Java: Fix Qhelp

intrigus · intrigus · commit 502e4c39f5ce · 2021-01-11T13:42:08.000+01:00
diff --git a/java/ql/src/Security/CWE/CWE-297/UnsafeHostnameVerification.qhelp b/java/ql/src/Security/CWE/CWE-297/UnsafeHostnameVerification.qhelp
@@ -22,9 +22,8 @@ An attack would look like this:
 <recommendation>
 <p>
 Do not use an open <code>HostnameVerifier</code>.
+If you use an open verifier to solve a configuration problem with TLS/HTTPS you should solve the configuration problem instead.
 </p>
-<li>If you use an open verifier to solve a configuration problem with TLS/HTTPS you should solve the configuration problem instead.
-</li>
 
 </recommendation>
 
