Skip to content

Community-verify one CWE to OWASP Top 10 mapping #4

Description

@Synvoya

Goal

Independently verify one existing CWE to OWASP Top 10 mapping and move it from maintainer-policy-reviewed to community-verified.

CodeInspectus currently reports the verification state honestly; community review is needed before any mapping can carry the strongest status.

Acceptance criteria

  • Choose one mapping currently documented in docs/COMPLIANCE-RATIONALE.md.
  • Cite the relevant primary OWASP source and include a short supporting excerpt within copyright limits.
  • Explain why the specific CWE/rule belongs under that OWASP category; do not rely on name similarity alone.
  • Update the mapping state and the aggregate verification count in every documented location.
  • Use the compliance-mapping PR template.
  • Do not change detection behavior in this contribution.

Metadata

Metadata

Assignees

No one assigned

    Labels

    documentationImprovements or additions to documentationgood first issueGood for newcomershelp wantedExtra attention is needed

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions