diff --git a/rules/php/lang/http_insecure.yml b/rules/php/lang/http_insecure.yml
index 960a99453..878d7994f 100644
--- a/rules/php/lang/http_insecure.yml
+++ b/rules/php/lang/http_insecure.yml
@@ -1,307 +1,18 @@
 languages:
   - php
 imports:
+  - php_shared_lang_http_url
   - php_shared_lang_insecure_url
-  - php_shared_lang_instance
 patterns:
-  - pattern: $<FUNCTION>($<INSECURE_URL>$<...>)
+  - pattern: $<HTTP_URL>;
     filters:
-      - variable: FUNCTION
-        values:
-          - curl_init
-          - file_get_contents
-          - fopen
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  - pattern: curl_setopt($<_>, CURLOPT_URL, $<INSECURE_URL>)
-    filters:
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  - pattern: new SoapClient($<_>, $<OPTIONS>)
-    filters:
-      - variable: OPTIONS
-        detection: php_lang_http_insecure_soap_options
-        scope: cursor
-  # PSR-17
-  - pattern: $<_>->createRequest($<_>, $<INSECURE_URL>)
-    filters:
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  # pecl_http
-  - pattern: new $<CLASS>($<_>, $<INSECURE_URL>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A(http\\Client\\)?Request\z
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  - pattern: new $<CLASS>($<INSECURE_URL>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A((Laminas|Zend)\\Http\\)?Client\z
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  - pattern: $<LAMINAS>->setUri($<INSECURE_URL>)
-    filters:
-      - variable: LAMINAS
-        detection: php_shared_lang_instance
-        scope: cursor
-        filters:
-          - variable: CLASS
-            regex: \A((Laminas|Zend)\\Http\\)?(Client|Request)\z
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  - pattern: new $<CLASS>($<OPTIONS>)
-    filters:
-      - variable: CLASS
-        regex: \A(GuzzleHttp\\)?Client\z
-      - variable: OPTIONS
-        detection: php_lang_http_insecure_guzzle_options
-        scope: result
-  - pattern: $<GUZZLE>->request($<_>, $<INSECURE_URL>$<...>)
-    filters:
-      - variable: GUZZLE
-        detection: php_shared_lang_instance
-        scope: cursor
-        filters:
-          - variable: CLASS
-            regex: \A(GuzzleHttp\\)?Client\z
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  - pattern: $<GUZZLE>->$<METHOD>($<INSECURE_URL>$<...>)
-    filters:
-      - variable: GUZZLE
-        detection: php_shared_lang_instance
-        scope: cursor
-        filters:
-          - variable: CLASS
-            regex: \A(GuzzleHttp\\)?Client\z
-      - variable: METHOD
-        values:
-          - get
-          - delete
-          - head
-          - options
-          - patch
-          - post
-          - put
-          - getAsync
-          - deleteAsync
-          - headAsync
-          - optionsAsync
-          - patchAsync
-          - postAsync
-          - putAsync
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  - pattern: new $<CLASS>($<_>, $<INSECURE_URL>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A(GuzzleHttp\\Psr7\\)?Request\z
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  - pattern: $<CLASS>::$<METHOD>($<INSECURE_URL>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A(WpOrg\\Requests\\)?Requests\z
-      - variable: METHOD
-        values:
-          - get
-          - head
-          - delete
-          - trace
-          - post
-          - put
-          - options
-          - patch
-          - request
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  - pattern: $<CLASS>::request_multiple($<OPTIONS>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A(WpOrg\\Requests\\)?Requests\z
-      - variable: OPTIONS
-        detection: php_lang_http_insecure_requests_options
-        scope: result
-  - pattern: new $<CLASS>($<INSECURE_URL>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A(WpOrg\\Requests\\)?Session\z
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  - pattern: $<SESSION>->$<METHOD>($<INSECURE_URL>$<...>)
-    filters:
-      - variable: SESSION
-        detection: php_shared_lang_instance
-        scope: cursor
-        filters:
-          - variable: CLASS
-            regex: \A(WpOrg\\Requests\\)?Session\z
-      - variable: METHOD
-        values:
-          - get
-          - head
-          - delete
-          - post
-          - put
-          - patch
-          - request
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  - pattern: $<SESSION>->request_multiple($<OPTIONS>$<...>)
-    filters:
-      - variable: SESSION
-        detection: php_shared_lang_instance
-        scope: cursor
+      - variable: HTTP_URL
+        detection: php_shared_lang_http_url
+        scope: cursor_strict
         filters:
-          - variable: CLASS
-            regex: \A(WpOrg\\Requests\\)?Session\z
-      - variable: OPTIONS
-        detection: php_lang_http_insecure_requests_options
-        scope: result
-  - pattern: $<BROWSER>->$<METHOD>($<INSECURE_URL>$<...>)
-    filters:
-      - variable: BROWSER
-        detection: php_shared_lang_instance
-        scope: cursor
-        filters:
-          - variable: CLASS
-            regex: \A(Buzz\\)?Browser\z
-      - variable: METHOD
-        values:
-          - get
-          - post
-          - head
-          - patch
-          - put
-          - delete
-          - submitForm
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  - pattern: $<BROWSER>->request($<_>, $<INSECURE_URL>$<...>)
-    filters:
-      - variable: BROWSER
-        detection: php_shared_lang_instance
-        scope: cursor
-        filters:
-          - variable: CLASS
-            regex: \A(Buzz\\)?Browser\z
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  - pattern: new $<CLASS>($<INSECURE_URL>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A(SendGrid\\)?Client\z
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  - pattern: $<CLASS>::$<METHOD>($<INSECURE_URL>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A(Unirest\\)?Request\z
-      - variable: METHOD
-        values:
-          - get
-          - post
-          - put
-          - patch
-          - delete
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  - pattern: $<CLASS>::send($<_>, $<INSECURE_URL>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A(Unirest\\)?Request\z
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  - pattern: $<CLASS>::$<METHOD>($<INSECURE_URL>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A(Illuminate\\Support\\Facades\\)?Http\z
-      - variable: METHOD
-        values:
-          - head
-          - get
-          - post
-          - put
-          - patch
-          - delete
-          - withUrlParameters
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  - pattern: $<HTTP>->$<METHOD>($<INSECURE_URL>$<...>)
-    filters:
-      - variable: HTTP
-        detection: php_lang_http_insecure_laravel_http
-        scope: cursor
-      - variable: METHOD
-        values:
-          - head
-          - get
-          - post
-          - put
-          - patch
-          - delete
-          - withUrlParameters
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-  # symfony
-  - pattern: $<_>->request($<_>, $<INSECURE_URL>$<...>);
-    filters:
-      - variable: INSECURE_URL
-        detection: php_shared_lang_insecure_url
-        scope: result
-auxiliary:
-  - id: php_lang_http_insecure_soap_options
-    patterns:
-      - pattern: array('location' => $<INSECURE_URL>)
-        filters:
-          - variable: INSECURE_URL
+          - variable: URL
             detection: php_shared_lang_insecure_url
             scope: result
-  - id: php_lang_http_insecure_guzzle_options
-    patterns:
-      - pattern: array('base_uri' => $<INSECURE_URL>)
-        filters:
-          - variable: INSECURE_URL
-            detection: php_shared_lang_insecure_url
-            scope: result
-  - id: php_lang_http_insecure_requests_options
-    patterns:
-      - pattern: array('url' => $<INSECURE_URL>)
-        filters:
-          - variable: INSECURE_URL
-            detection: php_shared_lang_insecure_url
-            scope: result
-  - id: php_lang_http_insecure_laravel_http
-    patterns:
-      - pattern: $<CLASS>::$<_>()
-        filters:
-          - variable: CLASS
-            regex: \A(Illuminate\\Support\\Facades\\)?Http\z
-      - pattern: $<HTTP>->$<_>()
-        filters:
-          - variable: HTTP
-            detection: php_lang_http_insecure_laravel_http
-            scope: cursor
 severity: low
 metadata:
   description: "Communication through an insecure HTTP connection detected."
diff --git a/rules/php/lang/http_url_using_sensitive_data.yml b/rules/php/lang/http_url_using_sensitive_data.yml
new file mode 100644
index 000000000..3e6d5f78f
--- /dev/null
+++ b/rules/php/lang/http_url_using_sensitive_data.yml
@@ -0,0 +1,398 @@
+languages:
+  - php
+imports:
+  - php_shared_lang_instance
+  - php_shared_lang_http_url
+patterns:
+  - pattern: $<HTTP_URL>;
+    filters:
+      - variable: HTTP_URL
+        detection: php_shared_lang_http_url
+        scope: cursor_strict
+        filters:
+          - variable: URL
+            detection: datatype
+            scope: result
+  - pattern: $<GUZZLE>->$<METHOD>($<_>, $<_>, $<OPTIONS>)
+    filters:
+      - variable: GUZZLE
+        detection: php_shared_lang_instance
+        scope: cursor
+        filters:
+          - variable: CLASS
+            regex: \A(GuzzleHttp\\)?Client\z
+      - variable: METHOD
+        values:
+          - request
+          - requestAsync
+      - variable: OPTIONS
+        detection: php_lang_http_url_using_sensitive_data_guzzle_options
+        scope: cursor
+  - pattern: $<GUZZLE>->$<METHOD>($<_>, $<OPTIONS>)
+    filters:
+      - variable: GUZZLE
+        detection: php_shared_lang_instance
+        scope: cursor
+        filters:
+          - variable: CLASS
+            regex: \A(GuzzleHttp\\)?Client\z
+      - variable: METHOD
+        values:
+          - get
+          - delete
+          - head
+          - options
+          - patch
+          - post
+          - put
+          - getAsync
+          - deleteAsync
+          - headAsync
+          - optionsAsync
+          - patchAsync
+          - postAsync
+          - putAsync
+          - send
+          - sendAsync
+      - variable: OPTIONS
+        detection: php_lang_http_url_using_sensitive_data_guzzle_options
+        scope: cursor
+  - pattern: new $<CLASS>($<DATA_TYPE>)
+    filters:
+      - variable: CLASS
+        regex: \A(Http\\Message\\Authentication\\)?QueryParam\z
+      - variable: DATA_TYPE
+        detection: datatype
+        scope: result
+  - pattern: $<CLIENT>->setParameterGet($<DATA_TYPE>)
+    filters:
+      - variable: CLIENT
+        detection: php_shared_lang_instance
+        scope: cursor
+        filters:
+          - variable: CLASS
+            regex: \A((Laminas|Zend)\\Http\\)?Client\z
+      - variable: DATA_TYPE
+        detection: datatype
+        scope: result
+  - pattern: $<QUERY>->$<METHOD>($<...>$<DATA_TYPE>$<...>)
+    filters:
+      - variable: QUERY
+        detection: php_lang_http_url_using_sensitive_data_laminas_query
+        scope: cursor
+      - variable: METHOD
+        values:
+          - set
+          - offsetSet
+      - variable: DATA_TYPE
+        detection: datatype
+        scope: result
+  - pattern: $<QUERY>->$<_> = $<DATA_TYPE>
+    filters:
+      - variable: QUERY
+        detection: php_lang_http_url_using_sensitive_data_laminas_query
+        scope: cursor
+      - variable: DATA_TYPE
+        detection: datatype
+        scope: result
+  - pattern: $<CLASS>::$<METHOD>($<_>, $<DATA_TYPE>)
+    filters:
+      - variable: CLASS
+        regex: \A(Illuminate\\Support\\Facades\\)?Http\z
+      - variable: METHOD
+        values:
+          - head
+          - get
+      - variable: DATA_TYPE
+        detection: datatype
+        scope: result
+  - pattern: $<HTTP>->$<METHOD>($<_>, $<DATA_TYPE>)
+    filters:
+      - variable: HTTP
+        detection: php_lang_http_url_using_sensitive_data_laravel_http
+        scope: cursor
+      - variable: METHOD
+        values:
+          - head
+          - get
+      - variable: DATA_TYPE
+        detection: datatype
+        scope: result
+  - pattern: $<CLASS>::withQueryParameters($<DATA_TYPE>)
+    filters:
+      - variable: CLASS
+        regex: \A(Illuminate\\Support\\Facades\\)?Http\z
+      - variable: DATA_TYPE
+        detection: datatype
+        scope: result
+  - pattern: $<HTTP>->withQueryParameters($<DATA_TYPE>)
+    filters:
+      - variable: HTTP
+        detection: php_lang_http_url_using_sensitive_data_laravel_http
+        scope: cursor
+      - variable: DATA_TYPE
+        detection: datatype
+        scope: result
+  - pattern: $<CLASS>::send($<_>, $<_>, $<OPTIONS>)
+    filters:
+      - variable: CLASS
+        regex: \A(Illuminate\\Support\\Facades\\)?Http\z
+      - variable: OPTIONS
+        detection: php_lang_http_url_using_sensitive_data_guzzle_options
+        scope: cursor
+  - pattern: $<HTTP>->send($<_>, $<_>, $<OPTIONS>)
+    filters:
+      - variable: HTTP
+        detection: php_lang_http_url_using_sensitive_data_laravel_http
+        scope: cursor
+      - variable: OPTIONS
+        detection: php_lang_http_url_using_sensitive_data_guzzle_options
+        scope: cursor
+  # pecl_http
+  - pattern: $<REQUEST>->$<METHOD>($<DATA_TYPE>)
+    filters:
+      - variable: REQUEST
+        detection: php_shared_lang_instance
+        scope: cursor
+        filters:
+          - variable: CLASS
+            regex: \A(http\\Client\\)?Request\z
+      - variable: METHOD
+        values:
+          - addQuery
+          - setQuery
+      - variable: DATA_TYPE
+        detection: datatype
+        scope: result
+  - pattern: $<CLASS>::$<METHOD>($<_>, $<_>, $<DATA_TYPE>$<...>)
+    filters:
+      - variable: CLASS
+        regex: \A(WpOrg\\Requests\\)?Requests\z
+      - variable: METHOD
+        values:
+          - get
+          - head
+          - delete
+      - variable: DATA_TYPE
+        detection: datatype
+        scope: result
+  - pattern: $<CLASS>::request($<_>, $<_>, $<DATA_TYPE>)
+    filters:
+      - variable: CLASS
+        regex: \A(WpOrg\\Requests\\)?Requests\z
+      - variable: DATA_TYPE
+        detection: datatype
+        scope: result
+  - pattern: $<CLASS>::request($<_>, $<_>, $<DATA_TYPE>, $<TYPE>$<...>)
+    filters:
+      - variable: CLASS
+        regex: \A(WpOrg\\Requests\\)?Requests\z
+      - variable: DATA_TYPE
+        detection: datatype
+        scope: result
+      - variable: TYPE
+        detection: php_lang_http_url_using_sensitive_data_requests_type
+        scope: cursor
+  - pattern: $<CLASS>::request_multiple($<OPTIONS>$<...>)
+    filters:
+      - variable: CLASS
+        regex: \A(WpOrg\\Requests\\)?Requests\z
+      - variable: OPTIONS
+        detection: php_lang_http_url_using_sensitive_data_requests_options
+        scope: result
+  - pattern: new $<CLASS>($<_>, $<_>, $<DATA_TYPE>$<...>)
+    filters:
+      - variable: CLASS
