Swift: Query descriptions and metadata.

geoffw0 · geoffw0 · commit 926da4bedce9 · 2022-08-25T22:52:19.000+01:00
diff --git a/swift/ql/src/queries/Security/CWE-311/CleartextStorageDatabase.ql b/swift/ql/src/queries/Security/CWE-311/CleartextStorageDatabase.ql
@@ -1,11 +1,12 @@
 /**
  * @name Cleartext storage of sensitive information in a local database
- * @description TODO
+ * @description Storing sensitive information in a non-encrypted
+ *              database can expose it to an attacker.
  * @kind path-problem
- * @problem.severity TODO
- * @security-severity TODO
- * @precision TODO
- * @id swift/TODO
+ * @problem.severity warning
+ * @security-severity 7.5
+ * @precision medium
+ * @id swift/cleartext-storage-database
  * @tags security
  *       external/cwe/cwe-312
  */
diff --git a/swift/ql/src/queries/Security/CWE-311/CleartextTransmission.ql b/swift/ql/src/queries/Security/CWE-311/CleartextTransmission.ql
@@ -1,11 +1,12 @@
 /**
  * @name Cleartext transmission of sensitive information
- * @description TODO
+ * @description Transmitting sensitive information across a network in
+ *              cleartext can expose it to an attacker.
  * @kind path-problem
- * @problem.severity TODO
- * @security-severity TODO
- * @precision TODO
- * @id swift/TODO
+ * @problem.severity warning
+ * @security-severity 7.5
+ * @precision high
+ * @id swift/cleartext-transmission
  * @tags security
  *       external/cwe/cwe-319
  */
