Update rule metadata (#1070)

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S1313.json

@@ -6,9 +6,7 @@
     "func": "Constant\/Issue",
     "constantCost": "30min"
   },
-  "tags": [
-    "owasp-a3"
-  ],
+  "tags": [],
   "defaultSeverity": "Minor",
   "ruleSpecification": "RSPEC-1313",
   "sqKey": "S1313",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S1523.json

@@ -7,8 +7,7 @@
     "constantCost": "30min"
   },
   "tags": [
-    "cwe",
-    "owasp-a1"
+    "cwe"
   ],
   "defaultSeverity": "Critical",
   "ruleSpecification": "RSPEC-1523",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S2041.html

@@ -10,4 +10,6 @@ <h2>Compliant Solution</h2>
 echo "Hello";
 echo "Hello","World!";
 </pre>
+<h2>Deprecated</h2>
+<p>This rule is deprecated; use {rule:php:S6600} instead.</p>
 

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S2041.json

@@ -1,14 +1,12 @@
 {
   "title": "Parentheses should not be used for calls to \"echo\"",
   "type": "CODE_SMELL",
-  "status": "ready",
+  "status": "deprecated",
   "remediation": {
     "func": "Constant\/Issue",
     "constantCost": "2min"
   },
-  "tags": [
-    "pitfall"
-  ],
+  "tags": [],
   "defaultSeverity": "Critical",
   "ruleSpecification": "RSPEC-2041",
   "sqKey": "S2041",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S2053.json

@@ -7,9 +7,7 @@
     "constantCost": "30min"
   },
   "tags": [
-    "cwe",
-    "sans-top25-porous",
-    "owasp-a3"
+    "cwe"
   ],
   "defaultSeverity": "Critical",
   "ruleSpecification": "RSPEC-2053",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S2068.json

@@ -7,9 +7,7 @@
     "constantCost": "30min"
   },
   "tags": [
-    "cwe",
-    "sans-top25-porous",
-    "owasp-a2"
+    "cwe"
   ],
   "defaultSeverity": "Blocker",
   "ruleSpecification": "RSPEC-2068",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S2077.json

@@ -8,8 +8,6 @@
   },
   "tags": [
     "cwe",
-    "owasp-a1",
-    "sans-top25-insecure",
     "bad-practice",
     "sql"
   ],

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S2092.json

@@ -8,9 +8,7 @@
   },
   "tags": [
     "cwe",
-    "privacy",
-    "sans-top25-porous",
-    "owasp-a3"
+    "privacy"
   ],
   "defaultSeverity": "Minor",
   "ruleSpecification": "RSPEC-2092",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S2115.json

@@ -7,9 +7,7 @@
     "constantCost": "45min"
   },
   "tags": [
-    "cwe",
-    "owasp-a2",
-    "owasp-a3"
+    "cwe"
   ],
   "defaultSeverity": "Blocker",
   "ruleSpecification": "RSPEC-2115",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S2245.json

@@ -7,9 +7,7 @@
     "constantCost": "10min"
   },
   "tags": [
-    "cwe",
-    "owasp-a3",
-    "owasp-m5"
+    "cwe"
   ],
   "defaultSeverity": "Critical",
   "ruleSpecification": "RSPEC-2245",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S2277.json

@@ -7,10 +7,7 @@
     "constantCost": "20min"
   },
   "tags": [
-    "cwe",
-    "owasp-a6",
-    "sans-top25-porous",
-    "owasp-a3"
+    "cwe"
   ],
   "defaultSeverity": "Critical",
   "ruleSpecification": "RSPEC-2277",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S2278.json

@@ -7,9 +7,7 @@
     "constantCost": "20min"
   },
   "tags": [
-    "cwe",
-    "owasp-a6",
-    "sans-top25-porous"
+    "cwe"
   ],
   "defaultSeverity": "Blocker",
   "ruleSpecification": "RSPEC-2278",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S2612.json

@@ -7,9 +7,7 @@
     "constantCost": "5min"
   },
   "tags": [
-    "cwe",
-    "sans-top25-porous",
-    "owasp-a5"
+    "cwe"
   ],
   "defaultSeverity": "Major",
   "ruleSpecification": "RSPEC-2612",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S2755.json

@@ -7,8 +7,7 @@
     "constantCost": "15min"
   },
   "tags": [
-    "cwe",
-    "owasp-a4"
+    "cwe"
   ],
   "defaultSeverity": "Blocker",
   "ruleSpecification": "RSPEC-2755",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S3330.json

@@ -8,9 +8,7 @@
   },
   "tags": [
     "cwe",
-    "sans-top25-insecure",
-    "privacy",
-    "owasp-a7"
+    "privacy"
   ],
   "defaultSeverity": "Minor",
   "ruleSpecification": "RSPEC-3330",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S3333.json

@@ -8,7 +8,6 @@
   },
   "tags": [
     "cwe",
-    "owasp-a6",
     "php-ini"
   ],
   "defaultSeverity": "Blocker",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S3334.json

@@ -8,8 +8,6 @@
   },
   "tags": [
     "cwe",
-    "owasp-a1",
-    "sans-top25-risky",
     "php-ini"
   ],
   "defaultSeverity": "Blocker",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S3335.json

@@ -8,7 +8,6 @@
   },
   "tags": [
     "cwe",
-    "owasp-a6",
     "php-ini"
   ],
   "defaultSeverity": "Major",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S3336.json

@@ -7,7 +7,6 @@
     "constantCost": "5min"
   },
   "tags": [
-    "owasp-a6",
     "php-ini"
   ],
   "defaultSeverity": "Blocker",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S3337.json

@@ -8,7 +8,6 @@
   },
   "tags": [
     "cwe",
-    "owasp-a6",
     "php-ini"
   ],
   "defaultSeverity": "Blocker",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S4423.json

@@ -8,11 +8,7 @@
   },
   "tags": [
     "cwe",
-    "privacy",
-    "owasp-a6",
-    "sans-top25-porous",
-    "owasp-a3",
-    "owasp-m3"
+    "privacy"
   ],
   "defaultSeverity": "Critical",
   "ruleSpecification": "RSPEC-4423",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S4426.json

@@ -8,10 +8,7 @@
   },
   "tags": [
     "cwe",
-    "privacy",
-    "owasp-a6",
-    "owasp-a3",
-    "owasp-m5"
+    "privacy"
   ],
   "defaultSeverity": "Critical",
   "ruleSpecification": "RSPEC-4426",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S4433.json

@@ -7,8 +7,7 @@
     "constantCost": "15min"
   },
   "tags": [
-    "cwe",
-    "owasp-a2"
+    "cwe"
   ],
   "defaultSeverity": "Critical",
   "ruleSpecification": "RSPEC-4433",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S4502.json

@@ -7,9 +7,7 @@
     "constantCost": "5min"
   },
   "tags": [
-    "cwe",
-    "sans-top25-insecure",
-    "owasp-a6"
+    "cwe"
   ],
   "defaultSeverity": "Critical",
   "ruleSpecification": "RSPEC-4502",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S4507.json

@@ -10,8 +10,7 @@
     "cwe",
     "error-handling",
     "debug",
-    "user-experience",
-    "owasp-a3"
+    "user-experience"
   ],
   "defaultSeverity": "Minor",
   "ruleSpecification": "RSPEC-4507",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S4790.json

@@ -4,11 +4,7 @@
   "status": "ready",
   "tags": [
     "cwe",
-    "spring",
-    "owasp-a6",
-    "sans-top25-porous",
-    "owasp-a3",
-    "owasp-m5"
+    "spring"
   ],
   "defaultSeverity": "Critical",
   "ruleSpecification": "RSPEC-4790",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S4792.json