+        regex: \A(WpOrg\\Requests\\)?Session\z
+      - variable: DATA_TYPE
+        detection: datatype
+        scope: result
+  - pattern: $<SESSION>->request($<_>, $<_>, $<DATA_TYPE>)
+    filters:
+      - variable: SESSION
+        detection: php_shared_lang_instance
+        scope: cursor
+        filters:
+          - variable: CLASS
+            regex: \A(WpOrg\\Requests\\)?Session\z
+      - variable: DATA_TYPE
+        detection: datatype
+        scope: result
+  - pattern: $<SESSION>->request($<_>, $<_>, $<DATA_TYPE>, $<TYPE>$<...>)
+    filters:
+      - variable: SESSION
+        detection: php_shared_lang_instance
+        scope: cursor
+        filters:
+          - variable: CLASS
+            regex: \A(WpOrg\\Requests\\)?Session\z
+      - variable: DATA_TYPE
+        detection: datatype
+        scope: result
+      - variable: TYPE
+        detection: php_lang_http_url_using_sensitive_data_requests_type
+        scope: cursor
+  - pattern: $<SESSION>->request_multiple($<OPTIONS>$<...>)
+    filters:
+      - variable: SESSION
+        detection: php_shared_lang_instance
+        scope: cursor
+        filters:
+          - variable: CLASS
+            regex: \A(WpOrg\\Requests\\)?Session\z
+      - variable: OPTIONS
+        detection: php_lang_http_url_using_sensitive_data_requests_options
+        scope: result
+  - pattern: $<CLIENT>->$<METHOD>($<_>, $<DATA_TYPE>$<...>)
+    filters:
+      - variable: CLIENT
+        detection: php_shared_lang_instance
+        scope: cursor
+        filters:
+          - variable: CLASS
+            regex: \A(SendGrid\\)?Client\z
+      - variable: METHOD
+        values:
+          - get
+          - post
+          - patch
+          - put
+          - delete
+      - variable: DATA_TYPE
+        detection: datatype
+        scope: result
+  # symfony
+  - pattern: $<_>->request($<_>, $<_>, $<OPTIONS>$<...>)
+    filters:
+      - variable: OPTIONS
+        detection: php_lang_http_url_using_sensitive_data_guzzle_options
+        scope: cursor
+  - pattern: $<CLASS>::get($<_>, $<_>, $<DATA_TYPE>$<...>)
+    filters:
+      - variable: CLASS
+        regex: \A(Unirest\\)?Request\z
+      - variable: DATA_TYPE
+        detection: datatype
+        scope: result
+  - pattern: $<CLASS>::send($<_>, $<_>, $<_>, $<DATA_TYPE>$<...>)
+    filters:
+      - variable: CLASS
+        regex: \A(Unirest\\)?Request\z
+      - variable: DATA_TYPE
+        detection: datatype
+        scope: result
+auxiliary:
+  - id: php_lang_http_url_using_sensitive_data_guzzle_options
+    patterns:
+      - pattern: array('query' => $<DATA_TYPE>)
+        filters:
+          - variable: DATA_TYPE
+            detection: datatype
+            scope: result
+  - id: php_lang_http_url_using_sensitive_data_laminas_query
+    patterns:
+      - pattern: $<REQUEST>->getQuery()
+        filters:
+          - variable: REQUEST
+            detection: php_shared_lang_instance
+            scope: cursor
+            filters:
+              - variable: CLASS
+                regex: \A((Laminas|Zend)\\Http\\)?Request\z
+  - id: php_lang_http_url_using_sensitive_data_laravel_http
+    patterns:
+      - pattern: $<CLASS>::$<_>()
+        filters:
+          - variable: CLASS
+            regex: \A(Illuminate\\Support\\Facades\\)?Http\z
+      - pattern: $<HTTP>->$<_>()
+        filters:
+          - variable: HTTP
+            detection: php_lang_http_url_using_sensitive_data_laravel_http
+            scope: cursor
+  - id: php_lang_http_url_using_sensitive_data_requests_type
+    patterns:
+      - pattern: $<CLASS>::$<CONSTANT>
+        filters:
+          - variable: CLASS
+            regex: \A(WpOrg\\Requests\\)?Requests\z
+          - variable: CONSTANT
+            values:
+              - GET
+              - HEAD
+              - DELETE
+  - id: php_lang_http_url_using_sensitive_data_requests_options
+    patterns:
+      - pattern: $<OPTIONS>;
+        filters:
+          - variable: OPTIONS
+            detection: php_lang_http_url_using_sensitive_data_requests_options_data
+            scope: cursor_strict
+          - either:
+              - variable: OPTIONS
+                detection: php_lang_http_url_using_sensitive_data_requests_options_type
+                scope: cursor_strict
+              - not:
+                  variable: OPTIONS
+                  detection: php_lang_http_url_using_sensitive_data_requests_options_any_type
+                  scope: cursor_strict
+  - id: php_lang_http_url_using_sensitive_data_requests_options_data
+    patterns:
+      - pattern: array('data' => $<DATA_TYPE>)
+        filters:
+          - variable: DATA_TYPE
+            detection: datatype
+            scope: result
+  - id: php_lang_http_url_using_sensitive_data_requests_options_type
+    patterns:
+      - pattern: array('type' => $<TYPE>)
+        filters:
+          - variable: TYPE
+            detection: php_lang_http_url_using_sensitive_data_requests_type
+            scope: cursor
+  - id: php_lang_http_url_using_sensitive_data_requests_options_any_type
+    patterns:
+      - array('type' => $<_>)
+metadata:
+  description: "Sensitive data detected in HTTP URL."
+  remediation_message: |
+    ## Description
+    Sensitive data should never be sent as part of the URL in HTTP requests.
+
+    ## Remediations
+    Avoid sending sensitive data in a URL as they can be seen by intermediaries,
+    or could be logged by applications:
+
+    ❌ Avoid adding sensitive data in paths:
+    ```php
+    $curl = curl_init("https://example.com/users/{$user->email}");
+    ```
+
+    ❌ Avoid adding sensitive data in query parameters:
+    ```php
+    $query = http_build_query(['email' => $user->email]);
+    $curl = curl_init("https://example.com/users?$query");
+    ```
+
+    ✅ Use an HTTP POST body if you need to send sensitive data:
+
+    ```php
+    $query = http_build_query(['email' => $user->email]);
+    $curl = curl_init("https://example.com/users/list");
+    curl_setopt($curl, CURLOPT_POSTFIELDS, $query);
+    ```
+
+    ✅ Or avoid sending sending sensitive data altogether:
+
+    ```php
+    $query = http_build_query(['uuid' => $user->uuid]);
+    $curl = curl_init("https://example.com/users?$query");
+    ```
+
+    <!--
+    ## Resources
+    - [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)
+  cwe_id:
+    - 598
+  id: php_lang_http_url_using_sensitive_data
+  documentation_url: https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data
diff --git a/rules/php/lang/http_url_using_user_input.yml b/rules/php/lang/http_url_using_user_input.yml
index 91c5ce3d3..0211477a9 100644
--- a/rules/php/lang/http_url_using_user_input.yml
+++ b/rules/php/lang/http_url_using_user_input.yml
@@ -1,307 +1,18 @@
 languages:
   - php
 imports:
+  - php_shared_lang_http_url
   - php_shared_lang_user_input
-  - php_shared_lang_instance
 patterns:
-  - pattern: $<FUNCTION>($<USER_INPUT>$<...>)
+  - pattern: $<HTTP_URL>;
     filters:
-      - variable: FUNCTION
-        values:
-          - curl_init
-          - file_get_contents
-          - fopen
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  - pattern: curl_setopt($<_>, CURLOPT_URL, $<USER_INPUT>)
-    filters:
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  - pattern: new SoapClient($<_>, $<OPTIONS>)
-    filters:
-      - variable: OPTIONS
-        detection: php_lang_http_insecure_soap_options
-        scope: cursor
-  # PSR-17
-  - pattern: $<_>->createRequest($<_>, $<USER_INPUT>)
-    filters:
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  # pecl_http
-  - pattern: new $<CLASS>($<_>, $<USER_INPUT>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A(http\\Client\\)?Request\z
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  - pattern: new $<CLASS>($<USER_INPUT>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A((Laminas|Zend)\\Http\\)?Client\z
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  - pattern: $<LAMINAS>->setUri($<USER_INPUT>)
-    filters:
-      - variable: LAMINAS
-        detection: php_shared_lang_instance
-        scope: cursor
-        filters:
-          - variable: CLASS
-            regex: \A((Laminas|Zend)\\Http\\)?(Client|Request)\z
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  - pattern: new $<CLASS>($<OPTIONS>)
-    filters:
-      - variable: CLASS
-        regex: \A(GuzzleHttp\\)?Client\z
-      - variable: OPTIONS
-        detection: php_lang_http_insecure_guzzle_options
-        scope: result
-  - pattern: $<GUZZLE>->request($<_>, $<USER_INPUT>$<...>)
-    filters:
-      - variable: GUZZLE
-        detection: php_shared_lang_instance
-        scope: cursor
-        filters:
-          - variable: CLASS
-            regex: \A(GuzzleHttp\\)?Client\z
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  - pattern: $<GUZZLE>->$<METHOD>($<USER_INPUT>$<...>)
-    filters:
-      - variable: GUZZLE
-        detection: php_shared_lang_instance
-        scope: cursor
-        filters:
-          - variable: CLASS
-            regex: \A(GuzzleHttp\\)?Client\z
-      - variable: METHOD
-        values:
-          - get
-          - delete
-          - head
-          - options
-          - patch
-          - post
-          - put
-          - getAsync
-          - deleteAsync
-          - headAsync
-          - optionsAsync
-          - patchAsync
-          - postAsync
-          - putAsync
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  - pattern: new $<CLASS>($<_>, $<USER_INPUT>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A(GuzzleHttp\\Psr7\\)?Request\z
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  - pattern: $<CLASS>::$<METHOD>($<USER_INPUT>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A(WpOrg\\Requests\\)?Requests\z
-      - variable: METHOD
-        values:
-          - get
-          - head
-          - delete
-          - trace
-          - post
-          - put
-          - options
-          - patch
-          - request
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  - pattern: $<CLASS>::request_multiple($<OPTIONS>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A(WpOrg\\Requests\\)?Requests\z
-      - variable: OPTIONS
-        detection: php_lang_http_insecure_requests_options
-        scope: result
-  - pattern: new $<CLASS>($<USER_INPUT>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A(WpOrg\\Requests\\)?Session\z
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  - pattern: $<SESSION>->$<METHOD>($<USER_INPUT>$<...>)
-    filters:
-      - variable: SESSION
-        detection: php_shared_lang_instance
-        scope: cursor
-        filters:
-          - variable: CLASS
-            regex: \A(WpOrg\\Requests\\)?Session\z
-      - variable: METHOD
-        values:
-          - get
-          - head
-          - delete
-          - post
-          - put
-          - patch
-          - request
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  - pattern: $<SESSION>->request_multiple($<OPTIONS>$<...>)
-    filters:
-      - variable: SESSION
-        detection: php_shared_lang_instance
-        scope: cursor
+      - variable: HTTP_URL
+        detection: php_shared_lang_http_url
+        scope: cursor_strict
         filters:
-          - variable: CLASS
-            regex: \A(WpOrg\\Requests\\)?Session\z
-      - variable: OPTIONS
-        detection: php_lang_http_insecure_requests_options
-        scope: result
-  - pattern: $<BROWSER>->$<METHOD>($<USER_INPUT>$<...>)
-    filters:
-      - variable: BROWSER
-        detection: php_shared_lang_instance
-        scope: cursor
-        filters:
-          - variable: CLASS
-            regex: \A(Buzz\\)?Browser\z
-      - variable: METHOD
-        values:
-          - get
-          - post
-          - head
-          - patch
-          - put
-          - delete
-          - submitForm
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  - pattern: $<BROWSER>->request($<_>, $<USER_INPUT>$<...>)
-    filters:
-      - variable: BROWSER
-        detection: php_shared_lang_instance
-        scope: cursor
-        filters:
-          - variable: CLASS
-            regex: \A(Buzz\\)?Browser\z
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  - pattern: new $<CLASS>($<USER_INPUT>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A(SendGrid\\)?Client\z
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  - pattern: $<CLASS>::$<METHOD>($<USER_INPUT>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A(Unirest\\)?Request\z
-      - variable: METHOD
-        values:
-          - get
-          - post
-          - put
-          - patch
-          - delete
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  - pattern: $<CLASS>::send($<_>, $<USER_INPUT>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A(Unirest\\)?Request\z
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  - pattern: $<CLASS>::$<METHOD>($<USER_INPUT>$<...>)
-    filters:
-      - variable: CLASS
-        regex: \A(Illuminate\\Support\\Facades\\)?Http\z
-      - variable: METHOD
-        values:
-          - head
-          - get
-          - post
-          - put
-          - patch
-          - delete
-          - withUrlParameters
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  - pattern: $<HTTP>->$<METHOD>($<USER_INPUT>$<...>)
-    filters:
-      - variable: HTTP
-        detection: php_lang_http_insecure_laravel_http
-        scope: cursor
-      - variable: METHOD
-        values:
-          - head
-          - get
-          - post
-          - put
-          - patch
-          - delete
-          - withUrlParameters
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-  # symfony
-  - pattern: $<_>->request($<_>, $<USER_INPUT>$<...>);
-    filters:
-      - variable: USER_INPUT
-        detection: php_shared_lang_user_input
-        scope: result
-auxiliary:
-  - id: php_lang_http_insecure_soap_options
-    patterns:
-      - pattern: array('location' => $<USER_INPUT>)
-        filters:
-          - variable: USER_INPUT
+          - variable: URL
             detection: php_shared_lang_user_input
             scope: result
-  - id: php_lang_http_insecure_guzzle_options
-    patterns:
-      - pattern: array('base_uri' => $<USER_INPUT>)
-        filters:
-          - variable: USER_INPUT
-            detection: php_shared_lang_user_input
-            scope: result
-  - id: php_lang_http_insecure_requests_options
-    patterns:
-      - pattern: array('url' => $<USER_INPUT>)
-        filters:
-          - variable: USER_INPUT
-            detection: php_shared_lang_user_input
-            scope: result
-  - id: php_lang_http_insecure_laravel_http
-    patterns:
-      - pattern: $<CLASS>::$<_>()
-        filters:
-          - variable: CLASS
-            regex: \A(Illuminate\\Support\\Facades\\)?Http\z
-      - pattern: $<HTTP>->$<_>()
-        filters:
-          - variable: HTTP
-            detection: php_lang_http_insecure_laravel_http
-            scope: cursor
 severity: high
 metadata:
   description: "HTTP communication with user-controlled destination detected."
