CodeSent Rules - Comprehensive API Security & Static Analysis

Step Target BasicAuthentication

Name	Scopes	Tags	Links
Medium
MatchesPath is applied to a static parameter	Target Proxy	Code Quality Data Validation	CWE-20
SpikeArrest uses user-controlled identifiers	Step	Code Quality Data Validation DoS Protection	CWE-770
Unreachable FaultRule	Target Proxy	Code Quality	CWE-561
Unreachable Flow	Target Proxy	Code Quality	CWE-561
Low
Cache lookup variable is overwritten	Step	Code Quality	CWE-472
Overcomplicated or malformed condition	Step RouteRule Flow	Code Quality	CWE-570 CWE-571
Policy errors are not caught	Step	Error Handling	CWE-390
Step operates undefined flow variables	Step	Code Quality	CWE-457
Info
Unused flow variables	Step	Code Quality	CWE-563