@@ -3,10 +3,7 @@
   "type": "SECURITY_HOTSPOT",
   "status": "ready",
   "tags": [
-    "cwe",
-    "owasp-a10",
-    "sans-top25-porous",
-    "owasp-a3"
+    "cwe"
   ],
   "defaultSeverity": "Critical",
   "ruleSpecification": "RSPEC-4792",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S4830.json

@@ -9,10 +9,7 @@
   "tags": [
     "cwe",
     "privacy",
-    "owasp-a6",
-    "ssl",
-    "owasp-a3",
-    "owasp-m3"
+    "ssl"
   ],
   "defaultSeverity": "Critical",
   "ruleSpecification": "RSPEC-4830",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S5042.html

@@ -60,7 +60,6 @@ <h2>Compliant Solution</h2>
         $filename = $zip-&gt;getNameIndex($i);
         $stats = $zip-&gt;statIndex($i);
 
-        // Prevent ZipSlip path traversal (S6096)
         if (strpos($filename, '../') !== false || substr($filename, 0, 1) === '/') {
             throw new Exception();
         }
@@ -117,7 +116,6 @@ <h2>Compliant Solution</h2>
 while ($file = zip_read($zip)) {
     $filename = zip_entry_name($file);
 
-    // Prevent ZipSlip path traversal (S6096)
     if (strpos($filename, '../') !== false || substr($filename, 0, 1) === '/') {
         throw new Exception();
     }

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S5042.json

@@ -7,9 +7,7 @@
     "constantCost": "10min"
   },
   "tags": [
-    "cwe",
-    "owasp-a6",
-    "owasp-a5"
+    "cwe"
   ],
   "defaultSeverity": "Critical",
   "ruleSpecification": "RSPEC-5042",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S5122.json

@@ -3,9 +3,7 @@
   "type": "SECURITY_HOTSPOT",
   "status": "ready",
   "tags": [
-    "cwe",
-    "owasp-a6",
-    "sans-top25-porous"
+    "cwe"
   ],
   "defaultSeverity": "Minor",
   "ruleSpecification": "RSPEC-5122",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S5328.json

@@ -7,8 +7,7 @@
     "constantCost": "15min"
   },
   "tags": [
-    "cwe",
-    "owasp-a6"
+    "cwe"
   ],
   "defaultSeverity": "Major",
   "ruleSpecification": "RSPEC-5328",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S5332.json

@@ -3,9 +3,7 @@
   "type": "SECURITY_HOTSPOT",
   "status": "ready",
   "tags": [
-    "cwe",
-    "owasp-a3",
-    "owasp-m3"
+    "cwe"
   ],
   "defaultSeverity": "Critical",
   "ruleSpecification": "RSPEC-5332",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S5527.json

@@ -9,10 +9,7 @@
   "tags": [
     "cwe",
     "privacy",
-    "owasp-a6",
-    "ssl",
-    "owasp-a3",
-    "owasp-m3"
+    "ssl"
   ],
   "defaultSeverity": "Critical",
   "ruleSpecification": "RSPEC-5527",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S5542.json

@@ -8,11 +8,7 @@
   },
   "tags": [
     "cwe",
-    "privacy",
-    "owasp-a6",
-    "sans-top25-porous",
-    "owasp-a3",
-    "owasp-m5"
+    "privacy"
   ],
   "defaultSeverity": "Critical",
   "ruleSpecification": "RSPEC-5542",

php-checks/src/main/resources/org/sonar/l10n/php/rules/php/S5547.json

@@ -8,11 +8,7 @@
   },
   "tags": [
     "cwe",
-    "privacy",
-    "owasp-a6",
-    "sans-top25-porous",
-    "owasp-a3",
-    "owasp-m5"
+    "privacy"
   ],
   "defaultSeverity": "Critical",
   "ruleSpecification": "RSPEC-5547",