-
-
Notifications
You must be signed in to change notification settings - Fork 3.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Suggestion - Enhancement] Would be better to have OWASP Top 10 tag with the code anaysis which gives good impression. #17
Comments
All the vulnerabilities under the following OWASP Mobile Top 10 Mobile, identified via code analysis are detected by the Code Analyser. It's not being categorised under the OWASP Category. Once I am done with the final ruleset for android and iOS, I will prioritise this. M1: Weak Server Side Controls |
Since OWASP Mobile Top 10 changes, no plans to classify according to ranks, but will add a category tag to appropriate vulns. |
Agreed. |
Difficult to compare between top 10 2014 and 2016 As the categories themselves are changing between years. This featured won't be added. |
Will be tracking this as an enhancement. We won't be ranking anything but categorising based on OWASP Mobile Top 10 and OWASP MSTG |
Tracked under all enhancements |
Won't be implementing OWASP top 10s changes yearly |
No description provided.
The text was updated successfully, but these errors were encountered: