SonarJS Coverage of SANS Top 25

SANS Top 25 is a sub-set of the Common Weakness Enumeration (CWE). The following table lists the CWE standard items in the SANS Top 25 that SonarJS is able to detect, and for each of them, the rules providing this coverage.

Risky Resource Management

CWE IDCWE NameImplementing Rules
829Inclusion of Functionality from Untrusted Control SphereS2611 Untrusted content should not be included

Back to the top