From fbfb5b036b510a2df86260a3300c7756d5b60ac0 Mon Sep 17 00:00:00 2001
From: PLRoman <plr0man@users.noreply.github.com>
Date: Fri, 10 Jan 2020 13:17:18 -0600
Subject: [PATCH 01/54] Revise Sensitive Data Exposure > Critically Sensitive
 Data (#271)

---
 CHANGELOG.md                                  |  9 +++++
 deprecated-node-mapping.json                  |  9 +++++
 mappings/cvss_v3/cvss_v3.json                 | 24 ++++++++++--
 mappings/cwe/cwe.json                         | 13 +------
 .../remediation_advice.json                   |  9 +----
 vulnerability-rating-taxonomy.json            | 38 +++++++++++++++----
 6 files changed, 73 insertions(+), 29 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 1d680fe5..5932712d 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -5,8 +5,17 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 
 ## [Unreleased]
 ### Added
+- sensitive_data_exposure.disclosure_of_secrets.for_publicly_accessible_asset
+- sensitive_data_exposure.disclosure_of_secrets.for_internal_asset
+- sensitive_data_exposure.disclosure_of_secrets.pay_per_use_abuse
+- sensitive_data_exposure.disclosure_of_secrets.intentionally_public_sample_or_invalid
+- sensitive_data_exposure.disclosure_of_secrets.data_traffic_spam
+- sensitive_data_exposure.disclosure_of_secrets.non_corporate_user
 
 ### Removed
+- sensitive_data_exposure.critically_sensitive_data.password_disclosure
+- sensitive_data_exposure.critically_sensitive_data.private_api_keys
+- sensitive_data_exposure.critically_sensitive_data
 
 ### Changed
 
diff --git a/deprecated-node-mapping.json b/deprecated-node-mapping.json
index 73d7fdc0..3040d3e5 100644
--- a/deprecated-node-mapping.json
+++ b/deprecated-node-mapping.json
@@ -145,5 +145,14 @@
   },
   "cross_site_scripting_xss.ie_only.older_version_ie11": {
     "1.7": "cross_site_scripting_xss.ie_only.older_version_ie_eleven"
+  },
+  "sensitive_data_exposure.critically_sensitive_data.password_disclosure": {
+    "1.9": "sensitive_data_exposure.disclosure_of_secrets"
+  },
+  "sensitive_data_exposure.critically_sensitive_data.private_api_keys": {
+    "1.9": "sensitive_data_exposure.disclosure_of_secrets"
+  },
+  "sensitive_data_exposure.critically_sensitive_data": {
+    "1.9": "sensitive_data_exposure"
   }
 }
diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index 51165445..32d6c3ff 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -397,15 +397,31 @@
       "id": "sensitive_data_exposure",
       "children": [
         {
-          "id": "critically_sensitive_data",
+          "id": "disclosure_of_secrets",
           "children": [
             {
-              "id": "password_disclosure",
+              "id": "for_publicly_accessible_asset",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"
             },
             {
-              "id": "private_api_keys",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"
+              "id": "for_internal_asset",
+              "cvss_v3": "AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L"
+            },
+            {
+              "id": "pay_per_use_abuse",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"
+            },
+            {
+              "id": "intentionally_public_sample_or_invalid",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+            },
+            {
+              "id": "data_traffic_spam",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+            },
+            {
+              "id": "non_corporate_user",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
             }
           ]
         },
diff --git a/mappings/cwe/cwe.json b/mappings/cwe/cwe.json
index 8da3c098..def4770c 100644
--- a/mappings/cwe/cwe.json
+++ b/mappings/cwe/cwe.json
@@ -227,17 +227,8 @@
       "cwe": ["CWE-934"],
       "children": [
         {
-          "id": "critically_sensitive_data",
-          "children": [
-            {
-              "id": "password_disclosure",
-              "cwe": ["CWE-522"]
-            },
-            {
-              "id": "private_api_keys",
-              "cwe": ["CWE-522"]
-            }
-          ]
+          "id": "disclosure_of_secrets",
+          "cwe": ["CWE-522"]
         },
         {
           "id": "exif_geolocation_data_not_stripped_from_uploaded_images",
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index b6e25de2..e4fbbf71 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -737,13 +737,8 @@
       ],
       "children": [
         {
-          "id": "critically_sensitive_data",
-          "children": [
-            {
-              "id": "private_api_keys",
-              "remediation_advice": "1. Do not store private API keys in source code that is publicly accessible such as in a public GitHub repository.\n2. Critically sensitive data should not be sent over cleartext. Make sure to only use `HTTPS` whenever transmitting private API keys.\n3. Browser headers are set to not cache when the sensitive data is presented to end-user."
-            }
-          ]
+          "id": "disclosure_of_secrets",
+          "remediation_advice": "1. Do not store secrets in source code that is publicly accessible such as in a public GitHub repository.\n2. Critically sensitive data should not be transmitted in cleartext. Make sure to only use `HTTPS` whenever transmitting passwords and private API keys.\n3. Set appropriate headers to prevent caching of sensitive data when served to end-user."
         },
         {
           "id": "exif_geolocation_data_not_stripped_from_uploaded_images",
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index d9d73fe6..b5ef585a 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -799,21 +799,45 @@
       "type": "category",
       "children": [
         {
-          "id": "critically_sensitive_data",
-          "name": "Critically Sensitive Data",
+          "id": "disclosure_of_secrets",
+          "name": "Disclosure of Secrets",
           "type": "subcategory",
           "children": [
             {
-              "id": "password_disclosure",
-              "name": "Password Disclosure",
+              "id": "for_publicly_accessible_asset",
+              "name": "For Publicly Accessible Asset",
               "type": "variant",
               "priority": 1
             },
             {
-              "id": "private_api_keys",
-              "name": "Private API Keys",
+              "id": "for_internal_asset",
+              "name": "For Internal Asset",
               "type": "variant",
-              "priority": 1
+              "priority": 3
+            },
+            {
+              "id": "pay_per_use_abuse",
+              "name": "Pay-Per-Use Abuse",
+              "type": "variant",
+              "priority": 4
+            },
+            {
+              "id": "intentionally_public_sample_or_invalid",
+              "name": "Intentionally Public, Sample or Invalid",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "data_traffic_spam",
+              "name": "Data/Traffic Spam",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "non_corporate_user",
+              "name": "Non-Corporate User",
+              "type": "variant",
+              "priority": 5
             }
           ]
         },

From b8d11e29f484e62f8d3b42e9afafbecf5a31ae45 Mon Sep 17 00:00:00 2001
From: PLRoman <plr0man@users.noreply.github.com>
Date: Tue, 18 Feb 2020 14:42:28 -0600
Subject: [PATCH 02/54] Add Server-Side Template Injection (SSTI) (#275)

