security.electron-dangerous-webpreferences
1329
+ rulePath: ./rules/typescript/ts.security.electron-dangerous-webpreferences.rule.yaml
1330
+ presets:
1331
+ - strict
1332
+ - security
1333
+ - id: ts.security.electron-missing-ipc-origin-check
1334
+ rulePath: ./rules/typescript/ts.security.electron-missing-ipc-origin-check.rule.yaml
1335
+ presets:
1336
+ - strict
1337
+ - security
1338
+ - id: ts.security.electron-insecure-local-state
1339
+ rulePath: ./rules/typescript/ts.security.electron-insecure-local-state.rule.yaml
1340
+ presets:
1341
+ - strict
1342
+ - security
1343
+ - id: ts.security.electron-shell-open-external-unvalidated
1344
+ rulePath: ./rules/typescript/ts.security.electron-shell-open-external-unvalidated.rule.yaml
1345
+ presets:
1346
+ - strict
1347
+ - security
1348
+ - id: ts.security.format-string-using-user-input
1349
+ rulePath: ./rules/typescript/ts.security.format-string-using-user-input.rule.yaml
1350
+ presets:
1351
+ - recommended
1352
+ - strict
1353
+ - security
1354
+ - id: ts.security.log-injection
1355
+ rulePath: ./rules/typescript/ts.security.log-injection.rule.yaml
1356
+ presets:
1357
+ - recommended
1358
+ - strict
1359
+ - security
1360
+ - id: ts.security.user-controlled-sendfile
1361
+ rulePath: ./rules/typescript/ts.security.user-controlled-sendfile.rule.yaml
1362
+ presets:
1363
+ - recommended
1364
+ - strict
1365
+ - security
1366
+ - id: ts.security.user-controlled-view-render
1367
+ rulePath: ./rules/typescript/ts.security.user-controlled-view-render.rule.yaml
1368
+ presets:
1369
+ - strict
1370
+ - security
1371
+ - id: ts.security.exposed-directory-listing
1372
+ rulePath: ./rules/typescript/ts.security.exposed-directory-listing.rule.yaml
1373
+ presets:
1374
+ - recommended
1375
+ - strict
1376
+ - security
1377
+ - id: ts.security.express-default-session-config
1378
+ rulePath: ./rules/typescript/ts.security.express-default-session-config.rule.yaml
1379
+ presets:
1380
+ - strict
1381
+ - security
1382
+ - id: ts.security.express-default-cookie-config
1383
+ rulePath: ./rules/typescript/ts.security.express-default-cookie-config.rule.yaml
1384
+ presets:
1385
+ - strict
1386
+ - security
1387
+ - id: ts.security.express-permissive-cookie-config
1388
+ rulePath: ./rules/typescript/ts.security.express-permissive-cookie-config.rule.yaml
1389
+ presets:
1390
+ - strict
1391
+ - security
1392
+ - id: ts.security.express-static-assets-after-session
1393
+ rulePath: ./rules/typescript/ts.security.express-static-assets-after-session.rule.yaml
1394
+ presets:
1395
+ - strict
1396
+ - security
1397
+ - id: ts.security.express-unbounded-body-parser
1398
+ rulePath: ./rules/typescript/ts.security.express-unbounded-body-parser.rule.yaml
1399
+ presets:
1400
+ - recommended
1401
+ - strict
1402
+ - security
1403
+ - id: ts.security.fastify-excessive-body-limit
1404
+ rulePath: ./rules/typescript/ts.security.fastify-excessive-body-limit.rule.yaml
1405
+ presets:
1406
+ - recommended
1407
+ - strict
1408
+ - security
1409
+ - id: ts.security.fastify-public-bind-without-trust-proxy
1410
+ rulePath: ./rules/typescript/ts.security.fastify-public-bind-without-trust-proxy.rule.yaml
1411
+ presets:
1412
+ - recommended
1413
+ - strict
1414
+ - security
1415
+ - id: ts.security.express-missing-helmet
1416
+ rulePath: ./rules/typescript/ts.security.express-missing-helmet.rule.yaml
1417
+ presets:
1418
+ - strict
1419
+ - security
1420
+ - id: ts.security.express-reduce-fingerprint
1421
+ rulePath: ./rules/typescript/ts.security.express-reduce-fingerprint.rule.yaml
1422
+ presets:
1423
+ - strict
1424
+ - security
1425
+ - id: ts.security.debug-mode-enabled
1426
+ rulePath: ./rules/typescript/ts.security.debug-mode-enabled.rule.yaml
1427
+ presets:
1428
+ - recommended
1429
+ - strict
1430
+ - security
1431
+ - id: ts.security.debug-statement-in-source
1432
