Update rule metadata (#470)

Co-authored-by: petertrr <petertrr>

sonar-text-plugin/sonarpedia-secrets/sonarpedia.json

@@ -3,9 +3,9 @@
   "languages": [
     "SECRETS"
   ],
-  "latest-update": "2024-10-31T13:12:57.243065442Z",
+  "latest-update": "2024-11-26T09:25:55.849890649Z",
   "options": {
     "no-language-in-filenames": true,
     "preserve-filenames": true
   }
-}
+}

sonar-text-plugin/sonarpedia-text/sonarpedia.json

@@ -3,9 +3,9 @@
   "languages": [
     "TEXT"
   ],
-  "latest-update": "2024-10-31T13:13:11.713685066Z",
+  "latest-update": "2024-11-26T09:26:04.996895117Z",
   "options": {
     "no-language-in-filenames": true,
     "preserve-filenames": true
   }
-}
+}

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6290.html

@@ -18,7 +18,7 @@ <h4>Phishing and spam</h4>
 <p>An attacker can use this secret to spam users or lure them into links to a malicious domain controlled by the attacker.</p>
 <p>Spam can cause users to be exposed to the following:</p>
 <ul>
-  <li> Unsolicited, inappropriate content, such as pornographic material </li>
+  <li> Unsolicited, inappropriate content </li>
   <li> Fraudulent attempts to trick users into sending information or money </li>
   <li> Abusive or hateful statements </li>
   <li> False advertising or fraudulent claims </li>

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6292.html

@@ -18,7 +18,7 @@ <h4>Phishing and spam</h4>
 <p>An attacker can use this secret to spam users or lure them into links to a malicious domain controlled by the attacker.</p>
 <p>Spam can cause users to be exposed to the following:</p>
 <ul>
-  <li> Unsolicited, inappropriate content, such as pornographic material </li>
+  <li> Unsolicited, inappropriate content </li>
   <li> Fraudulent attempts to trick users into sending information or money </li>
   <li> Abusive or hateful statements </li>
   <li> False advertising or fraudulent claims </li>

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6292.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6334.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6335.html

@@ -12,7 +12,7 @@ <h4>Phishing and spam</h4>
 <p>An attacker can use this secret to spam users or lure them into links to a malicious domain controlled by the attacker.</p>
 <p>Spam can cause users to be exposed to the following:</p>
 <ul>
-  <li> Unsolicited, inappropriate content, such as pornographic material </li>
+  <li> Unsolicited, inappropriate content </li>
   <li> Fraudulent attempts to trick users into sending information or money </li>
   <li> Abusive or hateful statements </li>
   <li> False advertising or fraudulent claims </li>

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6335.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6338.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6684.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6687.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6689.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6690.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6693.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6694.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6697.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6698.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6701.html

@@ -21,7 +21,7 @@ <h4>Phishing and spam</h4>
 <p>An attacker can use this secret to spam users or lure them into links to a malicious domain controlled by the attacker.</p>
 <p>Spam can cause users to be exposed to the following:</p>
 <ul>
-  <li> Unsolicited, inappropriate content, such as pornographic material </li>
+  <li> Unsolicited, inappropriate content </li>
   <li> Fraudulent attempts to trick users into sending information or money </li>
   <li> Abusive or hateful statements </li>
   <li> False advertising or fraudulent claims </li>

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6701.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6702.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6703.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6706.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6708.html

@@ -21,7 +21,7 @@ <h4>Phishing and spam</h4>
 <p>An attacker can use this webhook to spam users or lure them into links to a malicious domain controlled by the attacker.</p>
 <p>Spam can cause users to be exposed to the following:</p>
 <ul>
-  <li> Unsolicited, inappropriate content, such as pornographic material </li>
+  <li> Unsolicited, inappropriate content </li>
   <li> Fraudulent attempts to trick users into sending information or money </li>
   <li> Abusive or hateful statements </li>
   <li> False advertising or fraudulent claims </li>

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6708.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6739.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6751.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6752.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6758.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6762.html

@@ -16,7 +16,7 @@ <h4>Compromise of sensitive data</h4>
 authentication secret could be able to access it. Depending on the type of data that is compromised, it could lead to privacy violations, identity
 theft, financial loss, or other negative outcomes.</p>
 <p>In most cases, a company suffering a sensitive data compromise will face a reputational loss when the security issue is publicly disclosed.</p>
-<h4>Application takeover</h4>
+<h4>Data visualization corruption and takeover</h4>
 <p>With control over the Grafana application, the attacker can modify dashboards, alter data sources, or inject malicious code. This can result in the
 manipulation of displayed data, misleading visualizations, or even the introduction of backdoors for further exploitation.</p>
 <p>The attacker may even attempt to escalate their privileges within the Grafana environment. By gaining administrative access or higher-level

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6762.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6771.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6782.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6783.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6987.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S6995.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },

sonar-text-plugin/src/main/resources/org/sonar/l10n/secrets/rules/secrets/S7013.json

@@ -3,7 +3,7 @@
   "type": "VULNERABILITY",
   "code": {
     "impacts": {
-      "SECURITY": "HIGH"
+      "SECURITY": "BLOCKER"
     },
     "attribute": "TRUSTWORTHY"
   },