---
 CHANGELOG.md                                  |  2 ++
 mappings/cvss_v3/cvss_v3.json                 | 13 +++++++++++++
 mappings/cwe/cwe.json                         |  4 ++++
 .../remediation_advice.json                   |  7 +++++++
 vulnerability-rating-taxonomy.json            | 19 +++++++++++++++++++
 5 files changed, 45 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 5932712d..ddfd5796 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -11,6 +11,8 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - sensitive_data_exposure.disclosure_of_secrets.intentionally_public_sample_or_invalid
 - sensitive_data_exposure.disclosure_of_secrets.data_traffic_spam
 - sensitive_data_exposure.disclosure_of_secrets.non_corporate_user
+- server_side_injection.ssti.basic
+- server_side_injection.ssti.custom
 
 ### Removed
 - sensitive_data_exposure.critically_sensitive_data.password_disclosure
diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index 32d6c3ff..b86763e0 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -290,6 +290,19 @@
               "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"
             }
           ]
+        },
+        {
+          "id": "ssti",
+          "children": [
+            {
+              "id": "basic",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
+            },
+            {
+              "id": "custom",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
+            }
+          ]
         }
       ]
     },
diff --git a/mappings/cwe/cwe.json b/mappings/cwe/cwe.json
index def4770c..8aa0707d 100644
--- a/mappings/cwe/cwe.json
+++ b/mappings/cwe/cwe.json
@@ -172,6 +172,10 @@
               "cwe": ["CWE-1007"]
             }
           ]
+        },
+        {
+          "id": "ssti",
+          "cwe": ["CWE-94"]
         }
       ]
     },
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index e4fbbf71..2ef7f5de 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -636,6 +636,13 @@
               ]
             }
           ]
+        },
+        {
+          "id": "ssti",
+          "remediation_advice": "1. Wherever possible, avoid creating templates from user input. Passing user input into templates as parameters is normally a safe alternative.\n2.If supporting user-submitted templates is a business requirement, consider using a simple logic-less template engine such as Mustache or one provided by the native language like Python's Template. If this is not an option, review the chosen template engine's documentation for hardening advice, and consider rendering the template within a sandboxed execution environment.",
+          "references": [
+            "https://portswigger.net/kb/issues/00101080_server-side-template-injection"
+          ]
         }
       ]
     },
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index b5ef585a..196fa599 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -635,6 +635,25 @@
               "priority": 5
             }
           ]
+        },
+        {
+          "id": "ssti",
+          "name": "Server-Side Template Injection (SSTI)",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "basic",
+              "name": "Basic",
+              "type": "variant",
+              "priority": 4
+            },
+            {
+              "id": "custom",
+              "name": "Custom",
+              "type": "variant",
+              "priority": null
+            }
+          ]
         }
       ]
     },

From fab61847d96748c26441b48257a977c59cf60197 Mon Sep 17 00:00:00 2001
From: PLRoman <plr0man@users.noreply.github.com>
Date: Mon, 2 Mar 2020 20:52:35 -0600
Subject: [PATCH 03/54] Add Sensitive Data Exposure in local/sessionStorage
 (#276)

---
 CHANGELOG.md                                  |  2 ++
 mappings/cvss_v3/cvss_v3.json                 | 13 +++++++++++++
 mappings/cwe/cwe.json                         |  4 ++++
 .../remediation_advice.json                   |  7 +++++++
 vulnerability-rating-taxonomy.json            | 19 +++++++++++++++++++
 5 files changed, 45 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index ddfd5796..ab3f052b 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -13,6 +13,8 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - sensitive_data_exposure.disclosure_of_secrets.non_corporate_user
 - server_side_injection.ssti.basic
 - server_side_injection.ssti.custom
+- sensitive_data_exposure.via_localstorage_sessionstorage.sensitive_token
+- sensitive_data_exposure.via_localstorage_sessionstorage.non_sensitive_token
 
 ### Removed
 - sensitive_data_exposure.critically_sensitive_data.password_disclosure
diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index b86763e0..db821733 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -519,6 +519,19 @@
         {
           "id": "json_hijacking",
           "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "via_localstorage_sessionstorage",
+          "children": [
+            {
+              "id": "sensitive_token",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
+            },
+            {
+              "id": "non_sensitive_token",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"
+            }
+          ]
         }
       ]
     },
diff --git a/mappings/cwe/cwe.json b/mappings/cwe/cwe.json
index 8aa0707d..2ecb4ab1 100644
--- a/mappings/cwe/cwe.json
+++ b/mappings/cwe/cwe.json
@@ -261,6 +261,10 @@
         {
           "id": "weak_password_reset_implementation",
           "cwe": ["CWE-640"]
+        },
+        {
+          "id": "via_localstorage_sessionstorage",
+          "cwe": ["CWE-922"]
         }
       ]
     },
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index 2ef7f5de..22a07c54 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -830,6 +830,13 @@
           "references": [
             "http://www.thespanner.co.uk/2011/05/30/json-hijacking/"
           ]
+        },
+        {
+          "id": "via_localstorage_sessionstorage",
+          "remediation_advice": "Do not store anything sensitive in localStorage and any critical data in sessionStorage. Stick with properly secured cookies utilizing HTTPOnly and Secure flags",
+          "references": [
+            "http://michael-coates.blogspot.com/2010/07/html5-local-storage-and-xss.html"
+          ]
         }
       ]
     },
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index 196fa599..f36caa89 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1027,6 +1027,25 @@
           "name": "JSON Hijacking",
           "type": "subcategory",
           "priority": 5
+        },
+        {
+          "id": "via_localstorage_sessionstorage",
+          "name": "Via localStorage/sessionStorage",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "sensitive_token",
+              "name": "Sensitive Token",
+              "type": "variant",
+              "priority": 4
+            },
+            {
+              "id": "non_sensitive_token",
+              "name": "Non-Sensitive Token",
+              "type": "variant",
+              "priority": 5
+            }
+          ]
         }
       ]
     },

From 897fbb008ba029c8221fb851d3000d00e3bd7f3a Mon Sep 17 00:00:00 2001
From: PLRoman <plr0man@users.noreply.github.com>
Date: Thu, 23 Apr 2020 14:51:51 -0500
Subject: [PATCH 04/54] Add Broken Link Hijacking (#277)

Co-authored-by: Barnett Klane <barnett.klane@me.com>
---
 CHANGELOG.md                                        | 1 +
 mappings/cvss_v3/cvss_v3.json                       | 4 ++++
 mappings/cwe/cwe.json                               | 1 +
 mappings/remediation_advice/remediation_advice.json | 4 ++++
 vulnerability-rating-taxonomy.json                  | 6 ++++++
 5 files changed, 16 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index ab3f052b..ebe95872 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -15,6 +15,7 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - server_side_injection.ssti.custom
 - sensitive_data_exposure.via_localstorage_sessionstorage.sensitive_token
 - sensitive_data_exposure.via_localstorage_sessionstorage.non_sensitive_token
+- server_side_injection.content_spoofing.impersonation_via_broken_link_hijacking
 