+ rulePath: ./rules/typescript/ts.security.debug-statement-in-source.rule.yaml
1433
+ presets:
1434
+ - recommended
1435
+ - strict
1436
+ - security
1437
+ - id: ts.security.unsanitized-http-response
1438
+ rulePath: ./rules/typescript/ts.security.unsanitized-http-response.rule.yaml
1439
+ presets:
1440
+ - recommended
1441
+ - strict
1442
+ - security
1443
+ - id: py.security.django-unsafe-production-settings
1444
+ rulePath: ./rules/python/py.security.django-unsafe-production-settings.rule.yaml
1445
+ presets:
1446
+ - strict
1447
+ - security
1448
+ - id: py.security.django-csrf-exempt-state-changing
1449
+ rulePath: ./rules/python/py.security.django-csrf-exempt-state-changing.rule.yaml
1450
+ presets:
1451
+ - strict
1452
+ - security
1453
+ - id: py.security.django-missing-csrf-middleware
1454
+ rulePath: ./rules/python/py.security.django-missing-csrf-middleware.rule.yaml
1455
+ presets:
1456
+ - strict
1457
+ - security
1458
+ - id: py.security.drf-allow-any-default
1459
+ rulePath: ./rules/python/py.security.drf-allow-any-default.rule.yaml
1460
+ presets:
1461
+ - strict
1462
+ - security
1463
+ - id: py.security.drf-allow-any-unsafe-method
1464
+ rulePath: ./rules/python/py.security.drf-allow-any-unsafe-method.rule.yaml
1465
+ presets:
1466
+ - strict
1467
+ - security
1468
+ - id: py.security.flask-unsafe-html-output
1469
+ rulePath: ./rules/python/py.security.flask-unsafe-html-output.rule.yaml
1470
+ presets:
1471
+ - strict
1472
+ - security
1473
+ - id: py.security.flask-unsafe-upload-filename
1474
+ rulePath: ./rules/python/py.security.flask-unsafe-upload-filename.rule.yaml
1475
+ presets:
1476
+ - strict
1477
+ - security
1478
+ - id: py.security.flask-missing-upload-body-limit
1479
+ rulePath: ./rules/python/py.security.flask-missing-upload-body-limit.rule.yaml
1480
+ presets:
1481
+ - strict
1482
+ - security
1483
+ - id: py.security.flask-debug-enabled
1484
+ rulePath: ./rules/python/py.security.flask-debug-enabled.rule.yaml
1485
+ presets:
1486
+ - strict
1487
+ - security
1488
+ - id: py.security.django-mark-safe
1489
+ rulePath: ./rules/python/py.security.django-mark-safe.rule.yaml
1490
+ presets:
1491
+ - strict
1492
+ - security
1493
+ - id: py.security.django-format-html-unsafe
1494
+ rulePath: ./rules/python/py.security.django-format-html-unsafe.rule.yaml
1495
+ presets:
1496
+ - strict
1497
+ - security
1498
+ - id: py.security.django-security-middleware-missing
1499
+ rulePath: ./rules/python/py.security.django-security-middleware-missing.rule.yaml
1500
+ presets:
1501
+ - strict
1502
+ - security
1503
+ - id: py.security.fastapi-insecure-cors
1504
+ rulePath: ./rules/python/py.security.fastapi-insecure-cors.rule.yaml
1505
+ presets:
1506
+ - strict
1507
+ - security
1508
+ - id: py.security.subprocess-shell-enabled
1509
+ rulePath: ./rules/python/py.security.subprocess-shell-enabled.rule.yaml
1510
+ presets:
1511
+ - strict
1512
+ - security
1513
+ - id: py.security.dynamic-code-execution
1514
+ rulePath: ./rules/python/py.security.dynamic-code-execution.rule.yaml
1515
+ presets:
1516
+ - strict
1517
+ - security
1518
+ - id: py.security.insecure-yaml-load
1519
+ rulePath: ./rules/python/py.security.insecure-yaml-load.rule.yaml
1520
+ presets:
1521
+ - strict
1522
+ - security
1523
+ - id: py.security.insecure-temp-file
1524
+ rulePath: ./rules/python/py.security.insecure-temp-file.rule.yaml
1525
+ presets:
1526
+ - strict
1527
+ - security
1528
+ - id: py.security.bind-all-interfaces
1529
+ rulePath: ./rules/python/py.security.bind-all-interfaces.rule.yaml
1530
+ presets:
1531
+ - strict
1532
+ - security
1533
+ - id: py.security.debugger-import
1534
+ rulePath: ./rules/python/py.security.debugger-import.rule.yaml
1535
+ presets:
1536
+ - strict
1537
+ - security
1538
+ - id: py.security.jinja-autoescape-disabled
1539
+ rulePath: ./rules/python/py.security.jinja-autoescape-disabled.rule.yaml
1540
+ presets:
1541
