Skip to content

Commit bed896a

Browse files
cody-simms-sonarsourcesonartech
cody-simms-sonarsource
authored and
sonartech
committed
SONAR-26691 Add OWASP MASVS standard
1 parent a748dcd commit bed896a

File tree

3 files changed

+30
-1
lines changed

3 files changed

+30
-1
lines changed

gradle.properties

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@ version=26.1
66
# No change required for patch versions
77
versionEOL=2026-06-08
88
pdfreportVersion=3.0.0.83
9-
complianceReportsVersion=1.0.1.191
9+
complianceReportsVersion=1.0.1.199
1010
pluginApiVersion=13.4.3.4290
1111
description=Open source platform for continuous inspection of code quality
1212
projectTitle=SonarQube

server/sonar-server-common/src/main/java/org/sonar/server/security/SecurityStandards.java

Lines changed: 28 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -336,6 +336,34 @@ public String category() {
336336
private static final Ordering<SQCategory> SQ_CATEGORY_ORDERING = Ordering.explicit(stream(SQCategory.values()).toList());
337337
public static final Ordering<String> SQ_CATEGORY_KEYS_ORDERING = Ordering.explicit(stream(SQCategory.values()).map(SQCategory::getKey).toList());
338338

339+
public static final List<String> OWASP_MASVS_CATEGORIES = List.of(
340+
"MASVS-STORAGE-1",
341+
"MASVS-STORAGE-2",
342+
"MASVS-CRYPTO-1",
343+
"MASVS-CRYPTO-2",
344+
"MASVS-AUTH-1",
345+
"MASVS-AUTH-2",
346+
"MASVS-AUTH-3",
347+
"MASVS-NETWORK-1",
348+
"MASVS-NETWORK-2",
349+
"MASVS-PLATFORM-1",
350+
"MASVS-PLATFORM-2",
351+
"MASVS-PLATFORM-3",
352+
"MASVS-CODE-1",
353+
"MASVS-CODE-2",
354+
"MASVS-CODE-3",
355+
"MASVS-CODE-4",
356+
"MASVS-RESILIENCE-1",
357+
"MASVS-RESILIENCE-2",
358+
"MASVS-RESILIENCE-3",
359+
"MASVS-RESILIENCE-4",
360+
"MASVS-PRIVACY-1",
361+
"MASVS-PRIVACY-2",
362+
"MASVS-PRIVACY-3",
363+
"MASVS-PRIVACY-4"
364+
);
365+
public static final Ordering<String> OWASP_MASVS_CATEGORY_KEYS_ORDERING = Ordering.explicit(OWASP_MASVS_CATEGORIES);
366+
339367
public static final Map<String, String> CWES_BY_CASA_CATEGORY;
340368

341369
static {

sonar-ws/src/main/java/org/sonarqube/ws/client/issue/IssuesWsParameters.java

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -95,6 +95,7 @@ public class IssuesWsParameters {
9595
public static final String PARAM_PCI_DSS_40 = "pciDss-4.0";
9696
public static final String PARAM_OWASP_ASVS = "owaspAsvs";
9797
public static final String PARAM_OWASP_ASVS_40 = "owaspAsvs-4.0";
98+
public static final String PARAM_OWASP_MASVS = "owaspMasvs-v2";
9899
public static final String PARAM_OWASP_LLM_TOP_10 = "owaspLlmTop10";
99100
public static final String PARAM_OWASP_MOBILE_TOP_10 = "owaspMobileTop10";
100101
public static final String PARAM_OWASP_MOBILE_TOP_10_2024 = "owaspMobileTop10-2024";

0 commit comments

Comments
 (0)