 ### Removed
 - sensitive_data_exposure.critically_sensitive_data.password_disclosure
diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index db821733..d5bc63b2 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -277,6 +277,10 @@
               "id": "iframe_injection",
               "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N"
             },
+            {
+              "id": "impersonation_via_broken_link_hijacking",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"
+            },
             {
               "id": "external_authentication_injection",
               "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"
diff --git a/mappings/cwe/cwe.json b/mappings/cwe/cwe.json
index 2ecb4ab1..8450d1ec 100644
--- a/mappings/cwe/cwe.json
+++ b/mappings/cwe/cwe.json
@@ -166,6 +166,7 @@
         },
         {
           "id": "content_spoofing",
+          "cwe": ["CWE-451"],
           "children": [
             {
               "id": "homograph_idn_based",
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index 22a07c54..93c68d3f 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -590,6 +590,10 @@
                 "http://resources.infosecinstitute.com/iframe-security-risk/"
               ]
             },
+            {
+              "id": "impersonation_via_broken_link_hijacking",
+              "remediation_advice": "In order to prevent this type of injection consider the following solutions:\n\n1. Keep track of company's public 3rd party accounts, that includes social media. Whenever one is deleted, make sure it is not referenced in the application\n2. Monitor all hyperlinks pointing to 3rd party resources, as well as any other external references for that matter, and make sure that they do not become invalid, e.g. check for change in HTTP response code. In many cases it may be possible for anyone to claim such URL's and share new content.\n3. Always treat all user input as untrusted data."
+            },
             {
               "id": "external_authentication_injection",
               "remediation_advice": "Even if unsafe HTML tags like `<script>` or `<iframe>` are filtered out from user input, it is possible to inject `HTTP 401` authentication prompt into a HTML page via tags like `<img>`. In order to prevent this type of injection consider the following solutions:\n\n1. Always treat all user input as untrusted data.\n2. Always input or output encode all data coming into or out of the application.\n3. Always whitelist allowed characters and seldom use blacklisting of characters unless in certain use cases.\n4. Always use a well known and security encoding API for input and output encoding such as the `OWASP ESAPI`.\n5. Never try to write input and output encoders unless absolutely necessary. Chances are that someone has already written a good one.",
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index f36caa89..d7caaa14 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -592,6 +592,12 @@
               "type": "variant",
               "priority": 3
             },
+            {
+              "id": "impersonation_via_broken_link_hijacking",
+              "name": "Impersonation via Broken Link Hijacking",
+              "type": "variant",
+              "priority": 4
+            },
             {
               "id": "external_authentication_injection",
               "name": "External Authentication Injection",

From c2ea119bec37891c447e8a450418ac8ec86cd05e Mon Sep 17 00:00:00 2001
From: Adam David <adamrdavid@gmail.com>
Date: Thu, 23 Apr 2020 13:01:06 -0700
Subject: [PATCH 05/54] Ignore vscode config files (#285)

---
 .gitignore | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.gitignore b/.gitignore
index f3d74a9a..5f703bab 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,2 +1,5 @@
 *.pyc
 *~
+
+# vscode config
+.vscode/
\ No newline at end of file

From aae2453680e01082d8db553993720e2de902c061 Mon Sep 17 00:00:00 2001
From: PLRoman <plr0man@users.noreply.github.com>
Date: Thu, 23 Apr 2020 15:04:30 -0500
Subject: [PATCH 06/54] Add lack of rate limiting on current password when
 changing password (#281)

Co-authored-by: Adam David <adamrdavid@gmail.com>
---
 CHANGELOG.md                                        | 1 +
 mappings/cvss_v3/cvss_v3.json                       | 4 ++++
 mappings/remediation_advice/remediation_advice.json | 4 ++++
 vulnerability-rating-taxonomy.json                  | 6 ++++++
 4 files changed, 15 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index ebe95872..5c130a1b 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -15,6 +15,7 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - server_side_injection.ssti.custom
 - sensitive_data_exposure.via_localstorage_sessionstorage.sensitive_token
 - sensitive_data_exposure.via_localstorage_sessionstorage.non_sensitive_token
+- server_security_misconfiguration.no_rate_limiting_on_form.change_password
 - server_side_injection.content_spoofing.impersonation_via_broken_link_hijacking
 
 ### Removed
diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index d5bc63b2..79136076 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -100,6 +100,10 @@
             {
               "id": "login",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "change_password",
+              "cvss_v3": "AV:P/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L"
             }
           ]
         },
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index 93c68d3f..d5c6234d 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -198,6 +198,10 @@
             {
               "id": "sms_triggering",
               "remediation_advice": "1. Use a `CAPTCHA` to limit SMS triggering requests.\n2. Use a rate limit per IP address to throttle the amount of SMS triggering requests that can be made in a certain amount of time."
+            },
+            {
+              "id": "change_password",
+              "remediation_advice": "1. Use a `CAPTCHA` to limit current password check requests sent when changing account password.\n2. Use a rate limit per IP address to throttle the amount of said requests that can be made in a certain amount of time."
             }
           ]
         },
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index d7caaa14..7578d217 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -197,6 +197,12 @@
               "name": "SMS-Triggering",
               "type": "variant",
               "priority": 4
+            },
+            {
+              "id": "change_password",
+              "name": "Change Password",
+              "type": "variant",
+              "priority": 5
             }
           ]
         },

From 5911b2c8e3e08537608d52c7a16e7bc9520f803c Mon Sep 17 00:00:00 2001
From: PLRoman <plr0man@users.noreply.github.com>
Date: Fri, 24 Apr 2020 12:49:55 -0500
Subject: [PATCH 07/54] Add Auto Backup Allowed by Default (#284)

Co-authored-by: Adam David <adamrdavid@gmail.com>
---
 CHANGELOG.md                                        | 1 +
 mappings/cvss_v3/cvss_v3.json                       | 4 ++++
 mappings/remediation_advice/remediation_advice.json | 7 +++++++
 vulnerability-rating-taxonomy.json                  | 6 ++++++
 4 files changed, 18 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 5c130a1b..3afca03c 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -15,6 +15,7 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - server_side_injection.ssti.custom
 - sensitive_data_exposure.via_localstorage_sessionstorage.sensitive_token
 - sensitive_data_exposure.via_localstorage_sessionstorage.non_sensitive_token
+- mobile_security_misconfiguration.auto_backup_allowed_by_default
 - server_security_misconfiguration.no_rate_limiting_on_form.change_password
 - server_side_injection.content_spoofing.impersonation_via_broken_link_hijacking
 
diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index 79136076..7ca997eb 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -868,6 +868,10 @@
         {
           "id": "clipboard_enabled",
           "cvss_v3": "AV:L/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N"
+        },
+        {
+          "id": "auto_backup_allowed_by_default",
+          "cvss_v3": "AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N"
         }
       ]
     },
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index d5c6234d..d3f27dbf 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -1233,6 +1233,13 @@
         {
           "id": "clipboard_enabled",
           "remediation_advice": "Ensure that copy/paste functionality is disabled on sensitive content like credit card numbers, social security numbers etc. as other apps on the same device can access data stored in clipboard.\nThe example below disables clipboard for the `textField` TextView in Android:\n```java\ntextField.setCustomSelectionActionModeCallback(new ActionMode.Callback() {\n  public boolean onCreateActionMode(ActionMode actionMode, Menu menu) {\n    return false;\n  }\n\n  public boolean onPrepareActionMode(ActionMode actionMode, Menu menu) {\n    return false;\n  }\n\n  public boolean onActionItemClicked(ActionMode actionMode, MenuItem item) {\n    return false;\n  }\n\n  public void onDestroyActionMode(ActionMode actionMode) {\n  }\n});\ntextField.setLongClickable(false);\ntextField.setTextIsSelectable(false);\n```\nThe example below disables clipboard for UITextField in iOS:\n```swift\noverride public func canPerformAction(_ action: Selector, withSender sender: Any?) -> Bool {\n  if action == #selector(copy(_:)) || action == #selector(paste(_:)) {\n    return false\n  }\n  return true\n}\n```"
+        },
+        {
+          "id": "auto_backup_allowed_by_default",
+          "remediation_advice": "Consider disabling auto backup of any sensitive application data. In Android you can disable auto backup by setting `android:allowBackup` in your app manifest file to false.",
+          "references": [
+            "https://developer.android.com/guide/topics/data/autobackup"
+          ]
         }
       ]
     },
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index 7578d217..9cf19273 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1853,6 +1853,12 @@
           "name": "Clipboard Enabled",
           "type": "subcategory",
           "priority": 5
+        },
+        {
+          "id": "auto_backup_allowed_by_default",
+          "name": "Auto Backup Allowed by Default",
+          "type": "subcategory",
+          "priority": 5
         }
       ]
     },

From e3a16ed0cffd902dc455ba5b012fcf66f126a771 Mon Sep 17 00:00:00 2001
From: PLRoman <plr0man@users.noreply.github.com>
Date: Tue, 12 May 2020 19:03:12 -0500
Subject: [PATCH 08/54] Add Flash Based CSRF (#287)

---
 CHANGELOG.md                       |  2 ++
 mappings/cvss_v3/cvss_v3.json      | 13 +++++++++++++
 vulnerability-rating-taxonomy.json | 19 +++++++++++++++++++
 3 files changed, 34 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 3afca03c..9d14feae 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -18,6 +18,8 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - mobile_security_misconfiguration.auto_backup_allowed_by_default
 - server_security_misconfiguration.no_rate_limiting_on_form.change_password
 - server_side_injection.content_spoofing.impersonation_via_broken_link_hijacking
+- cross_site_request_forgery_csrf.flash_based.high_impact
+- cross_site_request_forgery_csrf.flash_based.low_impact
 
 ### Removed
 - sensitive_data_exposure.critically_sensitive_data.password_disclosure
diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index 7ca997eb..b38bba53 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -681,6 +681,19 @@
         {
           "id": "csrf_token_not_unique_per_request",
           "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "flash_based",
+          "children": [
+            {
+              "id": "high_impact",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:N"
+            },
+            {
+              "id": "low_impact",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"
+            }
+          ]
         }
       ]
     },
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index 9cf19273..ece54e4c 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1302,6 +1302,25 @@
           "name": "CSRF Token Not Unique Per Request",
           "type": "subcategory",
           "priority": 5
+        },
+        {
+          "id": "flash_based",
+          "name": "Flash-Based",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "high_impact",
+              "name": "High Impact",
+              "type": "variant",
+              "priority": 4
+            },
+            {
+              "id": "low_impact",
+              "name": "Low Impact",
+              "type": "variant",
+              "priority": 5
+            }
+          ]
         }
       ]
     },

From f03c8a7a04d1cadcd03b37d6e6cc70dacf9f40d5 Mon Sep 17 00:00:00 2001
From: PLRoman <plr0man@users.noreply.github.com>
Date: Thu, 21 May 2020 16:06:45 -0500
Subject: [PATCH 09/54] Add Password Policy Bypass (#290)

* Add Password Policy Bypass

* Fix Pass Policy JSON validation error
---
 CHANGELOG.md                                        | 1 +
 mappings/cwe/cwe.json                               | 4 ++++
 mappings/remediation_advice/remediation_advice.json | 4 ++++
 vulnerability-rating-taxonomy.json                  | 6 ++++++
 4 files changed, 15 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 9d14feae..e22d5d0a 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -20,6 +20,7 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - server_side_injection.content_spoofing.impersonation_via_broken_link_hijacking
 - cross_site_request_forgery_csrf.flash_based.high_impact
 - cross_site_request_forgery_csrf.flash_based.low_impact
+- insufficient_security_configurability.password_policy_bypass
 
 ### Removed
 - sensitive_data_exposure.critically_sensitive_data.password_disclosure
diff --git a/mappings/cwe/cwe.json b/mappings/cwe/cwe.json
index 8450d1ec..b79e7a40 100644
--- a/mappings/cwe/cwe.json
+++ b/mappings/cwe/cwe.json
@@ -337,6 +337,10 @@
           "id": "no_password_policy",
           "cwe": ["CWE-521"]
         },
+        {
+          "id": "password_policy_bypass",
+          "cwe": ["CWE-521"]
+        },
         {
           "id": "weak_password_reset_implementation",
           "cwe": ["CWE-640"]
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index d3f27dbf..3044f0d9 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -1022,6 +1022,10 @@
             "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Authentication_Cheat_Sheet.md#implement-proper-password-strength-controls"
           ]
         },
+        {
+          "id": "password_policy_bypass",
+          "remediation_advice": "Consider eliminating any potential for users bypassing your platform's password policy enforcement. For instance if the password policy is only enforced on the client side, consider adding a corresponding validation on the server side."
+        },
         {
           "id": "weak_password_reset_implementation",
           "references": [
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index ece54e4c..fb143a35 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1511,6 +1511,12 @@
           "type": "subcategory",
           "priority": 4
         },
+        {
+          "id": "password_policy_bypass",
+          "name": "Password Policy Bypass",
+          "type": "subcategory",
+          "priority": 5
+        },
         {
           "id": "weak_password_reset_implementation",
           "name": "Weak Password Reset Implementation",

From d7aa52b314edce2bc3dcd6bffbf7e690663a3391 Mon Sep 17 00:00:00 2001
From: Barnett Klane <barnett.klane@me.com>
Date: Fri, 29 May 2020 19:04:06 -0700
Subject: [PATCH 10/54] Cut v1.9 (#291)

* Cut v1.9

* Update changelog for v1.9
---
 CHANGELOG.md                       | 7 +++++++
 vulnerability-rating-taxonomy.json | 2 +-
 2 files changed, 8 insertions(+), 1 deletion(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index e22d5d0a..bd34030f 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -5,6 +5,13 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 
 ## [Unreleased]
 ### Added
+
+### Removed
+
+### Changed
+
+## [v1.9](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.8...v1.9) - 2020-05-22
+### Added
 - sensitive_data_exposure.disclosure_of_secrets.for_publicly_accessible_asset
 - sensitive_data_exposure.disclosure_of_secrets.for_internal_asset
 - sensitive_data_exposure.disclosure_of_secrets.pay_per_use_abuse
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index fb143a35..d72d5abc 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1,6 +1,6 @@
 {
   "metadata": {
-    "release_date": "2019-09-25T00:00:00+00:00"
+    "release_date": "2020-05-22T00:00:00+00:00"
   },
   "content": [
     {