+ - strict
1542
+ - security
1543
+ - id: java.security.android-screenshot-exposure
1544
+ rulePath: ./rules/java/java.security.android-screenshot-exposure.rule.yaml
1545
+ presets:
1546
+ - recommended
1547
+ - strict
1548
+ - security
1549
+ - id: java.security.android-world-readable-mode
1550
+ rulePath: ./rules/java/java.security.android-world-readable-mode.rule.yaml
1551
+ presets:
1552
+ - recommended
1553
+ - strict
1554
+ - security
1555
+ - id: java.security.jpa-concatenated-query
1556
+ rulePath: ./rules/java/java.security.jpa-concatenated-query.rule.yaml
1557
+ presets:
1558
+ - strict
1559
+ - security
1560
+ - id: java.security.reflected-output-from-request
1561
+ rulePath: ./rules/java/java.security.reflected-output-from-request.rule.yaml
1562
+ presets:
1563
+ - strict
1564
+ - security
1565
+ - id: java.security.servlet-insecure-cookie
1566
+ rulePath: ./rules/java/java.security.servlet-insecure-cookie.rule.yaml
1567
+ presets:
1568
+ - recommended
1569
+ - strict
1570
+ - security
1571
+ - id: java.security.spring-actuator-health-details-always
1572
+ rulePath: ./rules/java/java.security.spring-actuator-health-details-always.rule.yaml
1573
+ presets:
1574
+ - strict
1575
+ - security
1576
+ - id: java.security.spring-actuator-sensitive-exposure
1577
+ rulePath: ./rules/java/java.security.spring-actuator-sensitive-exposure.rule.yaml
1578
+ presets:
1579
+ - strict
1580
+ - security
1581
+ - id: java.security.spring-csrf-globally-disabled
1582
+ rulePath: ./rules/java/java.security.spring-csrf-globally-disabled.rule.yaml
1583
+ presets:
1584
+ - strict
1585
+ - security
1586
+ - id: java.security.spring-debug-exposure
1587
+ rulePath: ./rules/java/java.security.spring-debug-exposure.rule.yaml
1588
+ presets:
1589
+ - strict
1590
+ - security
1591
+ - id: java.security.spring-permit-all-default
1592
+ rulePath: ./rules/java/java.security.spring-permit-all-default.rule.yaml
1593
+ presets:
1594
+ - strict
1595
+ - security
1596
+ - id: java.security.spring-webmvc-unrestricted-data-binding
1597
+ rulePath: ./rules/java/java.security.spring-webmvc-unrestricted-data-binding.rule.yaml
1598
+ presets:
1599
+ - strict
1600
+ - security
1601
+ - id: java.security.template-unescaped-user-output
1602
+ rulePath: ./rules/java/java.security.template-unescaped-user-output.rule.yaml
1603
+ presets:
1604
+ - strict
1605
+ - security
1606
+ - id: java.security.unsafe-jackson-deserialization
1607
+ rulePath: ./rules/java/java.security.unsafe-jackson-deserialization.rule.yaml
1608
+ presets:
1609
+ - strict
1610
+ - security
1611
+ - id: java.security.xxe-document-builder
1612
+ rulePath: ./rules/java/java.security.xxe-document-builder.rule.yaml
1613
+ presets:
1614
+ - strict
1615
+ - security
1616
+ - id: java.security.xxe-xml-input-factory
1617
+ rulePath: ./rules/java/java.security.xxe-xml-input-factory.rule.yaml
1618
+ presets:
1619
+ - strict
1620
+ - security
1621
+ - id: java.security.hibernate-sql-concatenation
1622
+ rulePath: ./rules/java/java.security.hibernate-sql-concatenation.rule.yaml
1623
+ presets:
1624
+ - strict
1625
+ - security
1626
+ - id: java.security.shell-runtime-exec
1627
+ rulePath: ./rules/java/java.security.shell-runtime-exec.rule.yaml
1628
+ presets:
1629
+ - strict
1630
+ - security
1631
+ - id: java.security.predictable-securerandom
1632
+ rulePath: ./rules/java/java.security.predictable-securerandom.rule.yaml
1633
+ presets:
1634
+ - strict
1635
+ - security
1636
+ - id: java.correctness.empty-catch
1637
+ rulePath: ./rules/java/java.correctness.empty-catch.rule.yaml
1638
+ presets:
1639
+ - strict
1640
+ - id: java.correctness.equals-on-array
1641
+ rulePath: ./rules/java/java.correctness.equals-on-array.rule.yaml
1642
+ presets:
1643
+ - strict
1644
+ - id: java.correctness.sync-on-string-literal
1645
+ rulePath: ./rules/java/java.correctness.sync-on-string-literal.rule.yaml
1646
