Changes in results post upgrade - 8.3.38

Created by James Hurrell, last modified on Oct 28, 2021

Summary:

  • Impacts of changes made to AIP Core 8.3.38 on Quality Model results post upgrade

  • Other impacts of changes made in AIP Core 8.3.38

All changes in results related to extensions are listed in the extension documentation and will not appear in this page.

User Input Security

.NET/JEEĀ - Avoid hard-coded credentials (8222)

Additional sendCredentials methods are now detected for the this rule. This improvement may impact existing results for this rule: more violations may be reported more violations may be reported that were not reported in previous releases of AIP Core.

JEE - Avoid hard-coded credentials (8222)

A bug has been fixed which was causing some true violations to go unreported for the rule "Avoid hard-coded credentials" (8222) for JEE. This issue was evident when multiple violations have the same origin and the same destination. This fix may impact existing results for this rule: more violations may be reported that were not reported in previous releases of AIP Core.