|
203 | 203 | </properties>
|
204 | 204 | </rule>
|
205 | 205 |
|
| 206 | + <rule ref="rulesets/apex/security.xml/ApexSharingViolations" message="Apex classes should declare a sharing model if DML or SOQL is used"> |
| 207 | + <priority>3</priority> |
| 208 | + |
| 209 | + <properties> |
| 210 | + <!-- relevant for Code Climate output only --> |
| 211 | + <property name="cc_categories" value="Bug Risk"/> |
| 212 | + <property name="cc_remediation_points_multiplier" value="100"/> |
| 213 | + <property name="cc_block_highlighting" value="false"/> |
| 214 | + </properties> |
| 215 | + </rule> |
| 216 | + |
| 217 | + <rule ref="rulesets/apex/security.xml/ApexInsecureEndpoint" message="Apex callouts should use encrypted communication channels"> |
| 218 | + <priority>3</priority> |
| 219 | + <properties> |
| 220 | + <!-- relevant for Code Climate output only --> |
| 221 | + <property name="cc_categories" value="Bug Risk"/> |
| 222 | + <property name="cc_remediation_points_multiplier" value="80"/> |
| 223 | + <property name="cc_block_highlighting" value="false"/> |
| 224 | + </properties> |
| 225 | + </rule> |
| 226 | + |
| 227 | + <rule ref="rulesets/apex/security.xml/ApexCSRF" message="Avoid making DML operations in Apex class constructor/init method"> |
| 228 | + <priority>3</priority> |
| 229 | + |
| 230 | + <properties> |
| 231 | + <!-- relevant for Code Climate output only --> |
| 232 | + <property name="cc_categories" value="Bug Risk"/> |
| 233 | + <property name="cc_remediation_points_multiplier" value="100"/> |
| 234 | + <property name="cc_block_highlighting" value="false"/> |
| 235 | + </properties> |
| 236 | + </rule> |
| 237 | + |
| 238 | + <rule ref="rulesets/apex/security.xml/ApexOpenRedirect" message="Apex classes should safely redirect to a known location"> |
| 239 | + <priority>3</priority> |
| 240 | + |
| 241 | + <properties> |
| 242 | + <!-- relevant for Code Climate output only --> |
| 243 | + <property name="cc_categories" value="Bug Risk"/> |
| 244 | + <property name="cc_remediation_points_multiplier" value="100"/> |
| 245 | + <property name="cc_block_highlighting" value="false"/> |
| 246 | + </properties> |
| 247 | + </rule> |
| 248 | + |
| 249 | + <rule ref="rulesets/apex/security.xml/ApexSOQLInjection" message="Apex classes should escape variables merged in DML query"> |
| 250 | + <priority>3</priority> |
| 251 | + |
| 252 | + <properties> |
| 253 | + <!-- relevant for Code Climate output only --> |
| 254 | + <property name="cc_categories" value="Bug Risk"/> |
| 255 | + <property name="cc_remediation_points_multiplier" value="100"/> |
| 256 | + <property name="cc_block_highlighting" value="false"/> |
| 257 | + </properties> |
| 258 | + </rule> |
| 259 | + |
| 260 | + <rule ref="rulesets/apex/security.xml/ApexXSSFromURLParam" message="Apex classes should escape Strings obtained from URL parameters"> |
| 261 | + <priority>3</priority> |
| 262 | + |
| 263 | + <properties> |
| 264 | + <!-- relevant for Code Climate output only --> |
| 265 | + <property name="cc_categories" value="Bug Risk"/> |
| 266 | + <property name="cc_remediation_points_multiplier" value="100"/> |
| 267 | + <property name="cc_block_highlighting" value="false"/> |
| 268 | + </properties> |
| 269 | + </rule> |
| 270 | + |
| 271 | + <rule ref="rulesets/apex/security.xml/ApexXSSFromEscapeFalse" message="Apex classes should escape addError strings"> |
| 272 | + <priority>3</priority> |
| 273 | + |
| 274 | + <properties> |
| 275 | + <!-- relevant for Code Climate output only --> |
| 276 | + <property name="cc_categories" value="Bug Risk"/> |
| 277 | + <property name="cc_remediation_points_multiplier" value="100"/> |
| 278 | + <property name="cc_block_highlighting" value="false"/> |
| 279 | + </properties> |
| 280 | + </rule> |
| 281 | + |
| 282 | + <rule ref="rulesets/apex/security.xml/ApexBadCrypto" message="Apex Crypto should use random IV/key"> |
| 283 | + <priority>3</priority> |
| 284 | + |
| 285 | + <properties> |
| 286 | + <!-- relevant for Code Climate output only --> |
| 287 | + <property name="cc_categories" value="Bug Risk"/> |
| 288 | + <property name="cc_remediation_points_multiplier" value="100"/> |
| 289 | + <property name="cc_block_highlighting" value="false"/> |
| 290 | + </properties> |
| 291 | + </rule> |
206 | 292 | </ruleset>
|
0 commit comments