csharp:chore - Improvements on safe and unsafe code in csharp (#1037)

Adding improvements in csharp rules from regex. Reference from issue #630 and #1020. Signed-off-by: Wilian Gabriel <[email protected]>
ZupIT · Mar 21, 2022 · a3efede · a3efede
1 parent 5efcc7a
commit a3efede
Show file tree

Hide file tree

Showing 6 changed files with 3,677 additions and 499 deletions.
diff --git a/e2e/analysis/test_case.go b/e2e/analysis/test_case.go
@@ -77,11 +77,11 @@ func NewTestCase() []*TestCase {
 					fmt.Sprintf(messages.MsgPrintFinishAnalysisWithStatus, analysis.Success),
 					messages.MsgDebugVulnHashToFix,
 					messages.MsgWarnAnalysisFoundVulns[16:],
-					"In this analysis, a total of 61 possible vulnerabilities were found and we classified them into:",
+					"In this analysis, a total of 60 possible vulnerabilities were found and we classified them into:",
 					"Total of Vulnerability CRITICAL is: 22",
 					"Total of Vulnerability HIGH is: 24",
 					"Total of Vulnerability MEDIUM is: 12",
-					"Total of Vulnerability LOW is: 3",
+					"Total of Vulnerability LOW is: 2",
 					fmt.Sprintf("{HORUSEC_CLI} Running %s - %s", tools.HorusecEngine, languages.CSharp),
 					fmt.Sprintf("{HORUSEC_CLI} Running %s - %s", tools.HorusecEngine, languages.Dart),
 					fmt.Sprintf("{HORUSEC_CLI} Running %s - %s", tools.HorusecEngine, languages.Java),

diff --git a/internal/services/engines/csharp/rule_manager.go b/internal/services/engines/csharp/rule_manager.go
@@ -68,7 +68,7 @@ func Rules() []engine.Rule {
 		NewCookieWithoutHttpOnlyFlag(),
 		NewSQLInjectionEnterpriseLibraryData(),
 		NewCQLInjectionCassandra(),
-		NewPasswordComplexity(),
+		NewPasswordComplexityDefault(),
 		NewNoInputVariable(),
 		NewIdentityWeakPasswordComplexity(),