Skip to content
This repository was archived by the owner on Oct 4, 2024. It is now read-only.

Commit 1efab36

Browse files
petherspethers
committed
cwe mappings
1 parent ede4b86 commit 1efab36

File tree

1 file changed

+12
-0
lines changed

1 file changed

+12
-0
lines changed

README.md

Lines changed: 12 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -37,6 +37,18 @@ sonar.cfn.nag.reportFiles=target/template.yml.nag,target/cfn-nag-scan.nagscan
3737

3838
One or multiple .nag or .nagscan files, note for .nag files the filename should be template filename appended with .nag and for nag_scan any filename with .nagscan suffix.
3939

40+
41+
42+
# Group the cfn-nag rules to CWE
43+
44+
CWE-311 - Missing Encryption of Sensitive Data
45+
CWE-732 - Incorrect Permission Assignment for Critical Resource
46+
CWE-257 - Storing Passwords in a Recoverable Format
47+
CWE-778 - Insufficient Logging
48+
CWE-272 - Least Privilege Violation
49+
CWE-286 - Incorrect User Management
50+
No CWE associated
51+
4052
# Roadmap
4153

4254
Support more cloudformation checkers and add more rules for cfn_nag.

0 commit comments

Comments
 (0)