github
diff --git a/‎change-notes/2020-07-22-ssh-host-checking.md‎
Lines changed: 2 additions & 0 deletions b/‎change-notes/2020-07-22-ssh-host-checking.md‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎…al/CWE-322/InsecureHostKeyCallback.qhelp‎ ‎…ty/CWE-322/InsecureHostKeyCallback.qhelp‎ql/src/experimental/CWE-322/InsecureHostKeyCallback.qhelp renamed to ql/src/Security/CWE-322/InsecureHostKeyCallback.qhelp b/‎…al/CWE-322/InsecureHostKeyCallback.qhelp‎ ‎…ty/CWE-322/InsecureHostKeyCallback.qhelp‎ql/src/experimental/CWE-322/InsecureHostKeyCallback.qhelp renamed to ql/src/Security/CWE-322/InsecureHostKeyCallback.qhelp
diff --git a/‎…ental/CWE-322/InsecureHostKeyCallback.ql‎ ‎…urity/CWE-322/InsecureHostKeyCallback.ql‎ql/src/experimental/CWE-322/InsecureHostKeyCallback.ql renamed to ql/src/Security/CWE-322/InsecureHostKeyCallback.ql b/‎…ental/CWE-322/InsecureHostKeyCallback.ql‎ ‎…urity/CWE-322/InsecureHostKeyCallback.ql‎ql/src/experimental/CWE-322/InsecureHostKeyCallback.ql renamed to ql/src/Security/CWE-322/InsecureHostKeyCallback.ql
diff --git a/‎…WE-322/InsecureHostKeyCallbackExample.go‎ ‎…WE-322/InsecureHostKeyCallbackExample.go‎ql/src/experimental/CWE-322/InsecureHostKeyCallbackExample.go renamed to ql/src/Security/CWE-322/InsecureHostKeyCallbackExample.go b/‎…WE-322/InsecureHostKeyCallbackExample.go‎ ‎…WE-322/InsecureHostKeyCallbackExample.go‎ql/src/experimental/CWE-322/InsecureHostKeyCallbackExample.go renamed to ql/src/Security/CWE-322/InsecureHostKeyCallbackExample.go
diff --git a/‎…/CWE-322/SecureHostKeyCallbackExample.go‎ ‎…/CWE-322/SecureHostKeyCallbackExample.go‎ql/src/experimental/CWE-322/SecureHostKeyCallbackExample.go renamed to ql/src/Security/CWE-322/SecureHostKeyCallbackExample.go b/‎…/CWE-322/SecureHostKeyCallbackExample.go‎ ‎…/CWE-322/SecureHostKeyCallbackExample.go‎ql/src/experimental/CWE-322/SecureHostKeyCallbackExample.go renamed to ql/src/Security/CWE-322/SecureHostKeyCallbackExample.go
diff --git a/‎ql/test/experimental/CWE-322/InsecureHostKeyCallback.qlref‎
Lines changed: 0 additions & 1 deletion b/‎ql/test/experimental/CWE-322/InsecureHostKeyCallback.qlref‎
Lines changed: 0 additions & 1 deletion
diff --git a/‎…CWE-322/InsecureHostKeyCallback.expected‎ ‎…CWE-322/InsecureHostKeyCallback.expected‎ql/test/experimental/CWE-322/InsecureHostKeyCallback.expected renamed to ql/test/query-tests/Security/CWE-322/InsecureHostKeyCallback.expected b/‎…CWE-322/InsecureHostKeyCallback.expected‎ ‎…CWE-322/InsecureHostKeyCallback.expected‎ql/test/experimental/CWE-322/InsecureHostKeyCallback.expected renamed to ql/test/query-tests/Security/CWE-322/InsecureHostKeyCallback.expected
diff --git a/‎ql/test/query-tests/Security/CWE-322/InsecureHostKeyCallback.qlref‎
Lines changed: 1 addition & 0 deletions b/‎ql/test/query-tests/Security/CWE-322/InsecureHostKeyCallback.qlref‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎…WE-322/InsecureHostKeyCallbackExample.go‎ ‎…WE-322/InsecureHostKeyCallbackExample.go‎ql/test/experimental/CWE-322/InsecureHostKeyCallbackExample.go renamed to ql/test/query-tests/Security/CWE-322/InsecureHostKeyCallbackExample.go b/‎…WE-322/InsecureHostKeyCallbackExample.go‎ ‎…WE-322/InsecureHostKeyCallbackExample.go‎ql/test/experimental/CWE-322/InsecureHostKeyCallbackExample.go renamed to ql/test/query-tests/Security/CWE-322/InsecureHostKeyCallbackExample.go
diff --git a/‎ql/test/experimental/CWE-322/go.mod‎ ‎…test/query-tests/Security/CWE-322/go.mod‎ql/test/experimental/CWE-322/go.mod renamed to ql/test/query-tests/Security/CWE-322/go.mod b/‎ql/test/experimental/CWE-322/go.mod‎ ‎…test/query-tests/Security/CWE-322/go.mod‎ql/test/experimental/CWE-322/go.mod renamed to ql/test/query-tests/Security/CWE-322/go.mod
@@ -0,0 +1,2 @@
+lgtm,codescanning
+* Query "Use of insecure HostKeyCallback implementation" (`go/insecure-hostkeycallback`) is promoted from experimental status. This checks for insecurely omitting SSH host-key verification.
@@ -0,0 +1 @@
+Security/CWE-322/InsecureHostKeyCallback.ql
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,2 @@`
	`1`	`+lgtm,codescanning`
	`2`	+* Query "Use of insecure HostKeyCallback implementation" (`go/insecure-hostkeycallback`) is promoted from experimental status. This checks for insecurely omitting SSH host-key verification.
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1 @@`
	`1`	`+Security/CWE-322/InsecureHostKeyCallback.ql`