From 9ac3c1986209585a5da1513a1086f31d328ef46e Mon Sep 17 00:00:00 2001 From: nscuro Date: Tue, 11 Jun 2024 15:25:45 +0200 Subject: [PATCH] Bump CWE dictionary to v4.13 Ports https://github.com/DependencyTrack/dependency-track/pull/3491 from Dependency-Track v4.11.0 Command used: ``` jbang gen-cwe-dict@DependencyTrack -v 4.13 -p 'org.dependencytrack.parser.common.resolver' -o src/main/java/org/dependencytrack/parser/common/resolver/CweDictionary.java ``` Signed-off-by: nscuro --- .../parser/common/resolver/CweDictionary.java | 5 +++-- .../org/dependencytrack/resources/v1/CweResourceTest.java | 2 +- 2 files changed, 4 insertions(+), 3 deletions(-) diff --git a/src/main/java/org/dependencytrack/parser/common/resolver/CweDictionary.java b/src/main/java/org/dependencytrack/parser/common/resolver/CweDictionary.java index 8c1da85f2..d40e25afb 100644 --- a/src/main/java/org/dependencytrack/parser/common/resolver/CweDictionary.java +++ b/src/main/java/org/dependencytrack/parser/common/resolver/CweDictionary.java @@ -22,7 +22,7 @@ import java.util.LinkedHashMap; import java.util.Map; -@Generated(value = "From dictionary version 4.12") +@Generated(value = "From dictionary version 4.13") public final class CweDictionary { public static final Map DICTIONARY = new LinkedHashMap<>(); @@ -1215,7 +1215,7 @@ public final class CweDictionary { DICTIONARY.put(1185, "SEI CERT Perl Coding Standard - Guidelines 07. File Input and Output (FIO)"); DICTIONARY.put(1186, "SEI CERT Perl Coding Standard - Guidelines 50. Miscellaneous (MSC)"); DICTIONARY.put(1187, "DEPRECATED: Use of Uninitialized Resource"); - DICTIONARY.put(1188, "Insecure Default Initialization of Resource"); + DICTIONARY.put(1188, "Initialization of a Resource with an Insecure Default"); DICTIONARY.put(1189, "Improper Isolation of Shared Resources on System-on-a-Chip (SoC)"); DICTIONARY.put(1190, "DMA Device Enabled Too Early in Boot Phase"); DICTIONARY.put(1191, "On-Chip Debug and Test Interface With Improper Access Control"); @@ -1446,6 +1446,7 @@ public final class CweDictionary { DICTIONARY.put(1416, "Comprehensive Categorization: Resource Lifecycle Management"); DICTIONARY.put(1417, "Comprehensive Categorization: Sensitive Information Exposure"); DICTIONARY.put(1418, "Comprehensive Categorization: Violation of Secure Design Principles"); + DICTIONARY.put(1419, "Incorrect Initialization of Resource"); DICTIONARY.put(1425, "Weaknesses in the 2023 CWE Top 25 Most Dangerous Software Weaknesses"); DICTIONARY.put(2000, "Comprehensive CWE Dictionary"); } diff --git a/src/test/java/org/dependencytrack/resources/v1/CweResourceTest.java b/src/test/java/org/dependencytrack/resources/v1/CweResourceTest.java index 8d3732afc..4feeb8542 100644 --- a/src/test/java/org/dependencytrack/resources/v1/CweResourceTest.java +++ b/src/test/java/org/dependencytrack/resources/v1/CweResourceTest.java @@ -45,7 +45,7 @@ public void getCwesTest() { .header(X_API_KEY, apiKey) .get(Response.class); Assert.assertEquals(200, response.getStatus(), 0); - Assert.assertEquals(String.valueOf(1420), response.getHeaderString(TOTAL_COUNT_HEADER)); + Assert.assertEquals(String.valueOf(1421), response.getHeaderString(TOTAL_COUNT_HEADER)); JsonArray json = parseJsonArray(response); Assert.assertNotNull(json); Assert.assertEquals(100, json.size());