Skip to content

Commit

Permalink
fix: fix severity and remove DSW for JS insecure XML ref rule
Browse files Browse the repository at this point in the history
  • Loading branch information
@elsapet
elsapet committed Feb 21, 2023
1 parent b04fdd4 commit 813819a
Showing 1 changed file with 0 additions and 4 deletions.
4 changes: 0 additions & 4 deletions pkg/commands/process/settings/rules/javascript/express/insecure_xml_ref.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,15 +22,11 @@ languages:
trigger: presence
severity:
default: "low"
PII: "critical"
PHI: "medium"
PD: "high"
metadata:
description: "Ensure proper restriction of XML external entity references."
remediation_message: |
## Description
Avoid generating XML documents that include XML entities with URIs that resolve to resources that are outside of the current context.
dsr_id: "DSR-3"
cwe_id:
- 611
id: "express_insecure_xml_ref"

0 comments on commit 813819a

Please sign in to comment.