@@ -30,11 +30,11 @@ module KindValidation<KindValidationConfigSig Config> {
3030 "js-injection" , "ldap-injection" , "log-injection" , "path-injection" , "request-forgery" ,
3131 "sql-injection" , "url-redirection" ,
3232 // Java-only currently, but may be shared in the future
33- "bean-validation" , "credentials-password " , "credentials-username " , "crypto-parameter " ,
34- "fragment-injection " , "groovy-injection " , "hostname-verification " , "information-leak " ,
35- "intent-redirection " , "jexl -injection" , "jndi -injection" , "mvel-injection " ,
36- "ognl-injection " , "pending-intents " , "response-splitting " , "trust-boundary-violation " ,
37- "template-injection" , "xpath-injection" , " xslt-injection",
33+ "bean-validation" , "crypto-parameter " , "fragment-injection " , "groovy-injection " ,
34+ "hostname-verification " , "information-leak " , "intent-redirection " , "jexl-injection " ,
35+ "jndi-injection " , "mvel -injection" , "ognl -injection" , "pending-intents " ,
36+ "response-splitting " , "trust-boundary-violation " , "template-injection " , "xpath-injection " ,
37+ "xslt-injection" ,
3838 // JavaScript-only currently, but may be shared in the future
3939 "mongodb.sink" , "nosql-injection" , "unsafe-deserialization" ,
4040 // Swift-only currently, but may be shared in the future
@@ -44,11 +44,9 @@ module KindValidation<KindValidationConfigSig Config> {
4444 or
4545 this .matches ( [
4646 // shared
47- "encryption-%" , "qltest%" , "test-%" ,
47+ "credentials-%" , " encryption-%", "qltest%" , "test-%" ,
4848 // Java-only currently, but may be shared in the future
4949 "regex-use%" ,
50- // JavaScript-only currently, but may be shared in the future
51- "credentials-%" ,
5250 // Swift-only currently, but may be shared in the future
5351 "%string-%length" , "weak-hash-input-%"
5452 ] )
0 commit comments