# This preset enables C# warning classes whose significance is 'security'. # # Enable the advanced injection engine for deeper taint propagation. # CSHARP_ANALYSIS_ADVANCED_INJECTION = Yes # # These warning classes are disabled by default. # WARNING_FILTER += allow class="Certificate Added to Root Store (C#)" WARNING_FILTER += allow class="Deprecated Transfer Protocol (C#)" WARNING_FILTER += allow class="Deserializable Class (C#)" WARNING_FILTER += allow class="Disabled Input Validation (C#)" WARNING_FILTER += allow class="Hardcoded IP Address (C#)" WARNING_FILTER += allow class="Inadequate Salt (C#)" WARNING_FILTER += allow class="Method Disables Security Setting (C#)" WARNING_FILTER += allow class="Security Annotation Conflict (C#)" WARNING_FILTER += allow class="Unsafe Base64 Encoding (C#)" WARNING_FILTER += allow class="Use of Hash without a Salt (C#)" # Classes below are enabled by default: they are included for # completeness, in case they have been disabled by a previous rule. # Note that this default enabling means that a class may remain # enabled even if its WARNING_FILTER rule is commented out below. WARNING_FILTER += allow class="Anonymous LDAP Authentication (C#)" WARNING_FILTER += allow class="Code Injection (C#)" WARNING_FILTER += allow class="Command Injection (C#)" WARNING_FILTER += allow class="Cross Site Scripting (C#)" WARNING_FILTER += allow class="Cross Site Scripting In Error Message Web Page (C#)" WARNING_FILTER += allow class="Cryptographic Algorithm with Risky Default Cipher (C#)" WARNING_FILTER += allow class="Cryptographic Algorithm with Weak Cipher (C#)" WARNING_FILTER += allow class="Cryptographic Algorithm with Weak Hash (C#)" WARNING_FILTER += allow class="DLL Injection (C#)" WARNING_FILTER += allow class="DOS Injection (C#)" WARNING_FILTER += allow class="Deprecated Cryptography Provider (C#)" WARNING_FILTER += allow class="Exception Information Disclosure (C#)" WARNING_FILTER += allow class="Execution After Redirect (C#)" WARNING_FILTER += allow class="Format String Injection (C#)" WARNING_FILTER += allow class="Hardcoded Cryptographic Key (C#)" WARNING_FILTER += allow class="Hardcoded Password (C#)" WARNING_FILTER += allow class="Hardcoded Random Seed (C#)" WARNING_FILTER += allow class="Hostname in Condition (C#)" WARNING_FILTER += allow class="Insecure Cookie (C#)" WARNING_FILTER += allow class="Insecure Key Derivation (C#)" WARNING_FILTER += allow class="Insecure Random Number Generator (C#)" WARNING_FILTER += allow class="Insecure XSLT Execution (C#)" WARNING_FILTER += allow class="Legacy Random Generator (C#)" WARNING_FILTER += allow class="Missing Authentication Annotation (C#)" WARNING_FILTER += allow class="Missing Required Cryptographic Step (C#)" WARNING_FILTER += allow class="Open Redirect (C#)" WARNING_FILTER += allow class="Password in Property File (C#)" WARNING_FILTER += allow class="Possible XML External Entity Reference (C#)" WARNING_FILTER += allow class="Reflection Injection (C#)" WARNING_FILTER += allow class="Risky Cipher Algorithm (C#)" WARNING_FILTER += allow class="Risky Cipher Field (C#)" WARNING_FILTER += allow class="Risky Cryptographic Algorithm (C#)" WARNING_FILTER += allow class="Risky Cryptographic Field (C#)" WARNING_FILTER += allow class="SQL Injection (C#)" WARNING_FILTER += allow class="Tainted @Trusted Value (C#)" WARNING_FILTER += allow class="Tainted Allocation Size (C#)" WARNING_FILTER += allow class="Tainted Bundle (C#)" WARNING_FILTER += allow class="Tainted Control (C#)" WARNING_FILTER += allow class="Tainted Expression Evaluation (C#)" WARNING_FILTER += allow class="Tainted HTTP Response (C#)" WARNING_FILTER += allow class="Tainted Hardware Device Property (C#)" WARNING_FILTER += allow class="Tainted LDAP Attribute (C#)" WARNING_FILTER += allow class="Tainted LDAP Filter (C#)" WARNING_FILTER += allow class="Tainted Log (C#)" WARNING_FILTER += allow class="Tainted Message (C#)" WARNING_FILTER += allow class="Tainted Network Address (C#)" WARNING_FILTER += allow class="Tainted Path (C#)" WARNING_FILTER += allow class="Tainted Regular Expression (C#)" WARNING_FILTER += allow class="Tainted Resource (C#)" WARNING_FILTER += allow class="Tainted Session (C#)" WARNING_FILTER += allow class="Tainted URL (C#)" WARNING_FILTER += allow class="Tainted XAML (C#)" WARNING_FILTER += allow class="Tainted XML (C#)" WARNING_FILTER += allow class="Tainted Xpath (C#)" WARNING_FILTER += allow class="Unsafe Session Expiration Time (C#)" WARNING_FILTER += allow class="Unsafe hash comparison (C#)" WARNING_FILTER += allow class="Use of Same Seed (C#)" WARNING_FILTER += allow class="Weak Cryptographic Value (C#)" WARNING_FILTER += allow class="Weak Hash Algorithm (C#)" WARNING_FILTER += allow class="Weak Hash Algorithm Field (C#)" WARNING_FILTER += allow class="Weak Initialization Vector Field (C#)" WARNING_FILTER += allow class="Weak Initialization Vector Value (C#)"