From 9ed440aef4da4dab21a7a107c4dacb8950e42f05 Mon Sep 17 00:00:00 2001
From: PLRoman <plr0man@users.noreply.github.com>
Date: Thu, 30 Jul 2020 15:02:47 -0500
Subject: [PATCH 11/54] Add 2FA Code Invalidation Issues (#296)

---
 CHANGELOG.md                                        |  2 ++
 mappings/remediation_advice/remediation_advice.json |  2 +-
 vulnerability-rating-taxonomy.json                  | 12 ++++++++++++
 3 files changed, 15 insertions(+), 1 deletion(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index bd34030f..89426e51 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -5,6 +5,8 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 
 ## [Unreleased]
 ### Added
+- insufficient_security_configurability.weak_two_fa_implementation.two_fa_code_is_not_updated_after_new_code_is_requested
+- insufficient_security_configurability.weak_two_fa_implementation.old_two_fa_code_is_not_invalidated_after_new_code_is_generated
 
 ### Removed
 
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index 3044f0d9..90655182 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -1078,7 +1078,7 @@
         },
         {
           "id": "weak_two_fa_implementation",
-          "remediation_advice": "Ensure that the second factor authentication is properly configured and cannot be bypassed. 2FA secret should be rotated every time 2FA is reenabled by the user and not remain obtainable after 2FA is turned on. Additionally consider providing a 2FA failsafe mechanism so the users can safely recover their accounts."
+          "remediation_advice": "Ensure that the second factor authentication is properly configured, has sufficient rate limiting, and cannot be bypassed. 2FA secret should be rotated every time 2FA is reenabled by the user and not remain obtainable after 2FA is turned on. Additionally consider providing a 2FA failsafe mechanism so the users can safely recover their accounts."
         }
       ]
     },
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index d72d5abc..bb2835df 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1607,6 +1607,18 @@
               "name": "Missing Failsafe",
               "type": "variant",
               "priority": 5
+            },
+            {
+              "id": "two_fa_code_is_not_updated_after_new_code_is_requested",
+              "name": "2FA Code is Not Updated After New Code is Requested",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "old_two_fa_code_is_not_invalidated_after_new_code_is_generated",
+              "name": "Old 2FA Code is Not Invalidated After New Code is Generated",
+              "type": "variant",
+              "priority": 5
             }
           ]
         }

From e762cb0c25e7edce61e5a4c8c5a50015bcc64807 Mon Sep 17 00:00:00 2001
From: PLRoman <plr0man@users.noreply.github.com>
Date: Thu, 30 Jul 2020 16:49:47 -0500
Subject: [PATCH 12/54] Update Lack of Verifcation Email (#297)

Co-authored-by: Adam David <adamrdavid@gmail.com>
---
 CHANGELOG.md                                        | 2 ++
 deprecated-node-mapping.json                        | 3 +++
 mappings/remediation_advice/remediation_advice.json | 4 ++--
 vulnerability-rating-taxonomy.json                  | 4 ++--
 4 files changed, 9 insertions(+), 4 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 89426e51..fd1054a3 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -5,10 +5,12 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 
 ## [Unreleased]
 ### Added
+- insufficient_security_configurability.verification_of_contact_method_not_required
 - insufficient_security_configurability.weak_two_fa_implementation.two_fa_code_is_not_updated_after_new_code_is_requested
 - insufficient_security_configurability.weak_two_fa_implementation.old_two_fa_code_is_not_invalidated_after_new_code_is_generated
 
 ### Removed
+- insufficient_security_configurability.lack_of_verification_email
 
 ### Changed
 
diff --git a/deprecated-node-mapping.json b/deprecated-node-mapping.json
index 3040d3e5..2da8f87a 100644
--- a/deprecated-node-mapping.json
+++ b/deprecated-node-mapping.json
@@ -154,5 +154,8 @@
   },
   "sensitive_data_exposure.critically_sensitive_data": {
     "1.9": "sensitive_data_exposure"
+  },
+  "insufficient_security_configurability.lack_of_verification_email": {
+    "1.10": "insufficient_security_configurability.verification_of_contact_method_not_required"
   }
 }
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index 90655182..ddcdbf05 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -1060,8 +1060,8 @@
           ]
         },
         {
-          "id": "lack_of_verification_email",
-          "remediation_advice": "As a best practice, consider sending a verification email when a change is made, such as changing the account password or email."
+          "id": "verification_of_contact_method_not_required",
+          "remediation_advice": "As a best practice, consider verifying a method of contact, such as email or phone number when a new account is created or when there is an update to the contact information on record."
         },
         {
           "id": "lack_of_notification_email",
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index bb2835df..040d9600 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1561,8 +1561,8 @@
           ]
         },
         {
-          "id": "lack_of_verification_email",
-          "name": "Lack of Verification Email",
+          "id": "verification_of_contact_method_not_required",
+          "name": "Verification of Contact Method not Required",
           "type": "subcategory",
           "priority": 5
         },

From abfb00a24aa38e2a26e3df99f2fecd30325e6b7d Mon Sep 17 00:00:00 2001
From: PLRoman <plr0man@users.noreply.github.com>
Date: Thu, 3 Dec 2020 14:25:15 -0600
Subject: [PATCH 13/54] Add OAuth Account Squatting (#304)

* Add OAuth Account Squatting

* Add period at the end of remediation advice
---
 CHANGELOG.md                                        | 1 +
 mappings/cvss_v3/cvss_v3.json                       | 4 ++++
 mappings/remediation_advice/remediation_advice.json | 4 ++++
 vulnerability-rating-taxonomy.json                  | 6 ++++++
 4 files changed, 15 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index fd1054a3..2590f872 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -8,6 +8,7 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - insufficient_security_configurability.verification_of_contact_method_not_required
 - insufficient_security_configurability.weak_two_fa_implementation.two_fa_code_is_not_updated_after_new_code_is_requested
 - insufficient_security_configurability.weak_two_fa_implementation.old_two_fa_code_is_not_invalidated_after_new_code_is_generated
+- server_security_misconfiguration.oauth_misconfiguration.account_squatting
 
 ### Removed
 - insufficient_security_configurability.lack_of_verification_email
diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index b38bba53..7250e660 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -165,6 +165,10 @@
             {
               "id": "account_takeover",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
+            },
+            {
+              "id": "account_squatting",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"
             }
           ]
         },
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index ddcdbf05..f0e048b9 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -281,6 +281,10 @@
                 "https://tools.ietf.org/html/rfc6819"
               ]
             },
+            {
+              "id": "account_squatting",
+              "remediation_advice": "In case of OAuth based account registration, ensure that if there is a preexisting account for the same email address and is to be merged, that it will no longer be accessible with its old password."
+            },
             {
               "id": "missing_state_parameter",
               "remediation_advice": "The OAuth state parameter is a form of CSRF protection, ensure that it is in place and properly validated."
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index 040d9600..fe69a2d2 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -292,6 +292,12 @@
               "type": "variant",
               "priority": 2
             },
+            {
+              "id": "account_squatting",
+              "name": "Account Squatting",
+              "type": "variant",
+              "priority": 4
+            },
             {
               "id": "missing_state_parameter",
               "name": "Missing/Broken State Parameter",