diff --git a/rules/php/shared/lang/http_url.yml b/rules/php/shared/lang/http_url.yml
new file mode 100644
index 000000000..91f72f896
--- /dev/null
+++ b/rules/php/shared/lang/http_url.yml
@@ -0,0 +1,252 @@
+type: shared
+languages:
+  - php
+imports:
+  - php_shared_lang_instance
+patterns:
+  - pattern: $<FUNCTION>($<URL>$<...>)
+    filters:
+      - variable: FUNCTION
+        values:
+          - curl_init
+          - file_get_contents
+          - fopen
+  - pattern: curl_setopt($<_>, CURLOPT_URL, $<URL>)
+  - pattern: new SoapClient($<_>, $<OPTIONS>)
+    filters:
+      - variable: OPTIONS
+        detection: php_shared_lang_http_url_soap_options
+        scope: cursor
+        imports:
+          - variable: URL
+            as: URL
+  # PSR-17
+  - pattern: $<_>->createRequest($<_>, $<URL>)
+  # pecl_http
+  - pattern: new $<CLASS>($<_>, $<URL>$<...>)
+    filters:
+      - variable: CLASS
+        regex: \A(http\\Client\\)?Request\z
+  - pattern: new $<CLASS>($<URL>$<...>)
+    filters:
+      - variable: CLASS
+        regex: \A((Laminas|Zend)\\Http\\)?Client\z
+  - pattern: $<LAMINAS>->setUri($<URL>)
+    filters:
+      - variable: LAMINAS
+        detection: php_shared_lang_instance
+        scope: cursor
+        filters:
+          - variable: CLASS
+            regex: \A((Laminas|Zend)\\Http\\)?(Client|Request)\z
+  - pattern: new $<CLASS>($<OPTIONS>)
+    filters:
+      - variable: CLASS
+        regex: \A(GuzzleHttp\\)?Client\z
+      - variable: OPTIONS
+        detection: php_shared_lang_http_url_guzzle_options
+        scope: result
+        imports:
+          - variable: URL
+            as: URL
+  - pattern: $<GUZZLE>->$<METHOD>($<_>, $<URL>$<...>)
+    filters:
+      - variable: GUZZLE
+        detection: php_shared_lang_instance
+        scope: cursor
+        filters:
+          - variable: CLASS
+            regex: \A(GuzzleHttp\\)?Client\z
+      - variable: METHOD
+        values:
+          - request
+          - requestAsync
+  - pattern: $<GUZZLE>->$<METHOD>($<URL>$<...>)
+    filters:
+      - variable: GUZZLE
+        detection: php_shared_lang_instance
+        scope: cursor
+        filters:
+          - variable: CLASS
+            regex: \A(GuzzleHttp\\)?Client\z
+      - variable: METHOD
+        values:
+          - get
+          - delete
+          - head
+          - options
+          - patch
+          - post
+          - put
+          - getAsync
+          - deleteAsync
+          - headAsync
+          - optionsAsync
+          - patchAsync
+          - postAsync
+          - putAsync
+  - pattern: new $<CLASS>($<_>, $<URL>$<...>)
+    filters:
+      - variable: CLASS
+        regex: \A(GuzzleHttp\\Psr7\\)?Request\z
+  - pattern: $<CLASS>::$<METHOD>($<URL>$<...>)
+    filters:
+      - variable: CLASS
+        regex: \A(WpOrg\\Requests\\)?Requests\z
+      - variable: METHOD
+        values:
+          - get
+          - head
+          - delete
+          - trace
+          - post
+          - put
+          - options
+          - patch
+          - request
+  - pattern: $<CLASS>::request_multiple($<OPTIONS>$<...>)
+    filters:
+      - variable: CLASS
+        regex: \A(WpOrg\\Requests\\)?Requests\z
+      - variable: OPTIONS
+        detection: php_shared_lang_http_url_requests_options
+        scope: result
+        imports:
+          - variable: URL
+            as: URL
+  - pattern: new $<CLASS>($<URL>$<...>)
+    filters:
+      - variable: CLASS
+        regex: \A(WpOrg\\Requests\\)?Session\z
+  - pattern: $<SESSION>->$<METHOD>($<URL>$<...>)
+    filters:
+      - variable: SESSION
+        detection: php_shared_lang_instance
+        scope: cursor
+        filters:
+          - variable: CLASS
+            regex: \A(WpOrg\\Requests\\)?Session\z
+      - variable: METHOD
+        values:
+          - get
+          - head
+          - delete
+          - post
+          - put
+          - patch
+          - request
+  - pattern: $<SESSION>->request_multiple($<OPTIONS>$<...>)
+    filters:
+      - variable: SESSION
+        detection: php_shared_lang_instance
+        scope: cursor
+        filters:
+          - variable: CLASS
+            regex: \A(WpOrg\\Requests\\)?Session\z
+      - variable: OPTIONS
+        detection: php_shared_lang_http_url_requests_options
+        scope: result
+        imports:
+          - variable: URL
+            as: URL
+  - pattern: $<BROWSER>->$<METHOD>($<URL>$<...>)
+    filters:
+      - variable: BROWSER
+        detection: php_shared_lang_instance
+        scope: cursor
+        filters:
+          - variable: CLASS
+            regex: \A(Buzz\\)?Browser\z
+      - variable: METHOD
+        values:
+          - get
+          - post
+          - head
+          - patch
+          - put
+          - delete
+          - submitForm
+  - pattern: $<BROWSER>->request($<_>, $<URL>$<...>)
+    filters:
+      - variable: BROWSER
+        detection: php_shared_lang_instance
+        scope: cursor
+        filters:
+          - variable: CLASS
+            regex: \A(Buzz\\)?Browser\z
+  - pattern: new $<CLASS>($<URL>$<...>)
+    filters:
+      - variable: CLASS
+        regex: \A(SendGrid\\)?Client\z
+  - pattern: $<CLASS>::$<METHOD>($<URL>$<...>)
+    filters:
+      - variable: CLASS
+        regex: \A(Unirest\\)?Request\z
+      - variable: METHOD
+        values:
+          - get
+          - head
+          - options
+          - connect
+          - post
+          - put
+          - patch
+          - delete
+          - trace
+  - pattern: $<CLASS>::send($<_>, $<URL>$<...>)
+    filters:
+      - variable: CLASS
+        regex: \A(Unirest\\)?Request\z
+  - pattern: $<CLASS>::$<METHOD>($<URL>$<...>)
+    filters:
+      - variable: CLASS
+        regex: \A(Illuminate\\Support\\Facades\\)?Http\z
+      - variable: METHOD
+        values:
+          - head
+          - get
+          - post
+          - put
+          - patch
+          - delete
+          - withUrlParameters
+  - pattern: $<HTTP>->$<METHOD>($<URL>$<...>)
+    filters:
+      - variable: HTTP
+        detection: php_shared_lang_http_url_laravel_http
+        scope: cursor
+      - variable: METHOD
+        values:
+          - head
+          - get
+          - post
+          - put
+          - patch
+          - delete
+          - withUrlParameters
+  # symfony
+  - pattern: $<_>->request($<_>, $<URL>$<...>);
+auxiliary:
+  - id: php_shared_lang_http_url_soap_options
+    patterns:
+      - pattern: array('location' => $<URL>)
+  - id: php_shared_lang_http_url_guzzle_options
+    patterns:
+      - pattern: array('base_uri' => $<URL>)
+  - id: php_shared_lang_http_url_requests_options
+    patterns:
+      - pattern: array('url' => $<URL>)
+  - id: php_shared_lang_http_url_laravel_http
+    patterns:
+      - pattern: $<CLASS>::$<_>()
+        filters:
+          - variable: CLASS
+            regex: \A(Illuminate\\Support\\Facades\\)?Http\z
+      - pattern: $<HTTP>->$<_>()
+        filters:
+          - variable: HTTP
+            detection: php_shared_lang_http_url_laravel_http
+            scope: cursor
+metadata:
+  description: "PHP HTTP URL."
+  id: php_shared_lang_http_url
diff --git a/scripts/rule_schema.json b/scripts/rule_schema.json
index 708c99d6c..53b45bda5 100644
--- a/scripts/rule_schema.json
+++ b/scripts/rule_schema.json
@@ -221,7 +221,7 @@
         },
         "scope": {
           "type": "string",
-          "enum": ["cursor", "nested", "result"]
+          "enum": ["cursor", "cursor_strict", "nested", "result"]
         },
         "imports": {
           "type": "array",
diff --git a/tests/php/lang/http_url_using_sensitive_data/__snapshots__/test.js.snap b/tests/php/lang/http_url_using_sensitive_data/__snapshots__/test.js.snap
new file mode 100644
index 000000000..82aa7e24d
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/__snapshots__/test.js.snap
@@ -0,0 +1,2233 @@
+// Jest Snapshot v1, https://goo.gl/fbAQLP
+
+exports[`php_lang_http_url_using_sensitive_data bad 1`] = `
+"{
+  "high": [
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 3,
+      "full_filename": "/tmp/bearer-scan/bad.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 3,
+        "end": 3,
+        "column": {
+          "start": 40,
+          "end": 52
+        }
+      },
+      "sink": {
+        "start": 3,
+        "end": 3,
+        "column": {
+          "start": 9,
+          "end": 55
+        },
+        "content": "curl_init(\\"http://example.com/{$user->email}\\")"
+      },
+      "parent_line_number": 3,
+      "snippet": "curl_init(\\"http://example.com/{$user->email}\\")",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_0",
+      "old_fingerprint": "e2039c5c63e1175f7da8eb0a49bd64ae_0",
+      "code_extract": "$curl = curl_init(\\"http://example.com/{$user->email}\\");"
+    }
+  ]
+}"
+`;
+
+exports[`php_lang_http_url_using_sensitive_data bad_guzzle 1`] = `
+"{
+  "high": [
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 11,
+      "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 11,
+        "end": 11,
+        "column": {
+          "start": 64,
+          "end": 76
+        }
+      },
+      "sink": {
+        "start": 11,
+        "end": 11,
+        "column": {
+          "start": 13,
+          "end": 79
+        },
+        "content": "$client->request(\\"GET\\", $url, ['query' => ['user', $user->email]])"
+      },
+      "parent_line_number": 11,
+      "snippet": "$client->request(\\"GET\\", $url, ['query' => ['user', $user->email]])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_0",
+      "old_fingerprint": "d374746e282fc39933337d3cc56b9bc8_0",
+      "code_extract": "$response = $client->request(\\"GET\\", $url, ['query' => ['user', $user->email]]);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 12,
+      "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 12,
+        "end": 12,
+        "column": {
+          "start": 46,
+          "end": 58
+        }
+      },
+      "sink": {
+        "start": 12,
+        "end": 12,
+        "column": {
+          "start": 1,
+          "end": 61
+        },
+        "content": "$client->send($request, ['query' => ['user', $user->email]])"
+      },
+      "parent_line_number": 12,
+      "snippet": "$client->send($request, ['query' => ['user', $user->email]])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_1",
+      "old_fingerprint": "d374746e282fc39933337d3cc56b9bc8_1",
+      "code_extract": "$client->send($request, ['query' => ['user', $user->email]]);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 13,
+      "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 13,
+        "end": 13,
+        "column": {
+          "start": 51,
+          "end": 63
+        }
+      },
+      "sink": {
+        "start": 13,
+        "end": 13,
+        "column": {
+          "start": 1,
+          "end": 66
+        },
+        "content": "$client->sendAsync($request, ['query' => ['user', $user->email]])"
+      },
+      "parent_line_number": 13,
+      "snippet": "$client->sendAsync($request, ['query' => ['user', $user->email]])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_2",
+      "old_fingerprint": "d374746e282fc39933337d3cc56b9bc8_2",
+      "code_extract": "$client->sendAsync($request, ['query' => ['user', $user->email]]);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 15,
+      "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 15,
+        "end": 15,
+        "column": {
+          "start": 41,
+          "end": 53
+        }
+      },
+      "sink": {
+        "start": 15,
+        "end": 15,
+        "column": {
+          "start": 1,
+          "end": 56
+        },
+        "content": "$client->get($url, ['query' => ['user', $user->email]])"
+      },
+      "parent_line_number": 15,
+      "snippet": "$client->get($url, ['query' => ['user', $user->email]])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_3",
+      "old_fingerprint": "d374746e282fc39933337d3cc56b9bc8_3",
+      "code_extract": "$client->get($url, ['query' => ['user', $user->email]]);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 16,
+      "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 16,
+        "end": 16,
+        "column": {
+          "start": 44,
+          "end": 56
+        }
+      },
+      "sink": {
+        "start": 16,
+        "end": 16,
+        "column": {
+          "start": 1,
+          "end": 59
+        },
+        "content": "$client->delete($url, ['query' => ['user', $user->email]])"
+      },
+      "parent_line_number": 16,
+      "snippet": "$client->delete($url, ['query' => ['user', $user->email]])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_4",
+      "old_fingerprint": "d374746e282fc39933337d3cc56b9bc8_4",
+      "code_extract": "$client->delete($url, ['query' => ['user', $user->email]]);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 17,
+      "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 17,
+        "end": 17,
+        "column": {
+          "start": 42,
+          "end": 54
+        }
+      },
+      "sink": {
+        "start": 17,
+        "end": 17,
+        "column": {
+          "start": 1,
+          "end": 57
+        },
+        "content": "$client->head($url, ['query' => ['user', $user->email]])"
+      },
+      "parent_line_number": 17,
+      "snippet": "$client->head($url, ['query' => ['user', $user->email]])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_5",
+      "old_fingerprint": "d374746e282fc39933337d3cc56b9bc8_5",
+      "code_extract": "$client->head($url, ['query' => ['user', $user->email]]);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 18,
+      "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 18,
+        "end": 18,
+        "column": {
+          "start": 45,
+          "end": 57
+        }
+      },
+      "sink": {
+        "start": 18,
+        "end": 18,
+        "column": {
+          "start": 1,
+          "end": 60
+        },
+        "content": "$client->options($url, ['query' => ['user', $user->email]])"
+      },
+      "parent_line_number": 18,
+      "snippet": "$client->options($url, ['query' => ['user', $user->email]])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_6",
+      "old_fingerprint": "d374746e282fc39933337d3cc56b9bc8_6",
+      "code_extract": "$client->options($url, ['query' => ['user', $user->email]]);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 19,
+      "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 19,
+        "end": 19,
+        "column": {
+          "start": 43,
+          "end": 55
+        }
+      },
+      "sink": {
+        "start": 19,
+        "end": 19,
+        "column": {
+          "start": 1,
+          "end": 58
+        },
+        "content": "$client->patch($url, ['query' => ['user', $user->email]])"
+      },
+      "parent_line_number": 19,
+      "snippet": "$client->patch($url, ['query' => ['user', $user->email]])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_7",
+      "old_fingerprint": "d374746e282fc39933337d3cc56b9bc8_7",
+      "code_extract": "$client->patch($url, ['query' => ['user', $user->email]]);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 20,
+      "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 20,
+        "end": 20,
+        "column": {
+          "start": 42,
+          "end": 54
+        }
+      },
+      "sink": {
+        "start": 20,
+        "end": 20,
+        "column": {
+          "start": 1,
+          "end": 57
+        },
+        "content": "$client->post($url, ['query' => ['user', $user->email]])"
+      },
+      "parent_line_number": 20,
+      "snippet": "$client->post($url, ['query' => ['user', $user->email]])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_8",
+      "old_fingerprint": "d374746e282fc39933337d3cc56b9bc8_8",
+      "code_extract": "$client->post($url, ['query' => ['user', $user->email]]);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 21,
+      "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 21,
+        "end": 21,
+        "column": {
+          "start": 41,
+          "end": 53
+        }
+      },
+      "sink": {
+        "start": 21,
+        "end": 21,
+        "column": {
+          "start": 1,
+          "end": 56
+        },
+        "content": "$client->put($url, ['query' => ['user', $user->email]])"
+      },
+      "parent_line_number": 21,
+      "snippet": "$client->put($url, ['query' => ['user', $user->email]])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_9",
+      "old_fingerprint": "d374746e282fc39933337d3cc56b9bc8_9",
+      "code_extract": "$client->put($url, ['query' => ['user', $user->email]]);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 22,
+      "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 22,
+        "end": 22,
+        "column": {
+          "start": 46,
+          "end": 58
+        }
+      },
+      "sink": {
+        "start": 22,
+        "end": 22,
+        "column": {
+          "start": 1,
+          "end": 61
+        },
+        "content": "$client->getAsync($url, ['query' => ['user', $user->email]])"
+      },
+      "parent_line_number": 22,
+      "snippet": "$client->getAsync($url, ['query' => ['user', $user->email]])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_10",
+      "old_fingerprint": "d374746e282fc39933337d3cc56b9bc8_10",
+      "code_extract": "$client->getAsync($url, ['query' => ['user', $user->email]]);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 23,
+      "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 23,
+        "end": 23,
+        "column": {
+          "start": 49,
+          "end": 61
+        }
+      },
+      "sink": {
+        "start": 23,
+        "end": 23,
+        "column": {
+          "start": 1,
+          "end": 64
+        },
+        "content": "$client->deleteAsync($url, ['query' => ['user', $user->email]])"
+      },
+      "parent_line_number": 23,
+      "snippet": "$client->deleteAsync($url, ['query' => ['user', $user->email]])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_11",
+      "old_fingerprint": "d374746e282fc39933337d3cc56b9bc8_11",
+      "code_extract": "$client->deleteAsync($url, ['query' => ['user', $user->email]]);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 24,
+      "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 24,
+        "end": 24,
+        "column": {
+          "start": 47,
+          "end": 59
+        }
+      },
+      "sink": {
+        "start": 24,
+        "end": 24,
+        "column": {
+          "start": 1,
+          "end": 62
+        },
+        "content": "$client->headAsync($url, ['query' => ['user', $user->email]])"
+      },
+      "parent_line_number": 24,
+      "snippet": "$client->headAsync($url, ['query' => ['user', $user->email]])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_12",
+      "old_fingerprint": "d374746e282fc39933337d3cc56b9bc8_12",
+      "code_extract": "$client->headAsync($url, ['query' => ['user', $user->email]]);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 25,
+      "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 25,
+        "end": 25,
+        "column": {
+          "start": 50,
+          "end": 62
+        }
+      },
+      "sink": {
+        "start": 25,
+        "end": 25,
+        "column": {
+          "start": 1,
+          "end": 65
+        },
+        "content": "$client->optionsAsync($url, ['query' => ['user', $user->email]])"
+      },
+      "parent_line_number": 25,
+      "snippet": "$client->optionsAsync($url, ['query' => ['user', $user->email]])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_13",
+      "old_fingerprint": "d374746e282fc39933337d3cc56b9bc8_13",
+      "code_extract": "$client->optionsAsync($url, ['query' => ['user', $user->email]]);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 26,
+      "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 26,
+        "end": 26,
+        "column": {
+          "start": 48,
+          "end": 60
+        }
+      },
+      "sink": {
+        "start": 26,
+        "end": 26,
+        "column": {
+          "start": 1,
+          "end": 63
+        },
+        "content": "$client->patchAsync($url, ['query' => ['user', $user->email]])"
+      },
+      "parent_line_number": 26,
+      "snippet": "$client->patchAsync($url, ['query' => ['user', $user->email]])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_14",
+      "old_fingerprint": "d374746e282fc39933337d3cc56b9bc8_14",
+      "code_extract": "$client->patchAsync($url, ['query' => ['user', $user->email]]);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 27,
+      "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 27,
+        "end": 27,
+        "column": {
+          "start": 47,
+          "end": 59
+        }
+      },
+      "sink": {
+        "start": 27,
+        "end": 27,
+        "column": {
+          "start": 1,
+          "end": 62
+        },
+        "content": "$client->postAsync($url, ['query' => ['user', $user->email]])"
+      },
+      "parent_line_number": 27,
+      "snippet": "$client->postAsync($url, ['query' => ['user', $user->email]])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_15",
+      "old_fingerprint": "d374746e282fc39933337d3cc56b9bc8_15",
+      "code_extract": "$client->postAsync($url, ['query' => ['user', $user->email]]);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 28,
+      "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 28,
+        "end": 28,
+        "column": {
+          "start": 46,
+          "end": 58
+        }
+      },
+      "sink": {
+        "start": 28,
+        "end": 28,
+        "column": {
+          "start": 1,
+          "end": 61
+        },
+        "content": "$client->putAsync($url, ['query' => ['user', $user->email]])"
+      },
+      "parent_line_number": 28,
+      "snippet": "$client->putAsync($url, ['query' => ['user', $user->email]])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_16",
+      "old_fingerprint": "d374746e282fc39933337d3cc56b9bc8_16",
+      "code_extract": "$client->putAsync($url, ['query' => ['user', $user->email]]);"
+    }
+  ]
+}"
+`;
+
+exports[`php_lang_http_url_using_sensitive_data bad_httplug 1`] = `
+"{
+  "high": [
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 6,
+      "full_filename": "/tmp/bearer-scan/bad_httplug.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 6,
+        "end": 6,
+        "column": {
+          "start": 13,
+          "end": 25
+        }
+      },
+      "sink": {
+        "start": 5,
+        "end": 7,
+        "column": {
+          "start": 19,
+          "end": 3
+        },
+        "content": "new QueryParam([\\n  'user' => $user->email,\\n])"
+      },
+      "parent_line_number": 5,
+      "snippet": "new QueryParam([\\n  'user' => $user->email,\\n])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_0",
+      "old_fingerprint": "daa7e97f34b9b5c75e5af6b965ffb2d0_0",
+      "code_extract": "$authentication = new QueryParam([\\n  'user' => $user->email,\\n]);"
+    }
+  ]
+}"
+`;
+
+exports[`php_lang_http_url_using_sensitive_data bad_laminas 1`] = `
+"{
+  "high": [
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 11,
+      "full_filename": "/tmp/bearer-scan/bad_laminas.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 11,
+        "end": 11,
+        "column": {
+          "start": 13,
+          "end": 25
+        }
+      },
+      "sink": {
+        "start": 10,
+        "end": 12,
+        "column": {
+          "start": 1,
+          "end": 3
+        },
+        "content": "$client->setParameterGet([\\n  \\"data\\" => $user->email\\n])"
+      },
+      "parent_line_number": 10,
+      "snippet": "$client->setParameterGet([\\n  \\"data\\" => $user->email\\n])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_0",
+      "old_fingerprint": "f15f8b090c0f718b7cee294e124b40c0_0",
+      "code_extract": "$client->setParameterGet([\\n  \\"data\\" => $user->email\\n]);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 16,
+      "full_filename": "/tmp/bearer-scan/bad_laminas.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 16,
+        "end": 16,
+        "column": {
+          "start": 18,
+          "end": 30
+        }
+      },
+      "sink": {
+        "start": 16,
+        "end": 16,
+        "column": {
+          "start": 1,
+          "end": 31
+        },
+        "content": "$query->set(\\"x\\", $user->email)"
+      },
+      "parent_line_number": 16,
+      "snippet": "$query->set(\\"x\\", $user->email)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_1",
+      "old_fingerprint": "f15f8b090c0f718b7cee294e124b40c0_1",
+      "code_extract": "$query->set(\\"x\\", $user->email);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 17,
+      "full_filename": "/tmp/bearer-scan/bad_laminas.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 17,
+        "end": 17,
+        "column": {
+          "start": 24,
+          "end": 36
+        }
+      },
+      "sink": {
+        "start": 17,
+        "end": 17,
+        "column": {
+          "start": 1,
+          "end": 37
+        },
+        "content": "$query->offsetSet(\\"y\\", $user->email)"
+      },
+      "parent_line_number": 17,
+      "snippet": "$query->offsetSet(\\"y\\", $user->email)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_2",
+      "old_fingerprint": "f15f8b090c0f718b7cee294e124b40c0_2",
+      "code_extract": "$query->offsetSet(\\"y\\", $user->email);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 18,
+      "full_filename": "/tmp/bearer-scan/bad_laminas.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 18,
+        "end": 18,
+        "column": {
+          "start": 13,
+          "end": 25
+        }
+      },
+      "sink": {
+        "start": 18,
+        "end": 18,
+        "column": {
+          "start": 1,
+          "end": 25
+        },
+        "content": "$query->z = $user->email"
+      },
+      "parent_line_number": 18,
+      "snippet": "$query->z = $user->email",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_3",
+      "old_fingerprint": "f15f8b090c0f718b7cee294e124b40c0_3",
+      "code_extract": "$query->z = $user->email;"
+    }
+  ]
+}"
+`;
+
+exports[`php_lang_http_url_using_sensitive_data bad_laravel 1`] = `
+"{
+  "high": [
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 5,
+      "full_filename": "/tmp/bearer-scan/bad_laravel.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 5,
+        "end": 5,
+        "column": {
+          "start": 18,
+          "end": 30
+        }
+      },
+      "sink": {
+        "start": 5,
+        "end": 5,
+        "column": {
+          "start": 1,
+          "end": 31
+        },
+        "content": "Http::head($url, $user->email)"
+      },
+      "parent_line_number": 5,
+      "snippet": "Http::head($url, $user->email)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_0",
+      "old_fingerprint": "b5ac76f9bc5f01f310a25352e384fa3a_0",
+      "code_extract": "Http::head($url, $user->email);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 8,
+      "full_filename": "/tmp/bearer-scan/bad_laravel.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 8,
+        "end": 8,
+        "column": {
+          "start": 13,
+          "end": 25
+        }
+      },
+      "sink": {
+        "start": 7,
+        "end": 10,
+        "column": {
+          "start": 1,
+          "end": 3
+        },
+        "content": "Http::withQueryParameters([\\n  'user' => $user->email,\\n  'page' => 1,\\n])"
+      },
+      "parent_line_number": 7,
+      "snippet": "Http::withQueryParameters([\\n  'user' => $user->email,\\n  'page' => 1,\\n])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_1",
+      "old_fingerprint": "b5ac76f9bc5f01f310a25352e384fa3a_1",
+      "code_extract": "Http::withQueryParameters([\\n  'user' => $user->email,\\n  'page' => 1,\\n])->get($url);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 13,
+      "full_filename": "/tmp/bearer-scan/bad_laravel.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 13,
+        "end": 13,
+        "column": {
+          "start": 13,
+          "end": 25
+        }
+      },
+      "sink": {
+        "start": 12,
+        "end": 15,
+        "column": {
+          "start": 1,
+          "end": 3
+        },
+        "content": "Http::retry(3, 100)->withQueryParameters([\\n  'user' => $user->email,\\n  'page' => 1,\\n])"
+      },
+      "parent_line_number": 12,
+      "snippet": "Http::retry(3, 100)->withQueryParameters([\\n  'user' => $user->email,\\n  'page' => 1,\\n])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_2",
+      "old_fingerprint": "b5ac76f9bc5f01f310a25352e384fa3a_2",
+      "code_extract": "Http::retry(3, 100)->withQueryParameters([\\n  'user' => $user->email,\\n  'page' => 1,\\n])->get($url);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 17,
+      "full_filename": "/tmp/bearer-scan/bad_laravel.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 17,
+        "end": 17,
+        "column": {
+          "start": 32,
+          "end": 44
+        }
+      },
+      "sink": {
+        "start": 17,
+        "end": 17,
+        "column": {
+          "start": 1,
+          "end": 45
+        },
+        "content": "Http::retry(3, 100)->get($url, $user->email)"
+      },
+      "parent_line_number": 17,
+      "snippet": "Http::retry(3, 100)->get($url, $user->email)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_3",
+      "old_fingerprint": "b5ac76f9bc5f01f310a25352e384fa3a_3",
+      "code_extract": "Http::retry(3, 100)->get($url, $user->email);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 19,
+      "full_filename": "/tmp/bearer-scan/bad_laravel.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 19,
+        "end": 19,
+        "column": {
+          "start": 37,
+          "end": 49
+        }
+      },
+      "sink": {
+        "start": 19,
+        "end": 19,
+        "column": {
+          "start": 1,
+          "end": 51
+        },
+        "content": "Http::send(\\"GET\\", $url, [\\"query\\" => $user->email])"
+      },
+      "parent_line_number": 19,
+      "snippet": "Http::send(\\"GET\\", $url, [\\"query\\" => $user->email])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_4",
+      "old_fingerprint": "b5ac76f9bc5f01f310a25352e384fa3a_4",
+      "code_extract": "Http::send(\\"GET\\", $url, [\\"query\\" => $user->email]);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 20,
+      "full_filename": "/tmp/bearer-scan/bad_laravel.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 20,
+        "end": 20,
+        "column": {
+          "start": 52,
+          "end": 64
+        }
+      },
+      "sink": {
+        "start": 20,
+        "end": 20,
+        "column": {
+          "start": 1,
+          "end": 66
+        },
+        "content": "Http::retry(3, 100)->send(\\"GET\\", $url, [\\"query\\" => $user->email])"
+      },
+      "parent_line_number": 20,
+      "snippet": "Http::retry(3, 100)->send(\\"GET\\", $url, [\\"query\\" => $user->email])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_5",
+      "old_fingerprint": "b5ac76f9bc5f01f310a25352e384fa3a_5",
+      "code_extract": "Http::retry(3, 100)->send(\\"GET\\", $url, [\\"query\\" => $user->email]);"
+    }
+  ]
+}"
+`;
+
+exports[`php_lang_http_url_using_sensitive_data bad_pecl_http 1`] = `
+"{
+  "high": [
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 6,
+      "full_filename": "/tmp/bearer-scan/bad_pecl_http.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 6,
+        "end": 6,
+        "column": {
+          "start": 16,
+          "end": 28
+        }
+      },
+      "sink": {
+        "start": 6,
+        "end": 6,
+        "column": {
+          "start": 1,
+          "end": 29
+        },
+        "content": "$req->setQuery($user->email)"
+      },
+      "parent_line_number": 6,
+      "snippet": "$req->setQuery($user->email)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_0",
+      "old_fingerprint": "511c5a749d46f1efa34357c5d871e044_0",
+      "code_extract": "$req->setQuery($user->email);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 7,
+      "full_filename": "/tmp/bearer-scan/bad_pecl_http.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 7,
+        "end": 7,
+        "column": {
+          "start": 16,
+          "end": 28
+        }
+      },
+      "sink": {
+        "start": 7,
+        "end": 7,
+        "column": {
+          "start": 1,
+          "end": 29
+        },
+        "content": "$req->addQuery($user->email)"
+      },
+      "parent_line_number": 7,
+      "snippet": "$req->addQuery($user->email)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_1",
+      "old_fingerprint": "511c5a749d46f1efa34357c5d871e044_1",
+      "code_extract": "$req->addQuery($user->email);"
+    }
+  ]
+}"
+`;
+
+exports[`php_lang_http_url_using_sensitive_data bad_requests 1`] = `
+"{
+  "high": [
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 5,
+      "full_filename": "/tmp/bearer-scan/bad_requests.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 5,
+        "end": 5,
+        "column": {
+          "start": 31,
+          "end": 43
+        }
+      },
+      "sink": {
+        "start": 5,
+        "end": 5,
+        "column": {
+          "start": 1,
+          "end": 44
+        },
+        "content": "Requests::get($url, $headers, $user->email)"
+      },
+      "parent_line_number": 5,
+      "snippet": "Requests::get($url, $headers, $user->email)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_0",
+      "old_fingerprint": "ecb9eae63559321a6ca771baab2c671a_0",
