Skip to content

Commit

Permalink
Add change note + update query ID
Browse files Browse the repository at this point in the history
  • Loading branch information
@joefarebrother
joefarebrother committed Aug 21, 2023
1 parent c0fafbf commit f32198c
Show file tree
Hide file tree
Showing 2 changed files with 5 additions and 1 deletion.
2 changes: 1 addition & 1 deletion csharp/ql/src/Security Features/CWE-639/InsecureDirectObjectReference.ql
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@
* @problem.severity error
* @security-severity 7.5
* @precision medium
* @id cs/insecure-direct-object-reference
* @id cs/web/insecure-direct-object-reference
* @tags security
* external/cwe-639
*/
Expand Down
4 changes: 4 additions & 0 deletions csharp/ql/src/change-notes/2023-08-21-insecure-direct-object-reference.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,4 @@
---
category: newQuery
---
* Added a new query, `cs/web/insecure-direct-object-reference`, to find instances of missing authorization checks for resources selected by an ID parameter.

0 comments on commit f32198c

Please sign in to comment.