From 2996fc8735a481c85cdf480f38b3e2e83841e202 Mon Sep 17 00:00:00 2001
From: PLRoman <plr0man@users.noreply.github.com>
Date: Fri, 4 Dec 2020 20:50:59 -0600
Subject: [PATCH 14/54] Revise Weak Login Function Severity Ratings (#305)

* Revise Weak Login Function Severity Ratings

* Fix diff - forgot to save file

Co-authored-by: Adam David <adamrdavid@gmail.com>
---
 CHANGELOG.md                       |  4 ++++
 deprecated-node-mapping.json       |  9 +++++++++
 mappings/cvss_v3/cvss_v3.json      | 12 ++----------
 vulnerability-rating-taxonomy.json | 16 ++--------------
 4 files changed, 17 insertions(+), 24 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 2590f872..d75819fe 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -8,10 +8,14 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - insufficient_security_configurability.verification_of_contact_method_not_required
 - insufficient_security_configurability.weak_two_fa_implementation.two_fa_code_is_not_updated_after_new_code_is_requested
 - insufficient_security_configurability.weak_two_fa_implementation.old_two_fa_code_is_not_invalidated_after_new_code_is_generated
+- broken_authentication_and_session_management.weak_login_function.over_http
 - server_security_misconfiguration.oauth_misconfiguration.account_squatting
 
 ### Removed
 - insufficient_security_configurability.lack_of_verification_email
+- broken_authentication_and_session_management.weak_login_function.https_not_available_or_http_by_default
+- broken_authentication_and_session_management.weak_login_function.http_and_https_available
+- broken_authentication_and_session_management.weak_login_function.lan_only
 
 ### Changed
 
diff --git a/deprecated-node-mapping.json b/deprecated-node-mapping.json
index 2da8f87a..1a5fb0f9 100644
--- a/deprecated-node-mapping.json
+++ b/deprecated-node-mapping.json
@@ -157,5 +157,14 @@
   },
   "insufficient_security_configurability.lack_of_verification_email": {
     "1.10": "insufficient_security_configurability.verification_of_contact_method_not_required"
+  },
+  "broken_authentication_and_session_management.weak_login_function.https_not_available_or_http_by_default": {
+    "1.10": "broken_authentication_and_session_management.weak_login_function.over_http"
+  },
+  "broken_authentication_and_session_management.weak_login_function.http_and_https_available": {
+    "1.10": "broken_authentication_and_session_management.weak_login_function.over_http"
+  },
+  "broken_authentication_and_session_management.weak_login_function.lan_only": {
+    "1.10": "broken_authentication_and_session_management.weak_login_function.over_http"
   }
 }
diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index 7250e660..e9bbd78b 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -349,16 +349,8 @@
               "cvss_v3": "AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"
             },
             {
-              "id": "lan_only",
-              "cvss_v3": "AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
-            },
-            {
-              "id": "http_and_https_available",
-              "cvss_v3": "AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"
-            },
-            {
-              "id": "https_not_available_or_http_by_default",
-              "cvss_v3": "AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
+              "id": "over_http",
+              "cvss_v3": "AV:A/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N"
             }
           ]
         },
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index fe69a2d2..86af5a4a 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -722,22 +722,10 @@
               "priority": 4
             },
             {
-              "id": "lan_only",
-              "name": "LAN Only",
-              "type": "variant",
-              "priority": 4
-            },
-            {
-              "id": "http_and_https_available",
-              "name": "HTTP and HTTPS Available",
+              "id": "over_http",
+              "name": "Over HTTP",
               "type": "variant",
               "priority": 4
-            },
-            {
-              "id": "https_not_available_or_http_by_default",
-              "name": "HTTPS not Available or HTTP by Default",
-              "type": "variant",
-              "priority": 3
             }
           ]
         },

From 2481b5a9f10a57527ece73e1a6242717435d15b7 Mon Sep 17 00:00:00 2001
From: Barnett Klane <barnett.klane@me.com>
Date: Tue, 15 Dec 2020 12:32:03 -0800
Subject: [PATCH 15/54] Fix Broken links/images in Readme (#311)

* Update README.md

* add branch parameter

* fix link to API
---
 README.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/README.md b/README.md
index d70661df..c89e198c 100644
--- a/README.md
+++ b/README.md
@@ -3,13 +3,13 @@
 </p>
 
 <p align="center">
-  <img src="https://badge.buildkite.com/c1825a6d2bed24dfa8d4b65bd43bab7502979ef0d7b4399e04.svg?branch=master" />
+  <img src="https://github.com/bugcrowd/vulnerability-rating-taxonomy/workflows/Validate%20VRT/badge.svg?branch=master" />
 </p>
 
 # Bugcrowd VRT
 The current VRT release is located at [https://bugcrowd.com/vrt](https://bugcrowd.com/vulnerability-rating-taxonomy) as both a searchable page and downloadable PDF.
 
-The VRT is also available via our API. Documentation and examples of VRT API usage may be found [here](https://docs.bugcrowd.com/reference#vulnerability-rating-taxonomy).
+The VRT is also available via our API. Documentation and examples of VRT API usage may be found [here](https://documentation.bugcrowd.com/reference#view-versions).
 
 ## Background
 At the beginning 2016, we released the Bugcrowd Vulnerability Rating Taxonomy (VRT) to provide a baseline vulnerability priority scale for bug hunters and organizations. Over the past year and a half this document has evolved to be a dynamic and valuable resource for the bug bounty community.

From 7e8a8f600c932160184938efc63ebfe49f0cd4db Mon Sep 17 00:00:00 2001
From: Adam David <adamrdavid@gmail.com>
Date: Thu, 17 Dec 2020 15:35:57 -0800
Subject: [PATCH 16/54] Generate and validate SCW artifacts (#272)

---
 .github/workflows/validate_artifacts.yml      |  40 +++
 .../workflows/{main.yml => validate_vrt.yml}  |   8 +-
 Dockerfile                                    |   2 +-
 README.md                                     |   3 +
 lib/artifacts/__init__.py                     |   0
 lib/artifacts/scw_artifact.py                 |  47 +++
 lib/generate_artifacts.py                     |   8 +
 {tests => lib}/requirements.txt               |   0
 lib/tests/__init__.py                         |   0
 .../tests}/test_deprecated_mapping.py         |   2 +-
 {tests => lib/tests}/test_vrt.py              |   4 +-
 lib/utils/__init__.py                         |   0
 {tests => lib/utils}/utils.py                 |   0
 lib/validate_artifacts.py                     |  22 ++
 validate_vrt.py => lib/validate_vrt.py        |   0
 remediation_training/scw_links.json           | 330 ++++++++++++++++++
 16 files changed, 458 insertions(+), 8 deletions(-)
 create mode 100644 .github/workflows/validate_artifacts.yml
 rename .github/workflows/{main.yml => validate_vrt.yml} (69%)
 create mode 100644 lib/artifacts/__init__.py
 create mode 100644 lib/artifacts/scw_artifact.py
 create mode 100644 lib/generate_artifacts.py
 rename {tests => lib}/requirements.txt (100%)
 create mode 100644 lib/tests/__init__.py
 rename {tests => lib/tests}/test_deprecated_mapping.py (98%)
 rename {tests => lib/tests}/test_vrt.py (97%)
 create mode 100644 lib/utils/__init__.py
 rename {tests => lib/utils}/utils.py (100%)
 create mode 100644 lib/validate_artifacts.py
 rename validate_vrt.py => lib/validate_vrt.py (100%)
 create mode 100755 remediation_training/scw_links.json