+ presets:
1647
+ - strict
1648
+ - id: java.correctness.catch-null-pointer
1649
+ rulePath: ./rules/java/java.correctness.catch-null-pointer.rule.yaml
1650
+ presets:
1651
+ - strict
1652
+ - id: java.correctness.unsafe-optional-get
1653
+ rulePath: ./rules/java/java.correctness.unsafe-optional-get.rule.yaml
1654
+ presets:
1655
+ - strict
1656
+ - id: java.correctness.return-in-finally
1657
+ rulePath: ./rules/java/java.correctness.return-in-finally.rule.yaml
1658
+ presets:
1659
+ - strict
1660
+ - id: java.security.insecure-cipher-mode
1661
+ rulePath: ./rules/java/java.security.insecure-cipher-mode.rule.yaml
1662
+ presets:
1663
+ - strict
1664
+ - security
1665
+ - id: java.security.weak-rsa-key-size
1666
+ rulePath: ./rules/java/java.security.weak-rsa-key-size.rule.yaml
1667
+ presets:
1668
+ - strict
1669
+ - security
1670
+ - id: java.security.insecure-ssl-context
1671
+ rulePath: ./rules/java/java.security.insecure-ssl-context.rule.yaml
1672
+ presets:
1673
+ - strict
1674
+ - security
1675
+ - id: java.security.permissive-cors
1676
+ rulePath: ./rules/java/java.security.permissive-cors.rule.yaml
1677
+ presets:
1678
+ - strict
1679
+ - security
1680
+ - id: java.security.trust-all-certificates
1681
+ rulePath: ./rules/java/java.security.trust-all-certificates.rule.yaml
1682
+ presets:
1683
+ - strict
1684
+ - security
1685
+ - id: java.security.insecure-network-protocol
1686
+ rulePath: ./rules/java/java.security.insecure-network-protocol.rule.yaml
1687
+ presets:
1688
+ - strict
1689
+ - security
1690
+ - id: java.security.null-cipher
1691
+ rulePath: ./rules/java/java.security.null-cipher.rule.yaml
1692
+ presets:
1693
+ - strict
1694
+ - security
1695
+ - id: java.security.jwt-without-verification
1696
+ rulePath: ./rules/java/java.security.jwt-without-verification.rule.yaml
1697
+ presets:
1698
+ - strict
1699
+ - security
1700
+ - id: ruby.security.rails-csrf-disabled
1701
+ rulePath: ./rules/ruby/ruby.security.rails-csrf-disabled.rule.yaml
1702
+ presets:
1703
+ - strict
1704
+ - security
1705
+ - id: ruby.security.rails-detailed-exceptions-enabled
1706
+ rulePath: ./rules/ruby/ruby.security.rails-detailed-exceptions-enabled.rule.yaml
1707
+ presets:
1708
+ - strict
1709
+ - security
1710
+ - id: ruby.security.rails-open-redirect
1711
+ rulePath: ./rules/ruby/ruby.security.rails-open-redirect.rule.yaml
1712
+ presets:
1713
+ - strict
1714
+ - security
1715
+ - id: ruby.security.rails-unsafe-html-output
1716
+ rulePath: ./rules/ruby/ruby.security.rails-unsafe-html-output.rule.yaml
1717
+ presets:
1718
+ - strict
1719
+ - security
1720
+ - id: ruby.security.rails-unsafe-render
1721
+ rulePath: ./rules/ruby/ruby.security.rails-unsafe-render.rule.yaml
1722
+ presets:
1723
+ - strict
1724
+ - security
1725
+ - id: ruby.security.rails-unsafe-session-or-cookie-store
1726
+ rulePath: ./rules/ruby/ruby.security.rails-unsafe-session-or-cookie-store.rule.yaml
1727
+ presets:
1728
+ - strict
1729
+ - security
1730
+ - id: ruby.security.rails-unsafe-strong-parameters
1731
+ rulePath: ./rules/ruby/ruby.security.rails-unsafe-strong-parameters.rule.yaml
1732
+ presets:
1733
+ - strict
1734
+ - security
1735
+ - id: ruby.security.sensitive-data-egress
1736
+ rulePath: ./rules/ruby/ruby.security.sensitive-data-egress.rule.yaml
1737
+ presets:
1738
+ - strict
1739
+ - security
1740
+ - id: ruby.security.sidekiq-web-unauthenticated-mount
1741
+ rulePath: ./rules/ruby/ruby.security.sidekiq-web-unauthenticated-mount.rule.yaml
1742
+ presets:
1743
+ - strict
1744
+ - security
1745
+ - id: rust.security.actix-wildcard-cors-with-credentials
1746
+ rulePath: ./rules/rust/rust.security.actix-wildcard-cors-with-credentials.rule.yaml
1747
+ presets:
1748
+ - strict
1749
+ - security
1750
+ - id: rust.security.axum-body-limit-disabled
1751
+ rulePath: ./rules/rust/rust.security.axum-body-limit-disabled.rule.yaml
1752
+ presets:
1753