+      "code_extract": "Requests::get($url, $headers, $user->email);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 6,
+      "full_filename": "/tmp/bearer-scan/bad_requests.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 6,
+        "end": 6,
+        "column": {
+          "start": 32,
+          "end": 44
+        }
+      },
+      "sink": {
+        "start": 6,
+        "end": 6,
+        "column": {
+          "start": 1,
+          "end": 45
+        },
+        "content": "Requests::head($url, $headers, $user->email)"
+      },
+      "parent_line_number": 6,
+      "snippet": "Requests::head($url, $headers, $user->email)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_1",
+      "old_fingerprint": "ecb9eae63559321a6ca771baab2c671a_1",
+      "code_extract": "Requests::head($url, $headers, $user->email);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 7,
+      "full_filename": "/tmp/bearer-scan/bad_requests.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 7,
+        "end": 7,
+        "column": {
+          "start": 34,
+          "end": 46
+        }
+      },
+      "sink": {
+        "start": 7,
+        "end": 7,
+        "column": {
+          "start": 1,
+          "end": 47
+        },
+        "content": "Requests::delete($url, $headers, $user->email)"
+      },
+      "parent_line_number": 7,
+      "snippet": "Requests::delete($url, $headers, $user->email)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_2",
+      "old_fingerprint": "ecb9eae63559321a6ca771baab2c671a_2",
+      "code_extract": "Requests::delete($url, $headers, $user->email);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 8,
+      "full_filename": "/tmp/bearer-scan/bad_requests.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 8,
+        "end": 8,
+        "column": {
+          "start": 35,
+          "end": 47
+        }
+      },
+      "sink": {
+        "start": 8,
+        "end": 8,
+        "column": {
+          "start": 1,
+          "end": 48
+        },
+        "content": "Requests::request($url, $headers, $user->email)"
+      },
+      "parent_line_number": 8,
+      "snippet": "Requests::request($url, $headers, $user->email)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_3",
+      "old_fingerprint": "ecb9eae63559321a6ca771baab2c671a_3",
+      "code_extract": "Requests::request($url, $headers, $user->email);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 9,
+      "full_filename": "/tmp/bearer-scan/bad_requests.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 9,
+        "end": 9,
+        "column": {
+          "start": 35,
+          "end": 47
+        }
+      },
+      "sink": {
+        "start": 9,
+        "end": 9,
+        "column": {
+          "start": 1,
+          "end": 63
+        },
+        "content": "Requests::request($url, $headers, $user->email, Requests::GET)"
+      },
+      "parent_line_number": 9,
+      "snippet": "Requests::request($url, $headers, $user->email, Requests::GET)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_4",
+      "old_fingerprint": "ecb9eae63559321a6ca771baab2c671a_4",
+      "code_extract": "Requests::request($url, $headers, $user->email, Requests::GET);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 12,
+      "full_filename": "/tmp/bearer-scan/bad_requests.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 12,
+        "end": 12,
+        "column": {
+          "start": 61,
+          "end": 73
+        }
+      },
+      "sink": {
+        "start": 11,
+        "end": 15,
+        "column": {
+          "start": 1,
+          "end": 7
+        },
+        "content": "WpOrg\\\\Requests\\\\Requests::request_multiple([\\n  \\"one\\" => [\\"headers\\" => $headers, \\"url\\" => $url, \\"data\\" => $user->email],\\n  \\"one\\" => [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::GET, \\"data\\" => $user->email],\\n  \\"two\\" => [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::HEAD, \\"data\\" => $ok]\\n], [])"
+      },
+      "parent_line_number": 11,
+      "snippet": "WpOrg\\\\Requests\\\\Requests::request_multiple([\\n  \\"one\\" => [\\"headers\\" => $headers, \\"url\\" => $url, \\"data\\" => $user->email],\\n  \\"one\\" => [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::GET, \\"data\\" => $user->email],\\n  \\"two\\" => [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::HEAD, \\"data\\" => $ok]\\n], [])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_5",
+      "old_fingerprint": "ecb9eae63559321a6ca771baab2c671a_5",
+      "code_extract": "WpOrg\\\\Requests\\\\Requests::request_multiple([\\n  \\"one\\" => [\\"headers\\" => $headers, \\"url\\" => $url, \\"data\\" => $user->email],\\n  \\"one\\" => [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::GET, \\"data\\" => $user->email],\\n  \\"two\\" => [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::HEAD, \\"data\\" => $ok]\\n], []);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 13,
+      "full_filename": "/tmp/bearer-scan/bad_requests.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 13,
+        "end": 13,
+        "column": {
+          "start": 86,
+          "end": 98
+        }
+      },
+      "sink": {
+        "start": 11,
+        "end": 15,
+        "column": {
+          "start": 1,
+          "end": 7
+        },
+        "content": "WpOrg\\\\Requests\\\\Requests::request_multiple([\\n  \\"one\\" => [\\"headers\\" => $headers, \\"url\\" => $url, \\"data\\" => $user->email],\\n  \\"one\\" => [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::GET, \\"data\\" => $user->email],\\n  \\"two\\" => [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::HEAD, \\"data\\" => $ok]\\n], [])"
+      },
+      "parent_line_number": 11,
+      "snippet": "WpOrg\\\\Requests\\\\Requests::request_multiple([\\n  \\"one\\" => [\\"headers\\" => $headers, \\"url\\" => $url, \\"data\\" => $user->email],\\n  \\"one\\" => [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::GET, \\"data\\" => $user->email],\\n  \\"two\\" => [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::HEAD, \\"data\\" => $ok]\\n], [])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_6",
+      "old_fingerprint": "ecb9eae63559321a6ca771baab2c671a_6",
+      "code_extract": "WpOrg\\\\Requests\\\\Requests::request_multiple([\\n  \\"one\\" => [\\"headers\\" => $headers, \\"url\\" => $url, \\"data\\" => $user->email],\\n  \\"one\\" => [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::GET, \\"data\\" => $user->email],\\n  \\"two\\" => [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::HEAD, \\"data\\" => $ok]\\n], []);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 17,
+      "full_filename": "/tmp/bearer-scan/bad_requests.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 17,
+        "end": 17,
+        "column": {
+          "start": 62,
+          "end": 74
+        }
+      },
+      "sink": {
+        "start": 17,
+        "end": 17,
+        "column": {
+          "start": 12,
+          "end": 75
+        },
+        "content": "new WpOrg\\\\Requests\\\\Session($user_input, $headers, $user->email)"
+      },
+      "parent_line_number": 17,
+      "snippet": "new WpOrg\\\\Requests\\\\Session($user_input, $headers, $user->email)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_7",
+      "old_fingerprint": "ecb9eae63559321a6ca771baab2c671a_7",
+      "code_extract": "$session = new WpOrg\\\\Requests\\\\Session($user_input, $headers, $user->email);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 19,
+      "full_filename": "/tmp/bearer-scan/bad_requests.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 19,
+        "end": 19,
+        "column": {
+          "start": 42,
+          "end": 54
+        }
+      },
+      "sink": {
+        "start": 19,
+        "end": 19,
+        "column": {
+          "start": 1,
+          "end": 55
+        },
+        "content": "$session->request($user_input, $headers, $user->email)"
+      },
+      "parent_line_number": 19,
+      "snippet": "$session->request($user_input, $headers, $user->email)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_8",
+      "old_fingerprint": "ecb9eae63559321a6ca771baab2c671a_8",
+      "code_extract": "$session->request($user_input, $headers, $user->email);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 20,
+      "full_filename": "/tmp/bearer-scan/bad_requests.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 20,
+        "end": 20,
+        "column": {
+          "start": 42,
+          "end": 54
+        }
+      },
+      "sink": {
+        "start": 20,
+        "end": 20,
+        "column": {
+          "start": 1,
+          "end": 71
+        },
+        "content": "$session->request($user_input, $headers, $user->email, Requests::HEAD)"
+      },
+      "parent_line_number": 20,
+      "snippet": "$session->request($user_input, $headers, $user->email, Requests::HEAD)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_9",
+      "old_fingerprint": "ecb9eae63559321a6ca771baab2c671a_9",
+      "code_extract": "$session->request($user_input, $headers, $user->email, Requests::HEAD);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 23,
+      "full_filename": "/tmp/bearer-scan/bad_requests.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 23,
+        "end": 23,
+        "column": {
+          "start": 52,
+          "end": 64
+        }
+      },
+      "sink": {
+        "start": 22,
+        "end": 26,
+        "column": {
+          "start": 1,
+          "end": 7
+        },
+        "content": "$session->request_multiple([\\n  [\\"headers\\" => $headers, \\"url\\" => $url, \\"data\\" => $user->email],\\n  [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::GET, \\"data\\" => $user->email],\\n  [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::HEAD, \\"data\\" => $ok]\\n], [])"
+      },
+      "parent_line_number": 22,
+      "snippet": "$session->request_multiple([\\n  [\\"headers\\" => $headers, \\"url\\" => $url, \\"data\\" => $user->email],\\n  [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::GET, \\"data\\" => $user->email],\\n  [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::HEAD, \\"data\\" => $ok]\\n], [])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_10",
+      "old_fingerprint": "ecb9eae63559321a6ca771baab2c671a_10",
+      "code_extract": "$session->request_multiple([\\n  [\\"headers\\" => $headers, \\"url\\" => $url, \\"data\\" => $user->email],\\n  [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::GET, \\"data\\" => $user->email],\\n  [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::HEAD, \\"data\\" => $ok]\\n], []);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 24,
+      "full_filename": "/tmp/bearer-scan/bad_requests.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 24,
+        "end": 24,
+        "column": {
+          "start": 77,
+          "end": 89
+        }
+      },
+      "sink": {
+        "start": 22,
+        "end": 26,
+        "column": {
+          "start": 1,
+          "end": 7
+        },
+        "content": "$session->request_multiple([\\n  [\\"headers\\" => $headers, \\"url\\" => $url, \\"data\\" => $user->email],\\n  [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::GET, \\"data\\" => $user->email],\\n  [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::HEAD, \\"data\\" => $ok]\\n], [])"
+      },
+      "parent_line_number": 22,
+      "snippet": "$session->request_multiple([\\n  [\\"headers\\" => $headers, \\"url\\" => $url, \\"data\\" => $user->email],\\n  [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::GET, \\"data\\" => $user->email],\\n  [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::HEAD, \\"data\\" => $ok]\\n], [])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_11",
+      "old_fingerprint": "ecb9eae63559321a6ca771baab2c671a_11",
+      "code_extract": "$session->request_multiple([\\n  [\\"headers\\" => $headers, \\"url\\" => $url, \\"data\\" => $user->email],\\n  [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::GET, \\"data\\" => $user->email],\\n  [\\"headers\\" => $headers, \\"url\\" => $url, \\"type\\" => Requests::HEAD, \\"data\\" => $ok]\\n], []);"
+    }
+  ]
+}"
+`;
+
+exports[`php_lang_http_url_using_sensitive_data bad_sendgrid 1`] = `
+"{
+  "high": [
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 5,
+      "full_filename": "/tmp/bearer-scan/bad_sendgrid.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 5,
+        "end": 5,
+        "column": {
+          "start": 21,
+          "end": 33
+        }
+      },
+      "sink": {
+        "start": 5,
+        "end": 5,
+        "column": {
+          "start": 1,
+          "end": 44
+        },
+        "content": "$client->get($body, $user->email, $headers)"
+      },
+      "parent_line_number": 5,
+      "snippet": "$client->get($body, $user->email, $headers)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_0",
+      "old_fingerprint": "2648965079e04d30778f8607e88f545b_0",
+      "code_extract": "$client->get($body, $user->email, $headers);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 6,
+      "full_filename": "/tmp/bearer-scan/bad_sendgrid.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 6,
+        "end": 6,
+        "column": {
+          "start": 22,
+          "end": 34
+        }
+      },
+      "sink": {
+        "start": 6,
+        "end": 6,
+        "column": {
+          "start": 1,
+          "end": 45
+        },
+        "content": "$client->post($body, $user->email, $headers)"
+      },
+      "parent_line_number": 6,
+      "snippet": "$client->post($body, $user->email, $headers)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_1",
+      "old_fingerprint": "2648965079e04d30778f8607e88f545b_1",
+      "code_extract": "$client->post($body, $user->email, $headers);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 7,
+      "full_filename": "/tmp/bearer-scan/bad_sendgrid.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 7,
+        "end": 7,
+        "column": {
+          "start": 23,
+          "end": 35
+        }
+      },
+      "sink": {
+        "start": 7,
+        "end": 7,
+        "column": {
+          "start": 1,
+          "end": 46
+        },
+        "content": "$client->patch($body, $user->email, $headers)"
+      },
+      "parent_line_number": 7,
+      "snippet": "$client->patch($body, $user->email, $headers)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_2",
+      "old_fingerprint": "2648965079e04d30778f8607e88f545b_2",
+      "code_extract": "$client->patch($body, $user->email, $headers);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 8,
+      "full_filename": "/tmp/bearer-scan/bad_sendgrid.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 8,
+        "end": 8,
+        "column": {
+          "start": 21,
+          "end": 33
+        }
+      },
+      "sink": {
+        "start": 8,
+        "end": 8,
+        "column": {
+          "start": 1,
+          "end": 44
+        },
+        "content": "$client->put($body, $user->email, $headers)"
+      },
+      "parent_line_number": 8,
+      "snippet": "$client->put($body, $user->email, $headers)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_3",
+      "old_fingerprint": "2648965079e04d30778f8607e88f545b_3",
+      "code_extract": "$client->put($body, $user->email, $headers);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 9,
+      "full_filename": "/tmp/bearer-scan/bad_sendgrid.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 9,
+        "end": 9,
+        "column": {
+          "start": 24,
+          "end": 36
+        }
+      },
+      "sink": {
+        "start": 9,
+        "end": 9,
+        "column": {
+          "start": 1,
+          "end": 47
+        },
+        "content": "$client->delete($body, $user->email, $headers)"
+      },
+      "parent_line_number": 9,
+      "snippet": "$client->delete($body, $user->email, $headers)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_4",
+      "old_fingerprint": "2648965079e04d30778f8607e88f545b_4",
+      "code_extract": "$client->delete($body, $user->email, $headers);"
+    }
+  ]
+}"
+`;
+
+exports[`php_lang_http_url_using_sensitive_data bad_symfony 1`] = `
+"{
+  "high": [
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 14,
+      "full_filename": "/tmp/bearer-scan/bad_symfony.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 14,
+        "end": 14,
+        "column": {
+          "start": 31,
+          "end": 43
+        }
+      },
+      "sink": {
+        "start": 13,
+        "end": 16,
+        "column": {
+          "start": 7,
+          "end": 9
+        },
+        "content": "$this->client->request('GET', $url, [\\n        'query' => [\\"user\\" => $user->email],\\n        'headers' => []\\n      ])"