diff --git a/.github/workflows/validate_artifacts.yml b/.github/workflows/validate_artifacts.yml
new file mode 100644
index 00000000..9cf7b57a
--- /dev/null
+++ b/.github/workflows/validate_artifacts.yml
@@ -0,0 +1,40 @@
+name: Validate Artifacts
+
+on:
+  push:
+    branches: 
+      - master
+  release:
+    types:
+      - created
+      - edited
+      - unpublished
+
+jobs:
+  validate_scw_artifact:
+    name: Validate SCW Artifact
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v1
+      - name: Set up Python 3.7
+        uses: actions/setup-python@v1
+        with:
+          python-version: 3.7
+      - name: Install dependencies
+        run: |
+          python -m pip install --upgrade pip
+          pip install -r lib/requirements.txt
+      - name: Install requests library
+        run: |
+          pip install requests
+      - name: Create artifact json file
+        run: |
+          python3 -B lib/generate_artifacts.py
+      - name: Upload artifact
+        uses: actions/upload-artifact@v1
+        with:
+          name: Secure Code Warrior Links
+          path: scw_links.json
+      - name: Validate links
+        run: |
+          python3 -B lib/validate_artifacts.py
diff --git a/.github/workflows/main.yml b/.github/workflows/validate_vrt.yml
similarity index 69%
rename from .github/workflows/main.yml
rename to .github/workflows/validate_vrt.yml
index 4469a897..7b8378f3 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/validate_vrt.yml
@@ -16,14 +16,14 @@ jobs:
     - name: Install dependencies
       run: |
         python -m pip install --upgrade pip
-        pip install -r tests/requirements.txt
+        pip install -r lib/requirements.txt
     - name: Lint with flake8
       run: |
         pip install flake8
         # stop the build if there are Python syntax errors or undefined names
-        flake8 . --count --select=E9,F63,F7,F82 --show-source --statistics
+        flake8 ./lib --count --select=E9,F63,F7,F82 --show-source --statistics
         # exit-zero treats all errors as warnings. The GitHub editor is 127 chars wide
-        flake8 . --count --exit-zero --max-complexity=10 --max-line-length=127 --statistics
+        flake8 ./lib --count --exit-zero --max-complexity=10 --max-line-length=127 --statistics
     - name: Test with unittest
       run: |
-        python3 -B validate_vrt.py
+        python3 -B lib/validate_vrt.py
diff --git a/Dockerfile b/Dockerfile
index 12a05eb5..8824a941 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -3,4 +3,4 @@ FROM python:3.6
 RUN pip install jsonschema GitPython semantic_version
 
 WORKDIR /tmp/vrt
-CMD [ "python3", "-B" , "./validate_vrt.py" ]
+CMD [ "python3", "-B" , "./lib/validate_vrt.py" ]
diff --git a/README.md b/README.md
index c89e198c..e2d0f428 100644
--- a/README.md
+++ b/README.md
@@ -166,6 +166,9 @@ Each mapping should be setup in the following structure:
 - [CWE](mappings/cwe/cwe.json)
 - [Remediation Advice](mappings/remediation_advice/remediation_advice.json)
 
+#### Remediation Training
+- [Secure Code Warriors](remediation_training/)
+
 ## Supported Libraries
 - [Ruby](https://github.com/bugcrowd/vrt-ruby)
 
diff --git a/lib/artifacts/__init__.py b/lib/artifacts/__init__.py
new file mode 100644
index 00000000..e69de29b
diff --git a/lib/artifacts/scw_artifact.py b/lib/artifacts/scw_artifact.py
new file mode 100644
index 00000000..e1c7a698
--- /dev/null
+++ b/lib/artifacts/scw_artifact.py
@@ -0,0 +1,47 @@
+import json
+import requests
+import utils.utils
+
+BASE_SCW_URL = 'https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey='
+OUTPUT_FILENAME = 'scw_links.json'
+
+
+def scw_url(vrt_id):
+    return f'{BASE_SCW_URL}{vrt_id.replace(".", ":")}'
+
+
+def scw_mapping(vrt_id):
+    path = scw_url(vrt_id)
+    print('Fetching...')
+    response = requests.get(path)
+    if response.status_code == 200:
+        print(f'Exists: {path}')
+        return path + '&redirect=true'
+    else:
+        print(f'Not Found: {path}')
+        return None
+
+
+def join_vrt_id(parent_id, child_id):
+    return '.'.join([parent_id, child_id]) if parent_id is not None else child_id
+
+
+def generate_urls(vrt, content, parent_id=None):
+    for node in vrt:
+        vrt_id = join_vrt_id(parent_id, node['id'])
+        content[vrt_id] = scw_mapping(vrt_id)
+        if 'children' in node:
+            content.update(
+                generate_urls(
+                    node['children'],
+                    {},
+                    vrt_id
+                )
+            )
+
+    return content
+
+
+def write_artifact_file(mapping):
+    with open(OUTPUT_FILENAME, 'w') as outfile:
+        json.dump(mapping, outfile, indent=2, sort_keys=False)
diff --git a/lib/generate_artifacts.py b/lib/generate_artifacts.py
new file mode 100644
index 00000000..1c916073
--- /dev/null
+++ b/lib/generate_artifacts.py
@@ -0,0 +1,8 @@
+from utils import utils
+from artifacts import scw_artifact
+
+url_mapping = {}
+current_vrt = utils.get_json(utils.VRT_FILENAME)
+scw_artifact.write_artifact_file(
+  scw_artifact.generate_urls(current_vrt['content'], url_mapping)
+)
diff --git a/tests/requirements.txt b/lib/requirements.txt
similarity index 100%
rename from tests/requirements.txt
rename to lib/requirements.txt
diff --git a/lib/tests/__init__.py b/lib/tests/__init__.py
new file mode 100644
index 00000000..e69de29b
diff --git a/tests/test_deprecated_mapping.py b/lib/tests/test_deprecated_mapping.py
similarity index 98%
rename from tests/test_deprecated_mapping.py
rename to lib/tests/test_deprecated_mapping.py
index 7abf8ecb..d6e7c904 100644
--- a/tests/test_deprecated_mapping.py
+++ b/lib/tests/test_deprecated_mapping.py
@@ -1,4 +1,4 @@
-import utils
+from utils import utils
 import unittest
 from semantic_version import Version
 
