-
-
Notifications
You must be signed in to change notification settings - Fork 6
Commit 43342c0
committed
Implement Java Security Vulnerability Analysis
Comprehensive implementation of Issue #78 with advanced security detection:
- Enhanced SQL injection detection with regex patterns for all SQL operations
- Command injection detection for Runtime.exec and ProcessBuilder
- Path traversal vulnerability detection in file operations
- Hardcoded credentials detection with multiple patterns
- Weak cryptography detection for various algorithms and key sizes
- Deserialization vulnerability detection including JSON type info
- XXE vulnerability detection in XML parsing operations
- LDAP injection detection in directory operations
- Insecure randomness detection for crypto operations
- Session fixation vulnerability detection
- Unvalidated redirect detection in web applications
- Insecure direct object reference detection
- XSS vulnerability detection in response bodies
- CSRF vulnerability detection in security config
Each vulnerability includes:
- Detailed CWE mappings
- Severity classifications (Critical/High/Medium/Low)
- Specific location information
- Actionable security recommendations
- Comprehensive regex pattern matching
Closes #781 parent abbc52c commit 43342c0Copy full SHA for 43342c0
File tree
Expand file treeCollapse file tree
1 file changed
+1739
-810
lines changedFilter options
- crates/codeprism-lang-java/src
Expand file treeCollapse file tree
1 file changed
+1739
-810
lines changed
0 commit comments