+ - strict
1754
+ - security
1755
+ - id: rust.security.axum-insecure-cors-with-credentials
1756
+ rulePath: ./rules/rust/rust.security.axum-insecure-cors-with-credentials.rule.yaml
1757
+ presets:
1758
+ - strict
1759
+ - security
1760
+ - id: rust.security.bind-all-interfaces
1761
+ rulePath: ./rules/rust/rust.security.bind-all-interfaces.rule.yaml
1762
+ presets:
1763
+ - strict
1764
+ - security
1765
+ - id: rust.security.insecure-ssh-host-key
1766
+ rulePath: ./rules/rust/rust.security.insecure-ssh-host-key.rule.yaml
1767
+ presets:
1768
+ - strict
1769
+ - security
1770
+ - id: rust.security.insecure-ssl-protocol
1771
+ rulePath: ./rules/rust/rust.security.insecure-ssl-protocol.rule.yaml
1772
+ presets:
1773
+ - strict
1774
+ - security
1775
+ - id: rust.security.insecure-temp-file
1776
+ rulePath: ./rules/rust/rust.security.insecure-temp-file.rule.yaml
1777
+ presets:
1778
+ - strict
1779
+ - security
1780
+ - id: rust.security.insecure-yaml-load
1781
+ rulePath: ./rules/rust/rust.security.insecure-yaml-load.rule.yaml
1782
+ presets:
1783
+ - strict
1784
+ - security
1785
+ - id: rust.security.jwt-without-verification
1786
+ rulePath: ./rules/rust/rust.security.jwt-without-verification.rule.yaml
1787
+ presets:
1788
+ - strict
1789
+ - security
1790
+ - id: rust.security.panic-in-async-handler
1791
+ rulePath: ./rules/rust/rust.security.panic-in-async-handler.rule.yaml
1792
+ presets:
1793
+ - strict
1794
+ - security
1795
+ - id: rust.security.rocket-panic-prone-request-handler
1796
+ rulePath: ./rules/rust/rust.security.rocket-panic-prone-request-handler.rule.yaml
1797
+ presets:
1798
+ - strict
1799
+ - security
1800
+ - id: rust.security.rocket-unsafe-template-output
1801
+ rulePath: ./rules/rust/rust.security.rocket-unsafe-template-output.rule.yaml
1802
+ presets:
1803
+ - strict
1804
+ - security
1805
+ - id: rust.security.shell-command-spawn
1806
+ rulePath: ./rules/rust/rust.security.shell-command-spawn.rule.yaml
1807
+ presets:
1808
+ - strict
1809
+ - security
1810
+ - id: rust.security.sqlx-diesel-raw-interpolated-query
1811
+ rulePath: ./rules/rust/rust.security.sqlx-diesel-raw-interpolated-query.rule.yaml
1812
+ presets:
1813
+ - strict
1814
+ - security
1815
+ - id: rust.security.template-unescaped-request-value
1816
+ rulePath: ./rules/rust/rust.security.template-unescaped-request-value.rule.yaml
1817
+ presets:
1818
+ - strict
1819
+ - security
1820
+ - id: rust.security.tls-missing-min-version
1821
+ rulePath: ./rules/rust/rust.security.tls-missing-min-version.rule.yaml
1822
+ presets:
1823
+ - strict
1824
+ - security
1825
+ - id: rust.security.warp-blocking-or-panic-in-async-handler
1826
+ rulePath: ./rules/rust/rust.security.warp-blocking-or-panic-in-async-handler.rule.yaml
1827
+ presets:
1828
+ - strict
1829
+ - security
1830
+ - id: rust.security.weak-crypto-import
1831
+ rulePath: ./rules/rust/rust.security.weak-crypto-import.rule.yaml
1832
+ presets:
1833
+ - strict
1834
+ - security
1835
+ - id: rust.security.weak-rsa-key-size
1836
+ rulePath: ./rules/rust/rust.security.weak-rsa-key-size.rule.yaml
1837
+ presets:
1838
+ - strict
1839
+ - security
1840
+ - id: rust.security.weak-tls-cipher
1841
+ rulePath: ./rules/rust/rust.security.weak-tls-cipher.rule.yaml
1842
+ presets:
1843
+ - strict
1844
+ - security
1845
+ - id: go.testing.t-skip-without-ticket-reference
1846
+ rulePath: ./rules/go/go.testing.t-skip-without-ticket-reference.rule.yaml
1847
+ presets:
1848
+ - recommended
1849
+ - strict
1850
+ - id: go.testing.time-sleep-in-unit-test
1851
+ rulePath: ./rules/go/go.testing.time-sleep-in-unit-test.rule.yaml
1852
+ presets:
1853
+ - recommended
1854
+ - strict
1855
+ - id: go.testing.real-network-in-unit-test
1856
+ rulePath: ./rules/go/go.testing.real-network-in-unit-test.rule.yaml
1857
+ presets:
1858
+ - recommended
1859
+ - strict
1860
+ - id: py.testing.pytest-skip-without-ticket-reference