+      },
+      "parent_line_number": 13,
+      "snippet": "$this->client->request('GET', $url, [\\n        'query' => [\\"user\\" => $user->email],\\n        'headers' => []\\n      ])",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_0",
+      "old_fingerprint": "09670bab9a1ddd9c397695e796d2b56c_0",
+      "code_extract": "      $this->client->request('GET', $url, [\\n        'query' => [\\"user\\" => $user->email],\\n        'headers' => []\\n      ]);"
+    }
+  ]
+}"
+`;
+
+exports[`php_lang_http_url_using_sensitive_data bad_unirest 1`] = `
+"{
+  "high": [
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 3,
+      "full_filename": "/tmp/bearer-scan/bad_unirest.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 3,
+        "end": 3,
+        "column": {
+          "start": 38,
+          "end": 50
+        }
+      },
+      "sink": {
+        "start": 3,
+        "end": 3,
+        "column": {
+          "start": 1,
+          "end": 62
+        },
+        "content": "Unirest\\\\Request::get($url, $headers, $user->email, $username)"
+      },
+      "parent_line_number": 3,
+      "snippet": "Unirest\\\\Request::get($url, $headers, $user->email, $username)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_0",
+      "old_fingerprint": "0fe68a9399341aaf8173cd5ed6111a60_0",
+      "code_extract": "Unirest\\\\Request::get($url, $headers, $user->email, $username);"
+    },
+    {
+      "cwe_ids": [
+        "598"
+      ],
+      "id": "php_lang_http_url_using_sensitive_data",
+      "title": "Sensitive data detected in HTTP URL.",
+      "description": "## Description\\nSensitive data should never be sent as part of the URL in HTTP requests.\\n\\n## Remediations\\nAvoid sending sensitive data in a URL as they can be seen by intermediaries,\\nor could be logged by applications:\\n\\n❌ Avoid adding sensitive data in paths:\\n\`\`\`php\\n$curl = curl_init(\\"https://example.com/users/{$user->email}\\");\\n\`\`\`\\n\\n❌ Avoid adding sensitive data in query parameters:\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n✅ Use an HTTP POST body if you need to send sensitive data:\\n\\n\`\`\`php\\n$query = http_build_query(['email' => $user->email]);\\n$curl = curl_init(\\"https://example.com/users/list\\");\\ncurl_setopt($curl, CURLOPT_POSTFIELDS, $query);\\n\`\`\`\\n\\n✅ Or avoid sending sending sensitive data altogether:\\n\\n\`\`\`php\\n$query = http_build_query(['uuid' => $user->uuid]);\\n$curl = curl_init(\\"https://example.com/users?$query\\");\\n\`\`\`\\n\\n<!--\\n## Resources\\n- [OWASP information exposure through URL query strings](https://owasp.org/www-community/vulnerabilities/Information_exposure_through_query_strings_in_url)\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_sensitive_data",
+      "line_number": 5,
+      "full_filename": "/tmp/bearer-scan/bad_unirest.php",
+      "filename": ".",
+      "data_type": {
+        "category_uuid": "cef587dd-76db-430b-9e18-7b031e1a193b",
+        "name": "Email Address"
+      },
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 5,
+        "end": 5,
+        "column": {
+          "start": 46,
+          "end": 58
+        }
+      },
+      "sink": {
+        "start": 5,
+        "end": 5,
+        "column": {
+          "start": 1,
+          "end": 70
+        },
+        "content": "Unirest\\\\Request::send(\\"GET\\", $url, $headers, $user->email, $username)"
+      },
+      "parent_line_number": 5,
+      "snippet": "Unirest\\\\Request::send(\\"GET\\", $url, $headers, $user->email, $username)",
+      "fingerprint": "cbf53ab43d4ff1726377f0b489bf3b18_1",
+      "old_fingerprint": "0fe68a9399341aaf8173cd5ed6111a60_1",
+      "code_extract": "Unirest\\\\Request::send(\\"GET\\", $url, $headers, $user->email, $username);"
+    }
+  ]
+}"
+`;
+
+exports[`php_lang_http_url_using_sensitive_data ok 1`] = `"{}"`;
+
+exports[`php_lang_http_url_using_sensitive_data ok_guzzle 1`] = `"{}"`;
+
+exports[`php_lang_http_url_using_sensitive_data ok_httplug 1`] = `"{}"`;
+
+exports[`php_lang_http_url_using_sensitive_data ok_laminas 1`] = `"{}"`;
+
+exports[`php_lang_http_url_using_sensitive_data ok_laravel 1`] = `"{}"`;
+
+exports[`php_lang_http_url_using_sensitive_data ok_pecl_http 1`] = `"{}"`;
+
+exports[`php_lang_http_url_using_sensitive_data ok_requests 1`] = `"{}"`;
+
+exports[`php_lang_http_url_using_sensitive_data ok_sendgrid 1`] = `"{}"`;
+
+exports[`php_lang_http_url_using_sensitive_data ok_symfony 1`] = `"{}"`;
+
+exports[`php_lang_http_url_using_sensitive_data ok_unirest 1`] = `"{}"`;
diff --git a/tests/php/lang/http_url_using_sensitive_data/test.js b/tests/php/lang/http_url_using_sensitive_data/test.js
new file mode 100644
index 000000000..3e7a1d93c
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/test.js
@@ -0,0 +1,106 @@
+const { createInvoker, getEnvironment } = require("../../../helper.js")
+const { ruleId, ruleFile, testBase } = getEnvironment(__dirname)
+
+describe(ruleId, () => {
+  const invoke = createInvoker(ruleId, ruleFile, testBase)
+
+  test("bad_guzzle", () => {
+    const testCase = "bad_guzzle.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("bad_httplug", () => {
+    const testCase = "bad_httplug.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("bad_laminas", () => {
+    const testCase = "bad_laminas.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("bad_laravel", () => {
+    const testCase = "bad_laravel.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("bad_pecl_http", () => {
+    const testCase = "bad_pecl_http.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("bad_requests", () => {
+    const testCase = "bad_requests.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("bad_sendgrid", () => {
+    const testCase = "bad_sendgrid.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("bad_symfony", () => {
+    const testCase = "bad_symfony.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("bad_unirest", () => {
+    const testCase = "bad_unirest.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("bad", () => {
+    const testCase = "bad.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("ok_guzzle", () => {
+    const testCase = "ok_guzzle.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("ok_httplug", () => {
+    const testCase = "ok_httplug.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("ok_laminas", () => {
+    const testCase = "ok_laminas.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("ok_laravel", () => {
+    const testCase = "ok_laravel.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("ok_pecl_http", () => {
+    const testCase = "ok_pecl_http.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("ok_requests", () => {
+    const testCase = "ok_requests.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("ok_sendgrid", () => {
+    const testCase = "ok_sendgrid.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("ok_symfony", () => {
+    const testCase = "ok_symfony.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("ok_unirest", () => {
+    const testCase = "ok_unirest.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+
+  test("ok", () => {
+    const testCase = "ok.php"
+    expect(invoke(testCase)).toMatchSnapshot()
+  })
+})
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/bad.php b/tests/php/lang/http_url_using_sensitive_data/testdata/bad.php
new file mode 100644
index 000000000..98ec739f2
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/bad.php
@@ -0,0 +1,3 @@
+<?php
+
+$curl = curl_init("http://example.com/{$user->email}");
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/bad_guzzle.php b/tests/php/lang/http_url_using_sensitive_data/testdata/bad_guzzle.php
new file mode 100644
index 000000000..f3b11e472
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/bad_guzzle.php
@@ -0,0 +1,28 @@
+<?php
+
+use GuzzleHttp\Client;
+
+$client = new Client([
+  'timeout'  => 2.0,
+]);
+
+$url = "http://example.com";
+
+$response = $client->request("GET", $url, ['query' => ['user', $user->email]]);
+$client->send($request, ['query' => ['user', $user->email]]);
+$client->sendAsync($request, ['query' => ['user', $user->email]]);
+
+$client->get($url, ['query' => ['user', $user->email]]);
+$client->delete($url, ['query' => ['user', $user->email]]);
+$client->head($url, ['query' => ['user', $user->email]]);
+$client->options($url, ['query' => ['user', $user->email]]);
+$client->patch($url, ['query' => ['user', $user->email]]);
+$client->post($url, ['query' => ['user', $user->email]]);
+$client->put($url, ['query' => ['user', $user->email]]);
+$client->getAsync($url, ['query' => ['user', $user->email]]);
+$client->deleteAsync($url, ['query' => ['user', $user->email]]);
+$client->headAsync($url, ['query' => ['user', $user->email]]);
+$client->optionsAsync($url, ['query' => ['user', $user->email]]);
+$client->patchAsync($url, ['query' => ['user', $user->email]]);
+$client->postAsync($url, ['query' => ['user', $user->email]]);
+$client->putAsync($url, ['query' => ['user', $user->email]]);
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/bad_httplug.php b/tests/php/lang/http_url_using_sensitive_data/testdata/bad_httplug.php
new file mode 100644
index 000000000..475c51bfe
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/bad_httplug.php
@@ -0,0 +1,7 @@
+<?php
+
+use Http\Message\Authentication\QueryParam;
+
+$authentication = new QueryParam([
+  'user' => $user->email,
+]);
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/bad_laminas.php b/tests/php/lang/http_url_using_sensitive_data/testdata/bad_laminas.php
new file mode 100644
index 000000000..5b53b7a9e
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/bad_laminas.php
@@ -0,0 +1,18 @@
+<?php
+
+use Laminas\Http\Client;
+
+$client = new Client("http://example.com", [
+  'maxredirects' => 0,
+  'timeout'      => 30,
+]);
+
+$client->setParameterGet([
+  "data" => $user->email
+]);
+
+$request = new Laminas\Http\Request();
+$query = $request->getQuery();
+$query->set("x", $user->email);
+$query->offsetSet("y", $user->email);
+$query->z = $user->email;
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/bad_laravel.php b/tests/php/lang/http_url_using_sensitive_data/testdata/bad_laravel.php
new file mode 100644
index 000000000..41ae685ab
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/bad_laravel.php
@@ -0,0 +1,20 @@
+<?php
+
+use Illuminate\Support\Facades\Http;
+
+Http::head($url, $user->email);
+
+Http::withQueryParameters([
+  'user' => $user->email,
+  'page' => 1,
+])->get($url);
+
+Http::retry(3, 100)->withQueryParameters([
+  'user' => $user->email,
+  'page' => 1,
+])->get($url);
+
+Http::retry(3, 100)->get($url, $user->email);
+
+Http::send("GET", $url, ["query" => $user->email]);
+Http::retry(3, 100)->send("GET", $url, ["query" => $user->email]);
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/bad_pecl_http.php b/tests/php/lang/http_url_using_sensitive_data/testdata/bad_pecl_http.php
new file mode 100644
index 000000000..6b9ca7dd7
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/bad_pecl_http.php
@@ -0,0 +1,7 @@
+<?php
+
+use http\Client\Request;
+
+$req = new Request("GET", $url);
+$req->setQuery($user->email);
+$req->addQuery($user->email);
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/bad_requests.php b/tests/php/lang/http_url_using_sensitive_data/testdata/bad_requests.php
new file mode 100644
index 000000000..324096256
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/bad_requests.php
@@ -0,0 +1,26 @@
+<?php
+
+use WpOrg\Requests\Requests;
+
+Requests::get($url, $headers, $user->email);
+Requests::head($url, $headers, $user->email);
+Requests::delete($url, $headers, $user->email);
+Requests::request($url, $headers, $user->email);
+Requests::request($url, $headers, $user->email, Requests::GET);
+
+WpOrg\Requests\Requests::request_multiple([
+  "one" => ["headers" => $headers, "url" => $url, "data" => $user->email],
+  "one" => ["headers" => $headers, "url" => $url, "type" => Requests::GET, "data" => $user->email],
+  "two" => ["headers" => $headers, "url" => $url, "type" => Requests::HEAD, "data" => $ok]
+], []);
+
+$session = new WpOrg\Requests\Session($user_input, $headers, $user->email);
+
+$session->request($user_input, $headers, $user->email);
+$session->request($user_input, $headers, $user->email, Requests::HEAD);
+
+$session->request_multiple([
+  ["headers" => $headers, "url" => $url, "data" => $user->email],
+  ["headers" => $headers, "url" => $url, "type" => Requests::GET, "data" => $user->email],
+  ["headers" => $headers, "url" => $url, "type" => Requests::HEAD, "data" => $ok]
+], []);
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/bad_sendgrid.php b/tests/php/lang/http_url_using_sensitive_data/testdata/bad_sendgrid.php
new file mode 100644
index 000000000..dafd70793
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/bad_sendgrid.php
@@ -0,0 +1,9 @@
+<?php
+
+$client = new SendGrid\Client($url);
+
+$client->get($body, $user->email, $headers);
+$client->post($body, $user->email, $headers);
+$client->patch($body, $user->email, $headers);
+$client->put($body, $user->email, $headers);
+$client->delete($body, $user->email, $headers);
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/bad_symfony.php b/tests/php/lang/http_url_using_sensitive_data/testdata/bad_symfony.php
new file mode 100644
index 000000000..beeecb195
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/bad_symfony.php
@@ -0,0 +1,18 @@
+<?php
+
+use Symfony\Contracts\HttpClient\HttpClientInterface;
+
+class SymfonyDocs
+{
+    public function __construct(
+      private HttpClientInterface $client,
+    ) {
+    }
+
+    public function fetchSomething(): array {
+      $this->client->request('GET', $url, [
+        'query' => ["user" => $user->email],
+        'headers' => []
+      ]);
+    }
+}
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/bad_unirest.php b/tests/php/lang/http_url_using_sensitive_data/testdata/bad_unirest.php
new file mode 100644
index 000000000..23a79869f
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/bad_unirest.php
@@ -0,0 +1,5 @@
+<?php
+
+Unirest\Request::get($url, $headers, $user->email, $username);
+
+Unirest\Request::send("GET", $url, $headers, $user->email, $username);
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/ok.php b/tests/php/lang/http_url_using_sensitive_data/testdata/ok.php
new file mode 100644
index 000000000..3f50eb251
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/ok.php
@@ -0,0 +1,3 @@
+<?php
+
+$curl = curl_init("http://example.com/$ok");
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/ok_guzzle.php b/tests/php/lang/http_url_using_sensitive_data/testdata/ok_guzzle.php
new file mode 100644
index 000000000..a01e83124
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/ok_guzzle.php
@@ -0,0 +1,14 @@
+<?php
+
+use GuzzleHttp\Client;
+
+$client = new Client([
+  'timeout'  => 2.0,
+]);
+
+$url = "http://example.com";
+$options = ['query' => ['user', $ok]];
+
+$response = $client->request("GET", $url, $options);
+$client->send($request, $options);
+$client->get($url, $options);
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/ok_httplug.php b/tests/php/lang/http_url_using_sensitive_data/testdata/ok_httplug.php
new file mode 100644
index 000000000..6aad75941
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/ok_httplug.php
@@ -0,0 +1,7 @@
+<?php
+
+use Http\Message\Authentication\QueryParam;
+
+$authentication = new QueryParam([
+  'user' => $ok,
+]);
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/ok_laminas.php b/tests/php/lang/http_url_using_sensitive_data/testdata/ok_laminas.php
new file mode 100644
index 000000000..9e73ee16b
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/ok_laminas.php
@@ -0,0 +1,18 @@
+<?php
+
+use Laminas\Http\Client;
+
+$client = new Client("http://example.com", [
+  'maxredirects' => 0,
+  'timeout'      => 30,
+]);
+
+$client->setParameterGet([
+  "data" => $ok
+]);
+
+$request = new Laminas\Http\Request();
+$query = $request->getQuery();
+$query->set("x", $ok);
+$query->offsetSet("y", $ok);
+$query->z = $ok;
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/ok_laravel.php b/tests/php/lang/http_url_using_sensitive_data/testdata/ok_laravel.php
new file mode 100644
index 000000000..efae45d03
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/ok_laravel.php
@@ -0,0 +1,20 @@
+<?php
+
+use Illuminate\Support\Facades\Http;
+
+Http::head($url, $ok);
+
+Http::withQueryParameters([
+  'user' => $ok,
+  'page' => 1,
+])->get($url);
+
+Http::retry(3, 100)->withQueryParameters([
+  'user' => $ok,
+  'page' => 1,
+])->get($url);
+
+Http::retry(3, 100)->get($url, $ok);
+
+Http::send("GET", $url, ["query" => $ok]);
+Http::retry(3, 100)->send("GET", $url, ["query" => $ok]);
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/ok_pecl_http.php b/tests/php/lang/http_url_using_sensitive_data/testdata/ok_pecl_http.php
