Skip to content

SonarPHP 3.15.0.7197
Compare
Choose a tag to compare
@nils-werner-sonarsource nils-werner-sonarsource released this 29 Jan 13:29
· 494 commits to master since this release
3.15.0.7197
d9ce5c6
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

New Feature

  • [SONARPHP-952] - Rule S2755: XML parsers should not be vulnerable to XXE attacks
  • [SONARPHP-1102] - Rule S5332: Using clear-text protocols is security-sensitive
  • [SONARPHP-1103] - Rule S5042: Expanding archive files is security-sensitive
  • [SONARPHP-1104] - Rule S5808: Authorizations should be based on strong decisions
  • [SONARPHP-1105] - Rule S2612: Setting loose file permissions is security-sensitive
  • [SONARPHP-1106] - Rule S4502: Disabling CSRF protections is security-sensitive
  • [SONARPHP-1107] - Rule S5693: Allowing requests with excessive content length is security-sensitive
  • [SONARPHP-1112] - Rule S5122: Having a permissive Cross-Origin Resource Sharing policy is security-sensitive
  • [SONARPHP-1114] - Rule S5876: A new session should be created during user authentication

Task

  • [SONARPHP-1125] - Remove deprecated API: PHPCustomRulesDefinition
Assets 2
Loading