LGPL2 -> LGPL3+, Rules QA

README.md

@@ -5,7 +5,7 @@ Made with ![Love](https://cloud.githubusercontent.com/assets/4301109/16754758/82
 
 [![PyPI version](https://badge.fury.io/py/njsscan.svg)](https://badge.fury.io/py/njsscan)
 [![platform](https://img.shields.io/badge/platform-osx%2Flinux-green.svg)](https://github.com/ajinabraham/njsscan)
-[![License](https://img.shields.io/:license-lgpl2.1-blue.svg)](https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html)
+[![License](https://img.shields.io/:license-lgpl3+-blue.svg)](https://www.gnu.org/licenses/lgpl-3.0.en.html)
 [![python](https://img.shields.io/badge/python-3.6+-blue.svg)](https://www.python.org/downloads/)
 
 [![Language grade: Python](https://img.shields.io/lgtm/grade/python/g/ajinabraham/njsscan.svg?logo=lgtm&logoWidth=18)](https://lgtm.com/projects/g/ajinabraham/njsscan/context:python)

njsscan/__init__.py

@@ -6,7 +6,7 @@
 __title__ = 'njsscan'
 __authors__ = 'Ajin Abraham'
 __copyright__ = f'Copyright {datetime.now().year} Ajin Abraham, OpenSecurity'
-__version__ = '0.2.5'
+__version__ = '0.2.6'
 __version_info__ = tuple(int(i) for i in __version__.split('.'))
 __all__ = [
     '__title__',

njsscan/rules/semantic_grep/good/good_anti_csrf.yaml

@@ -16,4 +16,4 @@ rules:
     message: 'This application has anti CSRF protection which prevents cross site request forgery attacks.'
     languages:
       - javascript
-    severity: WARNING
+    severity: INFO

njsscan/rules/semantic_grep/good/good_helmet_checks.yaml

@@ -6,7 +6,7 @@ rules:
       https://helmetjs.github.io/docs/csp/
     languages:
       - javascript
-    severity: WARNING
+    severity: INFO
     patterns:
       - pattern-not: |
           $HELMET(..., {contentSecurityPolicy: false}, ...)
@@ -23,7 +23,7 @@ rules:
       https://helmetjs.github.io/docs/crossdomain/
     languages:
       - javascript
-    severity: WARNING
+    severity: INFO
     patterns:
       - pattern-not: |
           $HELMET(..., {permittedCrossDomainPolicies: false}, ...)
@@ -44,7 +44,7 @@ rules:
       https://helmetjs.github.io/docs/expect-ct/
     languages:
       - javascript
-    severity: WARNING
+    severity: INFO
     patterns:
       - pattern-not: |
           $HELMET(..., {expectCt: false}, ...)
@@ -65,7 +65,7 @@ rules:
       https://helmetjs.github.io/docs/feature-policy/
     languages:
       - javascript
-    severity: WARNING
+    severity: INFO
     patterns:
       - pattern-not: |
           $HELMET(..., {featurePolicy: false}, ...)
@@ -82,7 +82,7 @@ rules:
       https://helmetjs.github.io/docs/frameguard/
     languages:
       - javascript
-    severity: WARNING
+    severity: INFO
     patterns:
       - pattern-not: |
           $HELMET(..., {frameguard: false}, ...)
@@ -102,7 +102,7 @@ rules:
       https://helmetjs.github.io/docs/dns-prefetch-control/
     languages:
       - javascript
-    severity: WARNING
+    severity: INFO
     patterns:
       - pattern-not: |
           $HELMET(..., {dnsPrefetchControl: false}, ...)
@@ -125,7 +125,7 @@ rules:
       https://helmetjs.github.io/docs/hide-powered-by/
     languages:
       - javascript
-    severity: WARNING
+    severity: INFO
     patterns:
       - pattern-not: |
           $HELMET(..., {hidePoweredBy: false}, ...)
@@ -146,7 +146,7 @@ rules:
       https://helmetjs.github.io/docs/hsts/
     languages:
       - javascript
-    severity: WARNING
+    severity: INFO
     patterns:
       - pattern-not: |
           $HELMET(..., {hsts: false}, ...)
@@ -165,7 +165,7 @@ rules:
       https://helmetjs.github.io/docs/ienoopen/
     languages:
       - javascript
-    severity: WARNING
+    severity: INFO
     patterns:
       - pattern-not: |
           $HELMET(..., {ieNoOpen: false}, ...)
@@ -184,7 +184,7 @@ rules:
       https://helmetjs.github.io/docs/dont-sniff-mimetype/
     languages:
       - javascript
-    severity: WARNING
+    severity: INFO
     patterns:
       - pattern-not: |
           $HELMET(..., {noSniff: false}, ...)
@@ -203,7 +203,7 @@ rules:
       https://helmetjs.github.io/docs/referrer-policy/
     languages:
       - javascript
-    severity: WARNING
+    severity: INFO
     patterns:
       - pattern-not: |
           $HELMET(..., {referrerPolicy: false}, ...)
@@ -220,7 +220,7 @@ rules:
       https://helmetjs.github.io/docs/xss-filter/
     languages:
       - javascript
-    severity: WARNING
+    severity: INFO
     patterns:
       - pattern-not: |
           $HELMET(..., {xssFilter: false}, ...)

njsscan/rules/semantic_grep/good/good_ratelimiting.yaml

@@ -11,4 +11,4 @@ rules:
     message: 'This application has API rate limiting controls.'
     languages:
       - javascript
-    severity: WARNING
+    severity: INFO

setup.py

@@ -31,7 +31,7 @@ def get_version(rel_path):
         'Development Status :: 4 - Beta',
         'Intended Audience :: Developers',
         ('License :: OSI Approved :: '
-         'GNU Lesser General Public License v2 (LGPLv2)'),
+         'GNU Lesser General Public License v3 or later (LGPLv3+)'),
         'Programming Language :: Python :: 3.6',
     ],
     packages=find_packages(include=[
@@ -49,7 +49,7 @@ def get_version(rel_path):
     long_description_content_type='text/markdown',
     install_requires=[
         'colorama>=0.4.3',
-        'libsast>=1.4.1',
+        'libsast>=1.4.2',
         'sarif-om>=1.0.4',
         'jschema-to-python>=1.2.3',
         'tabulate>=0.8.8',

tests/unit/test_nodejs.py

@@ -89,7 +89,7 @@
     'wkhtmltoimage_ssrf': 1,
     'hardcoded_passport_secret': 13,
     'grpc_insecure_connection': 3,
-    'jwt_express_hardcoded': 3,
+    'jwt_express_hardcoded': 5,
     'jwt_exposed_credentials': 14,
     'jwt_exposed_data': 2,
     'jwt_not_revoked': 5,