Overview
Security rules define the code vulnerabilities Cysmiq can detect. This page shows coverage by impact category and language. Secrets scanning is documented separately in Secrets.Impact coverage by language
| Impact | JavaScript | TypeScript | Python | Java | Go | PHP | C# |
|---|---|---|---|---|---|---|---|
| Execute Commands | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
| Takeover Accounts | - | - | - | Yes | - | Yes | Yes |
| Gain Access | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
| Access Data | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
| Access Files | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
| Intercept Traffic | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
| Insufficient Data Protection | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
| Bypass Cryptographic Controls | Yes | Yes | - | Yes | Yes | - | Yes |
| Facilitate Client-side Attacks | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
| Access Application State | - | - | - | - | Yes | Yes | Yes |
| Evade Detection | - | - | - | Yes | - | - | - |
| Degrade Performance | Yes | Yes | - | - | Yes | - | - |
Yesmeans at least one rule maps to the impact for that language-means no current coverage- Coverage includes core language rules plus all library rule packs
- Obtain Secrets is covered by secrets scanning and omitted here
- See Impacts for CWE mappings
Library rule packs
Library rule packs add coverage for specific frameworks and libraries beyond core language rules.- JavaScript / TypeScript
- Python
- Java
- Go
- PHP
- C#
- YAML