1861
+ rulePath: ./rules/python/py.testing.pytest-skip-without-ticket-reference.rule.yaml
1862
+ presets:
1863
+ - recommended
1864
+ - strict
1865
+ - id: py.testing.real-network-in-unit-test
1866
+ rulePath: ./rules/python/py.testing.real-network-in-unit-test.rule.yaml
1867
+ presets:
1868
+ - recommended
1869
+ - strict
1870
+ - id: py.testing.time-sleep-in-unit-test
1871
+ rulePath: ./rules/python/py.testing.time-sleep-in-unit-test.rule.yaml
1872
+ presets:
1873
+ - recommended
1874
+ - strict
1875
+ - id: ruby.testing.focused-example
1876
+ rulePath: ./rules/ruby/ruby.testing.focused-example.rule.yaml
1877
+ presets:
1878
+ - recommended
1879
+ - strict
1880
+ - id: ruby.testing.skip-without-ticket-reference
1881
+ rulePath: ./rules/ruby/ruby.testing.skip-without-ticket-reference.rule.yaml
1882
+ presets:
1883
+ - recommended
1884
+ - strict
1885
+ - id: ruby.testing.pending-without-ticket-reference
1886
+ rulePath: ./rules/ruby/ruby.testing.pending-without-ticket-reference.rule.yaml
1887
+ presets:
1888
+ - recommended
1889
+ - strict
1890
+ - id: ruby.testing.real-network-in-unit-test
1891
+ rulePath: ./rules/ruby/ruby.testing.real-network-in-unit-test.rule.yaml
1892
+ presets:
1893
+ - recommended
1894
+ - strict
1895
+ - id: ruby.testing.sleep-in-unit-test
1896
+ rulePath: ./rules/ruby/ruby.testing.sleep-in-unit-test.rule.yaml
1897
+ presets:
1898
+ - recommended
1899
+ - strict
1900
+ - id: rust.testing.ignore-without-ticket-reference
1901
+ rulePath: ./rules/rust/rust.testing.ignore-without-ticket-reference.rule.yaml
1902
+ presets:
1903
+ - recommended
1904
+ - strict
1905
+ - id: rust.testing.real-network-in-unit-test
1906
+ rulePath: ./rules/rust/rust.testing.real-network-in-unit-test.rule.yaml
1907
+ presets:
1908
+ - recommended
1909
+ - strict
1910
+ - id: rust.testing.thread-sleep-in-unit-test
1911
+ rulePath: ./rules/rust/rust.testing.thread-sleep-in-unit-test.rule.yaml
1912
+ presets:
1913
+ - recommended
1914
+ - strict
1915
+ - id: java.testing.disabled-without-ticket-reference
1916
+ rulePath: ./rules/java/java.testing.disabled-without-ticket-reference.rule.yaml
1917
+ presets:
1918
+ - recommended
1919
+ - strict
1920
+ - id: java.testing.thread-sleep-in-unit-test
1921
+ rulePath: ./rules/java/java.testing.thread-sleep-in-unit-test.rule.yaml
1922
+ presets:
1923
+ - recommended
1924
+ - strict
1925
+ - id: java.testing.http-client-in-unit-test
1926
+ rulePath: ./rules/java/java.testing.http-client-in-unit-test.rule.yaml
1927
+ presets:
1928
+ - recommended
1929
+ - strict
1930
+ - id: php.testing.mark-test-skipped-without-ticket-reference
1931
+ rulePath: ./rules/php/php.testing.mark-test-skipped-without-ticket-reference.rule.yaml
1932
+ presets:
1933
+ - recommended
1934
+ - strict
1935
+ - id: php.testing.sleep-in-unit-test
1936
+ rulePath: ./rules/php/php.testing.sleep-in-unit-test.rule.yaml
1937
+ presets:
1938
+ - recommended
1939
+ - strict
1940
+ - id: php.testing.curl-in-unit-test
1941
+ rulePath: ./rules/php/php.testing.curl-in-unit-test.rule.yaml
1942
+ presets:
1943
+ - recommended
1944
+ - strict
1945
+ - id: go.security.echo-sensitive-binding-without-validation
1946
+ rulePath: ./rules/go/go.security.echo-sensitive-binding-without-validation.rule.yaml
1947
+ presets:
1948
+ - strict
1949
+ - security
1950
+ - id: go.security.echo-unsafe-multipart-upload
1951
+ rulePath: ./rules/go/go.security.echo-unsafe-multipart-upload.rule.yaml
1952
+ presets:
1953
+ - strict
1954
+ - security
1955
+ - id: go.security.fiber-sensitive-binding-without-validation
1956
+ rulePath: ./rules/go/go.security.fiber-sensitive-binding-without-validation.rule.yaml
1957
+ presets:
1958
+ - strict
1959
+ - security
1960
+ - id: go.security.fiber-unsafe-multipart-upload
1961
+ rulePath: ./rules/go/go.security.fiber-unsafe-multipart-upload.rule.yaml
1962
+ presets:
1963
+ - strict
1964
+ - security
1965
+ - id: go.security.gin-sensitive-binding-without-validation
1966
+ rulePath: ./rules/go/go.security.gin-sensitive-binding-without-validation.rule.yaml
1967
+ presets:
1968
+ - strict
1969
+ - security
1970
+ - id: go.security.gin-trust-all-proxies
1971
+ rulePath: ./rules/go/go.security.gin-trust-all-proxies.rule.yaml
1972
+ presets:
1973
+ - strict
1974
+ - security
1975
+ - id: go.security.gin-wildcard-cors-with-credentials
1976
+ rulePath: ./rules/go/go.security.gin-wildcard-cors-with-credentials.rule.yaml
1977
+ presets:
1978
+ - strict
1979
+ - security
1980
+ - id: go.security.insecure-rand-seed
1981
+ rulePath: ./rules/go/go.security.insecure-rand-seed.rule.yaml
1982
+ presets:
1983
+ - strict
1984
+ - security
1985
+ - id: go.security.insecure-ssl-protocol
1986
+ rulePath: ./rules/go/go.security.insecure-ssl-protocol.rule.yaml
1987
+ presets:
1988
+ - strict
1989
+ - security
1990
+ - id: go.security.jwt-without-verification
1991
+ rulePath: ./rules/go/go.security.jwt-without-verification.rule.yaml
1992
+ presets:
1993
+ - strict
1994
+ - security
1995
+ - id: go.security.net-http-missing-timeouts
1996
+ rulePath: ./rules/go/go.security.net-http-missing-timeouts.rule.yaml
1997
+ presets:
1998
+ - strict
1999
+ - security
2000
+ - id: go.security.pprof-exposed
2001
+ rulePath: ./rules/go/go.security.pprof-exposed.rule.yaml
2002
+ presets:
2003
+ - strict
2004
+ - security
2005
+ - id: go.security.sensitive-data-egress
2006
+ rulePath: ./rules/go/go.security.sensitive-data-egress.rule.yaml
2007
+ presets:
2008
+ - strict
2009
+ - security
2010
+ - id: go.security.tar-path-traversal
2011
+ rulePath: ./rules/go/go.security.tar-path-traversal.rule.yaml
2012
+ presets:
2013
+ - strict
2014
+ - security
2015
+ - id: go.security.template-unescaped-request-value
2016
+ rulePath: ./rules/go/go.security.template-unescaped-request-value.rule.yaml
2017
+ presets:
2018
+ - strict
2019
+ - security
2020
+ - id: go.security.bind-all-interfaces
2021
+ rulePath: ./rules/go/go.security.bind-all-interfaces.rule.yaml
2022
+ presets:
2023
+ - strict
2024
+ - security
2025
+ - id: go.security.unsafe-package-import
2026
+ rulePath: ./rules/go/go.security.unsafe-package-import.rule.yaml
2027
+ presets:
2028
+ - strict
2029
+ - security
2030
+ - id: go.security.insecure-ssh-host-key
2031
+ rulePath: ./rules/go/go.security.insecure-ssh-host-key.rule.yaml
2032
+ presets:
2033
+ - strict
2034
+ - security
2035
+ - id: go.security.insecure-temp-file
2036
+ rulePath: ./rules/go/go.security.insecure-temp-file.rule.yaml
2037
+ presets:
2038
+ - strict
2039
+ - security
2040
+ - id: go.security.weak-rsa-key-size
2041
+ rulePath: ./rules/go/go.security.weak-rsa-key-size.rule.yaml
2042
+ presets:
2043
+ - strict
2044
+ - security
2045
+ - id: go.security.weak-crypto-import
2046
+ rulePath: ./rules/go/go.security.weak-crypto-import.rule.yaml
2047
+ presets:
2048
+ - strict
2049
+ - security
2050
+ - id: go.security.tls-missing-min-version
2051
+ rulePath: ./rules/go/go.security.tls-missing-min-version.rule.yaml
2052
+ presets:
2053
+ - strict
2054
+ - security
2055
+ - id: go.security.weak-bcrypt-cost
2056
+ rulePath: ./rules/go/go.security.weak-bcrypt-cost.rule.yaml
2057
+ presets:
2058
+ - strict
2059
+ - security
2060
+ - id: go.security.weak-tls-cipher
2061
+ rulePath: ./rules/go/go.security.weak-tls-cipher.rule.yaml
2062
+ presets:
2063
+ - strict
2064
+ - security
2065
+ - id: go.correctness.defer-close-before-check
2066
+ rulePath: ./rules/go/go.correctness.defer-close-before-check.rule.yaml
2067
+ presets:
2068
+ - strict
2069
+ - id: go.correctness.defer-in-loop
2070
+ rulePath: ./rules/go/go.correctness.defer-in-loop.rule.yaml
2071
+ presets:
2072
+ - strict
2073
+ - id: go.correctness.nil-context-passed
2074
+ rulePath: ./rules/go/go.correctness.nil-context-passed.rule.yaml
2075
+ presets:
2076
+ - strict
2077
