XML rules

Each rule includes the following information.

  • Rule Name: The Snyk name of the rule.

  • CWE(s): The CWE numbers that are covered by this rule.

  • Security Categories: The OWASP Top 10 (2021 edition) category to which the rule belongs to, if any, and if it is included in SANS 25.

  • Autofixable: Security rules that are autofixable by DeepCode AI Fix. This information is included only for the supported programming languages.

Rule Name
CWE(s)
Security Categories
Autofixable

Android Debug Mode Enabled

CWE-489

None

No

Debug Features Enabled

CWE-215

None

No

Generation of Error Message Containing Sensitive Information

CWE-209

OWASP:A04

No

Improper Restriction of Rendered UI Layers or Frames

CWE-1021

OWASP:A04

No

ASP SSL Disabled

CWE-319

OWASP:A02

No

Use of Hardcoded Passwords

CWE-798, CWE-259

Sans Top 25, OWASP:A07

No

Request Validation Disabled

CWE-554

None

No

Struts Development Mode Enabled

CWE-489

None

No

Last updated

More information

Snyk privacy policy

© 2024 Snyk Limited | All product and company names and logos are trademarks of their respective owners.