new file mode 100644
index 000000000..84091dbfe
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/ok_pecl_http.php
@@ -0,0 +1,7 @@
+<?php
+
+use http\Client\Request;
+
+$req = new Request("GET", $url);
+$req->setQuery($ok);
+$req->addQuery($ok);
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/ok_requests.php b/tests/php/lang/http_url_using_sensitive_data/testdata/ok_requests.php
new file mode 100644
index 000000000..ba9489eb2
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/ok_requests.php
@@ -0,0 +1,28 @@
+<?php
+
+use WpOrg\Requests\Requests;
+
+Requests::get($url, $headers, $ok);
+Requests::head($url, $headers, $ok);
+Requests::delete($url, $headers, $ok);
+Requests::request($url, $headers, $ok);
+Requests::request($url, $headers, $user->email, Requests::POST);
+Requests::request($url, $headers, $ok, Requests::GET);
+
+WpOrg\Requests\Requests::request_multiple([
+  "one" => ["headers" => $headers, "url" => $url, "data" => $ok],
+  "one" => ["headers" => $headers, "url" => $url, "type" => Requests::GET, "data" => $ok],
+  "two" => ["headers" => $headers, "url" => $url, "type" => Requests::POST, "data" => $user->email]
+], []);
+
+$session = new WpOrg\Requests\Session($user_input, $headers, $ok);
+
+$session->request($user_input, $headers, $ok);
+$session->request($user_input, $headers, $ok, Requests::HEAD);
+$session->request($user_input, $headers, $user->email, Requests::PUT);
+
+$session->request_multiple([
+  ["headers" => $headers, "url" => $url, "data" => $ok],
+  ["headers" => $headers, "url" => $url, "type" => Requests::GET, "data" => $ok],
+  ["headers" => $headers, "url" => $url, "type" => Requests::POST, "data" => $user->email]
+], []);
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/ok_sendgrid.php b/tests/php/lang/http_url_using_sensitive_data/testdata/ok_sendgrid.php
new file mode 100644
index 000000000..5583ca890
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/ok_sendgrid.php
@@ -0,0 +1,9 @@
+<?php
+
+$client = new SendGrid\Client($url);
+
+$client->get($body, $ok, $headers);
+$client->post($body, $ok, $headers);
+$client->patch($body, $ok, $headers);
+$client->put($body, $ok, $headers);
+$client->delete($body, $ok, $headers);
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/ok_symfony.php b/tests/php/lang/http_url_using_sensitive_data/testdata/ok_symfony.php
new file mode 100644
index 000000000..c99da770c
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/ok_symfony.php
@@ -0,0 +1,18 @@
+<?php
+
+use Symfony\Contracts\HttpClient\HttpClientInterface;
+
+class SymfonyDocs
+{
+    public function __construct(
+      private HttpClientInterface $client,
+    ) {
+    }
+
+    public function fetchSomething(): array {
+      $this->client->request('GET', $url, [
+        'query' => ["user" => $ok],
+        'headers' => []
+      ]);
+    }
+}
diff --git a/tests/php/lang/http_url_using_sensitive_data/testdata/ok_unirest.php b/tests/php/lang/http_url_using_sensitive_data/testdata/ok_unirest.php
new file mode 100644
index 000000000..4c93ba34d
--- /dev/null
+++ b/tests/php/lang/http_url_using_sensitive_data/testdata/ok_unirest.php
@@ -0,0 +1,5 @@
+<?php
+
+Unirest\Request::get($url, $headers, $ok, $username);
+
+Unirest\Request::send("GET", $url, $headers, $ok, $username);
diff --git a/tests/php/lang/http_url_using_user_input/__snapshots__/test.js.snap b/tests/php/lang/http_url_using_user_input/__snapshots__/test.js.snap
index 5bd2e7fb1..41f733009 100644
--- a/tests/php/lang/http_url_using_user_input/__snapshots__/test.js.snap
+++ b/tests/php/lang/http_url_using_user_input/__snapshots__/test.js.snap
@@ -577,7 +577,7 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
       "title": "HTTP communication with user-controlled destination detected.",
       "description": "## Description\\n\\nApplications should not connect to locations formed from user input.\\nThis rule checks for URLs containing user-supplied data.\\n\\n## Remediations\\n\\n❌ Avoid using user input in HTTP URLs:\\n\\n\`\`\`php\\n$curl = curl_init(\\"https://{$_GET['host']}');\\n\`\`\`\\n\\n✅ Use user input indirectly to form a URL:\\n\\n\`\`\`php\\nif ($_GET[\\"host\\"] == \\"option1\\") {\\n  $host = \\"api1.com\\";\\n} else {\\n  $host = \\"api2.com\\";\\n}\\n\\n$curl = curl_init(\\"https://$host');\\n\`\`\`\\n",
       "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_user_input",
-      "line_number": 16,
+      "line_number": 15,
       "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
       "filename": ".",
       "category_groups": [
@@ -585,27 +585,27 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "Personal Data"
       ],
       "source": {
-        "start": 16,
-        "end": 16,
+        "start": 15,
+        "end": 15,
         "column": {
-          "start": 1,
-          "end": 26
+          "start": 13,
+          "end": 58
         }
       },
       "sink": {
-        "start": 16,
-        "end": 16,
+        "start": 15,
+        "end": 15,
         "column": {
-          "start": 1,
-          "end": 26
+          "start": 13,
+          "end": 58
         },
-        "content": "$client->get($user_input)"
+        "content": "$client->requestAsync(\\"GET\\", $user_input, [])"
       },
-      "parent_line_number": 16,
-      "snippet": "$client->get($user_input)",
+      "parent_line_number": 15,
+      "snippet": "$client->requestAsync(\\"GET\\", $user_input, [])",
       "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_2",
       "old_fingerprint": "17e83d0cc3031c8657e6e7114ca5f644_2",
-      "code_extract": "$client->get($user_input);"
+      "code_extract": "$response = $client->requestAsync(\\"GET\\", $user_input, []);"
     },
     {
       "cwe_ids": [
@@ -627,7 +627,7 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 17,
         "column": {
           "start": 1,
-          "end": 29
+          "end": 26
         }
       },
       "sink": {
@@ -635,15 +635,15 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 17,
         "column": {
           "start": 1,
-          "end": 29
+          "end": 26
         },
-        "content": "$client->delete($user_input)"
+        "content": "$client->get($user_input)"
       },
       "parent_line_number": 17,
-      "snippet": "$client->delete($user_input)",
+      "snippet": "$client->get($user_input)",
       "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_3",
       "old_fingerprint": "17e83d0cc3031c8657e6e7114ca5f644_3",
-      "code_extract": "$client->delete($user_input);"
+      "code_extract": "$client->get($user_input);"
     },
     {
       "cwe_ids": [
@@ -665,7 +665,7 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 18,
         "column": {
           "start": 1,
-          "end": 27
+          "end": 29
         }
       },
       "sink": {
@@ -673,15 +673,15 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 18,
         "column": {
           "start": 1,
-          "end": 27
+          "end": 29
         },
-        "content": "$client->head($user_input)"
+        "content": "$client->delete($user_input)"
       },
       "parent_line_number": 18,
-      "snippet": "$client->head($user_input)",
+      "snippet": "$client->delete($user_input)",
       "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_4",
       "old_fingerprint": "17e83d0cc3031c8657e6e7114ca5f644_4",
-      "code_extract": "$client->head($user_input);"
+      "code_extract": "$client->delete($user_input);"
     },
     {
       "cwe_ids": [
@@ -703,7 +703,7 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 19,
         "column": {
           "start": 1,
-          "end": 30
+          "end": 27
         }
       },
       "sink": {
@@ -711,15 +711,15 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 19,
         "column": {
           "start": 1,
-          "end": 30
+          "end": 27
         },
-        "content": "$client->options($user_input)"
+        "content": "$client->head($user_input)"
       },
       "parent_line_number": 19,
-      "snippet": "$client->options($user_input)",
+      "snippet": "$client->head($user_input)",
       "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_5",
       "old_fingerprint": "17e83d0cc3031c8657e6e7114ca5f644_5",
-      "code_extract": "$client->options($user_input);"
+      "code_extract": "$client->head($user_input);"
     },
     {
       "cwe_ids": [
@@ -741,7 +741,7 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 20,
         "column": {
           "start": 1,
-          "end": 28
+          "end": 30
         }
       },
       "sink": {
@@ -749,15 +749,15 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 20,
         "column": {
           "start": 1,
-          "end": 28
+          "end": 30
         },
-        "content": "$client->patch($user_input)"
+        "content": "$client->options($user_input)"
       },
       "parent_line_number": 20,
-      "snippet": "$client->patch($user_input)",
+      "snippet": "$client->options($user_input)",
       "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_6",
       "old_fingerprint": "17e83d0cc3031c8657e6e7114ca5f644_6",
-      "code_extract": "$client->patch($user_input);"
+      "code_extract": "$client->options($user_input);"
     },
     {
       "cwe_ids": [
@@ -779,7 +779,7 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 21,
         "column": {
           "start": 1,
-          "end": 27
+          "end": 28
         }
       },
       "sink": {
@@ -787,15 +787,15 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 21,
         "column": {
           "start": 1,
-          "end": 27
+          "end": 28
         },
-        "content": "$client->post($user_input)"
+        "content": "$client->patch($user_input)"
       },
       "parent_line_number": 21,
-      "snippet": "$client->post($user_input)",
+      "snippet": "$client->patch($user_input)",
       "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_7",
       "old_fingerprint": "17e83d0cc3031c8657e6e7114ca5f644_7",
-      "code_extract": "$client->post($user_input);"
+      "code_extract": "$client->patch($user_input);"
     },
     {
       "cwe_ids": [
@@ -817,7 +817,7 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 22,
         "column": {
           "start": 1,
-          "end": 26
+          "end": 27
         }
       },
       "sink": {
@@ -825,15 +825,15 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 22,
         "column": {
           "start": 1,
-          "end": 26
+          "end": 27
         },
-        "content": "$client->put($user_input)"
+        "content": "$client->post($user_input)"
       },
       "parent_line_number": 22,
-      "snippet": "$client->put($user_input)",
+      "snippet": "$client->post($user_input)",
       "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_8",
       "old_fingerprint": "17e83d0cc3031c8657e6e7114ca5f644_8",
-      "code_extract": "$client->put($user_input);"
+      "code_extract": "$client->post($user_input);"
     },
     {
       "cwe_ids": [
@@ -855,7 +855,7 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 23,
         "column": {
           "start": 1,
-          "end": 31
+          "end": 26
         }
       },
       "sink": {
@@ -863,15 +863,15 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 23,
         "column": {
           "start": 1,
-          "end": 31
+          "end": 26
         },
-        "content": "$client->getAsync($user_input)"
+        "content": "$client->put($user_input)"
       },
       "parent_line_number": 23,
-      "snippet": "$client->getAsync($user_input)",
+      "snippet": "$client->put($user_input)",
       "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_9",
       "old_fingerprint": "17e83d0cc3031c8657e6e7114ca5f644_9",
-      "code_extract": "$client->getAsync($user_input);"
+      "code_extract": "$client->put($user_input);"
     },
     {
       "cwe_ids": [
@@ -893,7 +893,7 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 24,
         "column": {
           "start": 1,
-          "end": 34
+          "end": 31
         }
       },
       "sink": {
@@ -901,15 +901,15 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 24,
         "column": {
           "start": 1,
-          "end": 34
+          "end": 31
         },
-        "content": "$client->deleteAsync($user_input)"
+        "content": "$client->getAsync($user_input)"
       },
       "parent_line_number": 24,
-      "snippet": "$client->deleteAsync($user_input)",
+      "snippet": "$client->getAsync($user_input)",
       "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_10",
       "old_fingerprint": "17e83d0cc3031c8657e6e7114ca5f644_10",
-      "code_extract": "$client->deleteAsync($user_input);"
+      "code_extract": "$client->getAsync($user_input);"
     },
     {
       "cwe_ids": [
@@ -931,7 +931,7 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 25,
         "column": {
           "start": 1,
-          "end": 32
+          "end": 34
         }
       },
       "sink": {
@@ -939,15 +939,15 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 25,
         "column": {
           "start": 1,
-          "end": 32
+          "end": 34
         },
-        "content": "$client->headAsync($user_input)"
+        "content": "$client->deleteAsync($user_input)"
       },
       "parent_line_number": 25,
-      "snippet": "$client->headAsync($user_input)",
+      "snippet": "$client->deleteAsync($user_input)",
       "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_11",
       "old_fingerprint": "17e83d0cc3031c8657e6e7114ca5f644_11",
-      "code_extract": "$client->headAsync($user_input);"
+      "code_extract": "$client->deleteAsync($user_input);"
     },
     {
       "cwe_ids": [
@@ -969,7 +969,7 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 26,
         "column": {
           "start": 1,
-          "end": 35
+          "end": 32
         }
       },
       "sink": {
@@ -977,15 +977,15 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 26,
         "column": {
           "start": 1,
-          "end": 35
+          "end": 32
         },
-        "content": "$client->optionsAsync($user_input)"
+        "content": "$client->headAsync($user_input)"
       },
       "parent_line_number": 26,
-      "snippet": "$client->optionsAsync($user_input)",
+      "snippet": "$client->headAsync($user_input)",
       "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_12",
       "old_fingerprint": "17e83d0cc3031c8657e6e7114ca5f644_12",
-      "code_extract": "$client->optionsAsync($user_input);"
+      "code_extract": "$client->headAsync($user_input);"
     },
     {
       "cwe_ids": [
@@ -1007,7 +1007,7 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 27,
         "column": {
           "start": 1,
-          "end": 33
+          "end": 35
         }
       },
       "sink": {
@@ -1015,15 +1015,15 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 27,
         "column": {
           "start": 1,
-          "end": 33
+          "end": 35
         },
-        "content": "$client->patchAsync($user_input)"
+        "content": "$client->optionsAsync($user_input)"
       },
       "parent_line_number": 27,
-      "snippet": "$client->patchAsync($user_input)",
+      "snippet": "$client->optionsAsync($user_input)",
       "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_13",
       "old_fingerprint": "17e83d0cc3031c8657e6e7114ca5f644_13",
-      "code_extract": "$client->patchAsync($user_input);"
+      "code_extract": "$client->optionsAsync($user_input);"
     },
     {
       "cwe_ids": [
@@ -1045,7 +1045,7 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 28,
         "column": {
           "start": 1,
-          "end": 32
+          "end": 33
         }
       },
       "sink": {
@@ -1053,15 +1053,15 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 28,
         "column": {
           "start": 1,
-          "end": 32
+          "end": 33
         },
-        "content": "$client->postAsync($user_input)"
+        "content": "$client->patchAsync($user_input)"
       },
       "parent_line_number": 28,
-      "snippet": "$client->postAsync($user_input)",
+      "snippet": "$client->patchAsync($user_input)",
       "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_14",
       "old_fingerprint": "17e83d0cc3031c8657e6e7114ca5f644_14",
-      "code_extract": "$client->postAsync($user_input);"
+      "code_extract": "$client->patchAsync($user_input);"
     },
     {
       "cwe_ids": [
@@ -1083,7 +1083,7 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 29,
         "column": {
           "start": 1,
-          "end": 31
+          "end": 32
         }
       },
       "sink": {
@@ -1091,14 +1091,52 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "end": 29,