+ - id: go.correctness.nil-map-assignment
2078
+ rulePath: ./rules/go/go.correctness.nil-map-assignment.rule.yaml
2079
+ presets:
2080
+ - strict
2081
+ - id: go.correctness.time-tick-leak
2082
+ rulePath: ./rules/go/go.correctness.time-tick-leak.rule.yaml
2083
+ presets:
2084
+ - strict
2085
+ - id: go.correctness.unused-append-result
2086
+ rulePath: ./rules/go/go.correctness.unused-append-result.rule.yaml
2087
+ presets:
2088
+ - strict
2089
+ - id: go.correctness.waitgroup-add-in-goroutine
2090
+ rulePath: ./rules/go/go.correctness.waitgroup-add-in-goroutine.rule.yaml
2091
+ presets:
2092
+ - strict
2093
+ - id: php.security.insecure-cors-wildcard-with-credentials
2094
+ rulePath: ./rules/php/php.security.insecure-cors-wildcard-with-credentials.rule.yaml
2095
+ presets:
2096
+ - strict
2097
+ - security
2098
+ - id: php.security.insecure-mail-or-file-transport
2099
+ rulePath: ./rules/php/php.security.insecure-mail-or-file-transport.rule.yaml
2100
+ presets:
2101
+ - strict
2102
+ - security
2103
+ - id: php.security.insecure-session-or-cookie-config
2104
+ rulePath: ./rules/php/php.security.insecure-session-or-cookie-config.rule.yaml
2105
+ presets:
2106
+ - strict
2107
+ - security
2108
+ - id: php.security.debug-function-exposure
2109
+ rulePath: ./rules/php/php.security.debug-function-exposure.rule.yaml
2110
+ presets:
2111
+ - strict
2112
+ - security
2113
+ - id: php.security.insecure-session-id-generation
2114
+ rulePath: ./rules/php/php.security.insecure-session-id-generation.rule.yaml
2115
+ presets:
2116
+ - strict
2117
+ - security
2118
+ - id: php.security.no-dynamic-eval
2119
+ rulePath: ./rules/php/php.security.no-dynamic-eval.rule.yaml
2120
+ presets:
2121
+ - strict
2122
+ - security
2123
+ - id: php.security.unsafe-include-with-user-input
2124
+ rulePath: ./rules/php/php.security.unsafe-include-with-user-input.rule.yaml
2125
+ presets:
2126
+ - strict
2127
+ - security
2128
+ - id: php.security.weak-cipher
2129
+ rulePath: ./rules/php/php.security.weak-cipher.rule.yaml
2130
+ presets:
2131
+ - strict
2132
+ - security
2133
+ - id: php.security.xml-external-entity
2134
+ rulePath: ./rules/php/php.security.xml-external-entity.rule.yaml
2135
+ presets:
2136
+ - strict
2137
+ - security
2138
+ - id: php.security.laravel-sensitive-csrf-exclusion
2139
+ rulePath: ./rules/php/php.security.laravel-sensitive-csrf-exclusion.rule.yaml
2140
+ presets:
2141
+ - strict
2142
+ - security
2143
+ - id: php.security.laravel-unsafe-blade-output
2144
+ rulePath: ./rules/php/php.security.laravel-unsafe-blade-output.rule.yaml
2145
+ presets:
2146
+ - strict
2147
+ - security
2148
+ - id: php.security.laravel-unsafe-mass-assignment
2149
+ rulePath: ./rules/php/php.security.laravel-unsafe-mass-assignment.rule.yaml
2150
+ presets:
2151
+ - strict
2152
+ - security
2153
+ - id: php.security.sensitive-data-egress
2154
+ rulePath: ./rules/php/php.security.sensitive-data-egress.rule.yaml
2155
+ presets:
2156
+ - strict
2157
+ - security
2158
+ - id: php.security.symfony-csrf-disabled
2159
+ rulePath: ./rules/php/php.security.symfony-csrf-disabled.rule.yaml
2160
+ presets:
2161
+ - strict
2162
+ - security
2163
+ - id: php.security.symfony-debug-exposure
2164
+ rulePath: ./rules/php/php.security.symfony-debug-exposure.rule.yaml
2165
+ presets:
2166
+ - strict
2167
+ - security
2168
+ - id: php.security.unsafe-file-upload-handling
2169
+ rulePath: ./rules/php/php.security.unsafe-file-upload-handling.rule.yaml
2170
+ presets:
2171
+ - strict
2172
+ - security
2173
+ - id: php.security.wordpress-missing-nonce-or-capability
2174
+ rulePath: ./rules/php/php.security.wordpress-missing-nonce-or-capability.rule.yaml
2175
+ presets:
2176
+ - strict
2177
+ - security
2178
+ - id: php.security.wordpress-unprepared-sql
2179
+ rulePath: ./rules/php/php.security.wordpress-unprepared-sql.rule.yaml
2180
+ presets:
2181
+ - strict
2182
+ - security