         "column": {
           "start": 1,
-          "end": 31
+          "end": 32
         },
-        "content": "$client->putAsync($user_input)"
+        "content": "$client->postAsync($user_input)"
       },
       "parent_line_number": 29,
-      "snippet": "$client->putAsync($user_input)",
+      "snippet": "$client->postAsync($user_input)",
       "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_15",
       "old_fingerprint": "17e83d0cc3031c8657e6e7114ca5f644_15",
+      "code_extract": "$client->postAsync($user_input);"
+    },
+    {
+      "cwe_ids": [
+        "918"
+      ],
+      "id": "php_lang_http_url_using_user_input",
+      "title": "HTTP communication with user-controlled destination detected.",
+      "description": "## Description\\n\\nApplications should not connect to locations formed from user input.\\nThis rule checks for URLs containing user-supplied data.\\n\\n## Remediations\\n\\n❌ Avoid using user input in HTTP URLs:\\n\\n\`\`\`php\\n$curl = curl_init(\\"https://{$_GET['host']}');\\n\`\`\`\\n\\n✅ Use user input indirectly to form a URL:\\n\\n\`\`\`php\\nif ($_GET[\\"host\\"] == \\"option1\\") {\\n  $host = \\"api1.com\\";\\n} else {\\n  $host = \\"api2.com\\";\\n}\\n\\n$curl = curl_init(\\"https://$host');\\n\`\`\`\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_user_input",
+      "line_number": 30,
+      "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
+      "filename": ".",
+      "category_groups": [
+        "PII",
+        "Personal Data"
+      ],
+      "source": {
+        "start": 30,
+        "end": 30,
+        "column": {
+          "start": 1,
+          "end": 31
+        }
+      },
+      "sink": {
+        "start": 30,
+        "end": 30,
+        "column": {
+          "start": 1,
+          "end": 31
+        },
+        "content": "$client->putAsync($user_input)"
+      },
+      "parent_line_number": 30,
+      "snippet": "$client->putAsync($user_input)",
+      "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_16",
+      "old_fingerprint": "17e83d0cc3031c8657e6e7114ca5f644_16",
       "code_extract": "$client->putAsync($user_input);"
     },
     {
@@ -1109,7 +1147,7 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
       "title": "HTTP communication with user-controlled destination detected.",
       "description": "## Description\\n\\nApplications should not connect to locations formed from user input.\\nThis rule checks for URLs containing user-supplied data.\\n\\n## Remediations\\n\\n❌ Avoid using user input in HTTP URLs:\\n\\n\`\`\`php\\n$curl = curl_init(\\"https://{$_GET['host']}');\\n\`\`\`\\n\\n✅ Use user input indirectly to form a URL:\\n\\n\`\`\`php\\nif ($_GET[\\"host\\"] == \\"option1\\") {\\n  $host = \\"api1.com\\";\\n} else {\\n  $host = \\"api2.com\\";\\n}\\n\\n$curl = curl_init(\\"https://$host');\\n\`\`\`\\n",
       "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_user_input",
-      "line_number": 31,
+      "line_number": 32,
       "full_filename": "/tmp/bearer-scan/bad_guzzle.php",
       "filename": ".",
       "category_groups": [
@@ -1117,26 +1155,26 @@ exports[`php_lang_http_url_using_user_input bad_guzzle 1`] = `
         "Personal Data"
       ],
       "source": {
-        "start": 31,
-        "end": 31,
+        "start": 32,
+        "end": 32,
         "column": {
           "start": 12,
           "end": 54
         }
       },
       "sink": {
-        "start": 31,
-        "end": 31,
+        "start": 32,
+        "end": 32,
         "column": {
           "start": 12,
           "end": 54
         },
         "content": "new Request('HEAD', $user_input, $headers)"
       },
-      "parent_line_number": 31,
+      "parent_line_number": 32,
       "snippet": "new Request('HEAD', $user_input, $headers)",
-      "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_16",
-      "old_fingerprint": "17e83d0cc3031c8657e6e7114ca5f644_16",
+      "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_17",
+      "old_fingerprint": "17e83d0cc3031c8657e6e7114ca5f644_17",
       "code_extract": "$request = new Request('HEAD', $user_input, $headers);"
     }
   ]
@@ -2377,13 +2415,13 @@ exports[`php_lang_http_url_using_user_input bad_unirest 1`] = `
           "start": 1,
           "end": 45
         },
-        "content": "Unirest\\\\Request::post($user_input, $headers)"
+        "content": "Unirest\\\\Request::head($user_input, $headers)"
       },
       "parent_line_number": 6,
-      "snippet": "Unirest\\\\Request::post($user_input, $headers)",
+      "snippet": "Unirest\\\\Request::head($user_input, $headers)",
       "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_1",
       "old_fingerprint": "38707c0990bd6b21708f1ca97cf9b1ea_1",
-      "code_extract": "Unirest\\\\Request::post($user_input, $headers);"
+      "code_extract": "Unirest\\\\Request::head($user_input, $headers);"
     },
     {
       "cwe_ids": [
@@ -2401,7 +2439,7 @@ exports[`php_lang_http_url_using_user_input bad_unirest 1`] = `
         "end": 7,
         "column": {
           "start": 1,
-          "end": 44
+          "end": 48
         }
       },
       "sink": {
@@ -2409,15 +2447,15 @@ exports[`php_lang_http_url_using_user_input bad_unirest 1`] = `
         "end": 7,
         "column": {
           "start": 1,
-          "end": 44
+          "end": 48
         },
-        "content": "Unirest\\\\Request::put($user_input, $headers)"
+        "content": "Unirest\\\\Request::options($user_input, $headers)"
       },
       "parent_line_number": 7,
-      "snippet": "Unirest\\\\Request::put($user_input, $headers)",
+      "snippet": "Unirest\\\\Request::options($user_input, $headers)",
       "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_2",
       "old_fingerprint": "38707c0990bd6b21708f1ca97cf9b1ea_2",
-      "code_extract": "Unirest\\\\Request::put($user_input, $headers);"
+      "code_extract": "Unirest\\\\Request::options($user_input, $headers);"
     },
     {
       "cwe_ids": [
@@ -2435,7 +2473,7 @@ exports[`php_lang_http_url_using_user_input bad_unirest 1`] = `
         "end": 8,
         "column": {
           "start": 1,
-          "end": 46
+          "end": 48
         }
       },
       "sink": {
@@ -2443,15 +2481,15 @@ exports[`php_lang_http_url_using_user_input bad_unirest 1`] = `
         "end": 8,
         "column": {
           "start": 1,
-          "end": 46
+          "end": 48
         },
-        "content": "Unirest\\\\Request::patch($user_input, $headers)"
+        "content": "Unirest\\\\Request::connect($user_input, $headers)"
       },
       "parent_line_number": 8,
-      "snippet": "Unirest\\\\Request::patch($user_input, $headers)",
+      "snippet": "Unirest\\\\Request::connect($user_input, $headers)",
       "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_3",
       "old_fingerprint": "38707c0990bd6b21708f1ca97cf9b1ea_3",
-      "code_extract": "Unirest\\\\Request::patch($user_input, $headers);"
+      "code_extract": "Unirest\\\\Request::connect($user_input, $headers);"
     },
     {
       "cwe_ids": [
@@ -2469,7 +2507,7 @@ exports[`php_lang_http_url_using_user_input bad_unirest 1`] = `
         "end": 9,
         "column": {
           "start": 1,
-          "end": 47
+          "end": 45
         }
       },
       "sink": {
@@ -2477,15 +2515,49 @@ exports[`php_lang_http_url_using_user_input bad_unirest 1`] = `
         "end": 9,
         "column": {
           "start": 1,
-          "end": 47
+          "end": 45
         },
-        "content": "Unirest\\\\Request::delete($user_input, $headers)"
+        "content": "Unirest\\\\Request::post($user_input, $headers)"
       },
       "parent_line_number": 9,
-      "snippet": "Unirest\\\\Request::delete($user_input, $headers)",
+      "snippet": "Unirest\\\\Request::post($user_input, $headers)",
       "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_4",
       "old_fingerprint": "38707c0990bd6b21708f1ca97cf9b1ea_4",
-      "code_extract": "Unirest\\\\Request::delete($user_input, $headers);"
+      "code_extract": "Unirest\\\\Request::post($user_input, $headers);"
+    },
+    {
+      "cwe_ids": [
+        "918"
+      ],
+      "id": "php_lang_http_url_using_user_input",
+      "title": "HTTP communication with user-controlled destination detected.",
+      "description": "## Description\\n\\nApplications should not connect to locations formed from user input.\\nThis rule checks for URLs containing user-supplied data.\\n\\n## Remediations\\n\\n❌ Avoid using user input in HTTP URLs:\\n\\n\`\`\`php\\n$curl = curl_init(\\"https://{$_GET['host']}');\\n\`\`\`\\n\\n✅ Use user input indirectly to form a URL:\\n\\n\`\`\`php\\nif ($_GET[\\"host\\"] == \\"option1\\") {\\n  $host = \\"api1.com\\";\\n} else {\\n  $host = \\"api2.com\\";\\n}\\n\\n$curl = curl_init(\\"https://$host');\\n\`\`\`\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_user_input",
+      "line_number": 10,
+      "full_filename": "/tmp/bearer-scan/bad_unirest.php",
+      "filename": ".",
+      "source": {
+        "start": 10,
+        "end": 10,
+        "column": {
+          "start": 1,
+          "end": 44
+        }
+      },
+      "sink": {
+        "start": 10,
+        "end": 10,
+        "column": {
+          "start": 1,
+          "end": 44
+        },
+        "content": "Unirest\\\\Request::put($user_input, $headers)"
+      },
+      "parent_line_number": 10,
+      "snippet": "Unirest\\\\Request::put($user_input, $headers)",
+      "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_5",
+      "old_fingerprint": "38707c0990bd6b21708f1ca97cf9b1ea_5",
+      "code_extract": "Unirest\\\\Request::put($user_input, $headers);"
     },
     {
       "cwe_ids": [
@@ -2503,22 +2575,124 @@ exports[`php_lang_http_url_using_user_input bad_unirest 1`] = `
         "end": 11,
         "column": {
           "start": 1,
-          "end": 52
+          "end": 46
         }
       },
       "sink": {
         "start": 11,
         "end": 11,
+        "column": {
+          "start": 1,
+          "end": 46
+        },
+        "content": "Unirest\\\\Request::patch($user_input, $headers)"
+      },
+      "parent_line_number": 11,
+      "snippet": "Unirest\\\\Request::patch($user_input, $headers)",
+      "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_6",
+      "old_fingerprint": "38707c0990bd6b21708f1ca97cf9b1ea_6",
+      "code_extract": "Unirest\\\\Request::patch($user_input, $headers);"
+    },
+    {
+      "cwe_ids": [
+        "918"
+      ],
+      "id": "php_lang_http_url_using_user_input",
+      "title": "HTTP communication with user-controlled destination detected.",
+      "description": "## Description\\n\\nApplications should not connect to locations formed from user input.\\nThis rule checks for URLs containing user-supplied data.\\n\\n## Remediations\\n\\n❌ Avoid using user input in HTTP URLs:\\n\\n\`\`\`php\\n$curl = curl_init(\\"https://{$_GET['host']}');\\n\`\`\`\\n\\n✅ Use user input indirectly to form a URL:\\n\\n\`\`\`php\\nif ($_GET[\\"host\\"] == \\"option1\\") {\\n  $host = \\"api1.com\\";\\n} else {\\n  $host = \\"api2.com\\";\\n}\\n\\n$curl = curl_init(\\"https://$host');\\n\`\`\`\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_user_input",
+      "line_number": 12,
+      "full_filename": "/tmp/bearer-scan/bad_unirest.php",
+      "filename": ".",
+      "source": {
+        "start": 12,
+        "end": 12,
+        "column": {
+          "start": 1,
+          "end": 46
+        }
+      },
+      "sink": {
+        "start": 12,
+        "end": 12,
+        "column": {
+          "start": 1,
+          "end": 46
+        },
+        "content": "Unirest\\\\Request::trace($user_input, $headers)"
+      },
+      "parent_line_number": 12,
+      "snippet": "Unirest\\\\Request::trace($user_input, $headers)",
+      "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_7",
+      "old_fingerprint": "38707c0990bd6b21708f1ca97cf9b1ea_7",
+      "code_extract": "Unirest\\\\Request::trace($user_input, $headers);"
+    },
+    {
+      "cwe_ids": [
+        "918"
+      ],
+      "id": "php_lang_http_url_using_user_input",
+      "title": "HTTP communication with user-controlled destination detected.",
+      "description": "## Description\\n\\nApplications should not connect to locations formed from user input.\\nThis rule checks for URLs containing user-supplied data.\\n\\n## Remediations\\n\\n❌ Avoid using user input in HTTP URLs:\\n\\n\`\`\`php\\n$curl = curl_init(\\"https://{$_GET['host']}');\\n\`\`\`\\n\\n✅ Use user input indirectly to form a URL:\\n\\n\`\`\`php\\nif ($_GET[\\"host\\"] == \\"option1\\") {\\n  $host = \\"api1.com\\";\\n} else {\\n  $host = \\"api2.com\\";\\n}\\n\\n$curl = curl_init(\\"https://$host');\\n\`\`\`\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_user_input",
+      "line_number": 13,
+      "full_filename": "/tmp/bearer-scan/bad_unirest.php",
+      "filename": ".",
+      "source": {
+        "start": 13,
+        "end": 13,
+        "column": {
+          "start": 1,
+          "end": 47
+        }
+      },
+      "sink": {
+        "start": 13,
+        "end": 13,
+        "column": {
+          "start": 1,
+          "end": 47
+        },
+        "content": "Unirest\\\\Request::delete($user_input, $headers)"
+      },
+      "parent_line_number": 13,
+      "snippet": "Unirest\\\\Request::delete($user_input, $headers)",
+      "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_8",
+      "old_fingerprint": "38707c0990bd6b21708f1ca97cf9b1ea_8",
+      "code_extract": "Unirest\\\\Request::delete($user_input, $headers);"
+    },
+    {
+      "cwe_ids": [
+        "918"
+      ],
+      "id": "php_lang_http_url_using_user_input",
+      "title": "HTTP communication with user-controlled destination detected.",
+      "description": "## Description\\n\\nApplications should not connect to locations formed from user input.\\nThis rule checks for URLs containing user-supplied data.\\n\\n## Remediations\\n\\n❌ Avoid using user input in HTTP URLs:\\n\\n\`\`\`php\\n$curl = curl_init(\\"https://{$_GET['host']}');\\n\`\`\`\\n\\n✅ Use user input indirectly to form a URL:\\n\\n\`\`\`php\\nif ($_GET[\\"host\\"] == \\"option1\\") {\\n  $host = \\"api1.com\\";\\n} else {\\n  $host = \\"api2.com\\";\\n}\\n\\n$curl = curl_init(\\"https://$host');\\n\`\`\`\\n",
+      "documentation_url": "https://docs.bearer.com/reference/rules/php_lang_http_url_using_user_input",
+      "line_number": 15,
+      "full_filename": "/tmp/bearer-scan/bad_unirest.php",
+      "filename": ".",
+      "source": {
+        "start": 15,
+        "end": 15,
+        "column": {
+          "start": 1,
+          "end": 52
+        }
+      },
+      "sink": {
+        "start": 15,
+        "end": 15,
         "column": {
           "start": 1,
           "end": 52
         },
         "content": "Unirest\\\\Request::send(\\"GET\\", $user_input, $headers)"
       },
-      "parent_line_number": 11,
+      "parent_line_number": 15,
       "snippet": "Unirest\\\\Request::send(\\"GET\\", $user_input, $headers)",
-      "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_5",
-      "old_fingerprint": "38707c0990bd6b21708f1ca97cf9b1ea_5",
+      "fingerprint": "8e7d370f3eae45947c2148f9b1a93a43_9",
+      "old_fingerprint": "38707c0990bd6b21708f1ca97cf9b1ea_9",
       "code_extract": "Unirest\\\\Request::send(\\"GET\\", $user_input, $headers);"
     }
   ]
diff --git a/tests/php/lang/http_url_using_user_input/testdata/bad_guzzle.php b/tests/php/lang/http_url_using_user_input/testdata/bad_guzzle.php
index 016aedd89..5841b4286 100644
--- a/tests/php/lang/http_url_using_user_input/testdata/bad_guzzle.php
+++ b/tests/php/lang/http_url_using_user_input/testdata/bad_guzzle.php
@@ -12,6 +12,7 @@
 $response = $client->request("GET", $user_input, [
   'auth' => ['user', 'pass']
 ]);
+$response = $client->requestAsync("GET", $user_input, []);
 
 $client->get($user_input);
 $client->delete($user_input);
diff --git a/tests/php/lang/http_url_using_user_input/testdata/bad_unirest.php b/tests/php/lang/http_url_using_user_input/testdata/bad_unirest.php
index 6cd4bef57..327a8ed6e 100644
--- a/tests/php/lang/http_url_using_user_input/testdata/bad_unirest.php
+++ b/tests/php/lang/http_url_using_user_input/testdata/bad_unirest.php
@@ -3,9 +3,13 @@
 $user_input = "http://{$_GET['host']}";
 
 Unirest\Request::get($user_input, $headers);
+Unirest\Request::head($user_input, $headers);
+Unirest\Request::options($user_input, $headers);
+Unirest\Request::connect($user_input, $headers);
 Unirest\Request::post($user_input, $headers);
 Unirest\Request::put($user_input, $headers);
 Unirest\Request::patch($user_input, $headers);
+Unirest\Request::trace($user_input, $headers);
 Unirest\Request::delete($user_input, $headers);
 
 Unirest\Request::send("GET", $user_input, $headers);