diff --git a/tests/test_vrt.py b/lib/tests/test_vrt.py
similarity index 97%
rename from tests/test_vrt.py
rename to lib/tests/test_vrt.py
index 2af7ba76..ea78802f 100644
--- a/tests/test_vrt.py
+++ b/lib/tests/test_vrt.py
@@ -1,4 +1,4 @@
-import utils
+from utils import utils
 import unittest
 import subprocess
 import jsonschema
@@ -19,7 +19,7 @@ def test_changelog_updated(self):
         and prompts the user if it isn't
         """
         p = subprocess.Popen('git diff HEAD --stat --staged CHANGELOG.md | wc -l', shell=True, stdout=subprocess.PIPE)
-        out, err = p.communicate()
+        out, _err = p.communicate()
         self.assertGreater(int(out), 0, 'CHANGELOG.md not updated')
 
     def validate_schema(self, schema_file, data_file):
diff --git a/lib/utils/__init__.py b/lib/utils/__init__.py
new file mode 100644
index 00000000..e69de29b
diff --git a/tests/utils.py b/lib/utils/utils.py
similarity index 100%
rename from tests/utils.py
rename to lib/utils/utils.py
diff --git a/lib/validate_artifacts.py b/lib/validate_artifacts.py
new file mode 100644
index 00000000..e23d7a35
--- /dev/null
+++ b/lib/validate_artifacts.py
@@ -0,0 +1,22 @@
+import os
+import sys
+import json
+from utils import utils
+
+ARTIFACT_FILENAME = 'scw_links.json'
+ARTIFACT_DIR = 'remediation_training'
+
+artifact_json = utils.get_json(ARTIFACT_FILENAME)
+repo_path = os.path.join(ARTIFACT_DIR, ARTIFACT_FILENAME)
+print(os.path.abspath(repo_path))
+repo_json = utils.get_json(repo_path)
+
+sorted_artifact_json = json.dumps(artifact_json, sort_keys=True)
+sorted_repo_json = json.dumps(repo_json, sort_keys=True)
+
+if sorted_artifact_json == sorted_repo_json:
+    print('SCW Document is valid!')
+    sys.exit(0)
+else:
+    print('SCW Document is invalid, copy the artifact to the remediation training')
+    sys.exit(1)
diff --git a/validate_vrt.py b/lib/validate_vrt.py
similarity index 100%
rename from validate_vrt.py
rename to lib/validate_vrt.py
diff --git a/remediation_training/scw_links.json b/remediation_training/scw_links.json
new file mode 100755
index 00000000..c1a643c7
--- /dev/null
+++ b/remediation_training/scw_links.json
@@ -0,0 +1,330 @@
+{
+  "server_security_misconfiguration": null,
+  "server_security_misconfiguration.unsafe_cross_origin_resource_sharing": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:unsafe_cross_origin_resource_sharing&redirect=true",
+  "server_security_misconfiguration.path_traversal": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:path_traversal&redirect=true",
+  "server_security_misconfiguration.directory_listing_enabled": null,
+  "server_security_misconfiguration.directory_listing_enabled.sensitive_data_exposure": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:directory_listing_enabled:sensitive_data_exposure&redirect=true",
+  "server_security_misconfiguration.directory_listing_enabled.non_sensitive_data_exposure": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:directory_listing_enabled:non_sensitive_data_exposure&redirect=true",
+  "server_security_misconfiguration.same_site_scripting": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:same_site_scripting&redirect=true",
+  "server_security_misconfiguration.ssl_attack_breach_poodle_etc": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:ssl_attack_breach_poodle_etc&redirect=true",
+  "server_security_misconfiguration.using_default_credentials": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:using_default_credentials&redirect=true",
+  "server_security_misconfiguration.misconfigured_dns": null,
+  "server_security_misconfiguration.misconfigured_dns.basic_subdomain_takeover": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:misconfigured_dns:basic_subdomain_takeover&redirect=true",
+  "server_security_misconfiguration.misconfigured_dns.high_impact_subdomain_takeover": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:misconfigured_dns:high_impact_subdomain_takeover&redirect=true",
+  "server_security_misconfiguration.misconfigured_dns.zone_transfer": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:misconfigured_dns:zone_transfer&redirect=true",
+  "server_security_misconfiguration.misconfigured_dns.missing_caa_record": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:misconfigured_dns:missing_caa_record&redirect=true",
+  "server_security_misconfiguration.mail_server_misconfiguration": null,
+  "server_security_misconfiguration.mail_server_misconfiguration.no_spoofing_protection_on_email_domain": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:mail_server_misconfiguration:no_spoofing_protection_on_email_domain&redirect=true",
+  "server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_to_inbox_due_to_missing_or_misconfigured_dmarc_on_email_domain": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:mail_server_misconfiguration:email_spoofing_to_inbox_due_to_missing_or_misconfigured_dmarc_on_email_domain&redirect=true",
+  "server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_to_spam_folder": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:mail_server_misconfiguration:email_spoofing_to_spam_folder&redirect=true",
+  "server_security_misconfiguration.mail_server_misconfiguration.missing_or_misconfigured_spf_and_or_dkim": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:mail_server_misconfiguration:missing_or_misconfigured_spf_and_or_dkim&redirect=true",
+  "server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_on_non_email_domain": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:mail_server_misconfiguration:email_spoofing_on_non_email_domain&redirect=true",
+  "server_security_misconfiguration.dbms_misconfiguration": null,
+  "server_security_misconfiguration.dbms_misconfiguration.excessively_privileged_user_dba": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:dbms_misconfiguration:excessively_privileged_user_dba&redirect=true",
+  "server_security_misconfiguration.lack_of_password_confirmation": null,
+  "server_security_misconfiguration.lack_of_password_confirmation.change_email_address": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_password_confirmation:change_email_address&redirect=true",
+  "server_security_misconfiguration.lack_of_password_confirmation.change_password": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_password_confirmation:change_password&redirect=true",
+  "server_security_misconfiguration.lack_of_password_confirmation.delete_account": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_password_confirmation:delete_account&redirect=true",
+  "server_security_misconfiguration.lack_of_password_confirmation.manage_two_fa": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_password_confirmation:manage_two_fa&redirect=true",
+  "server_security_misconfiguration.no_rate_limiting_on_form": null,
+  "server_security_misconfiguration.no_rate_limiting_on_form.registration": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:no_rate_limiting_on_form:registration&redirect=true",
+  "server_security_misconfiguration.no_rate_limiting_on_form.login": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:no_rate_limiting_on_form:login&redirect=true",
+  "server_security_misconfiguration.no_rate_limiting_on_form.email_triggering": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:no_rate_limiting_on_form:email_triggering&redirect=true",
+  "server_security_misconfiguration.no_rate_limiting_on_form.sms_triggering": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:no_rate_limiting_on_form:sms_triggering&redirect=true",
+  "server_security_misconfiguration.no_rate_limiting_on_form.change_password": null,
+  "server_security_misconfiguration.unsafe_file_upload": null,
+  "server_security_misconfiguration.unsafe_file_upload.no_antivirus": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:unsafe_file_upload:no_antivirus&redirect=true",
+  "server_security_misconfiguration.unsafe_file_upload.no_size_limit": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:unsafe_file_upload:no_size_limit&redirect=true",
+  "server_security_misconfiguration.unsafe_file_upload.file_extension_filter_bypass": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:unsafe_file_upload:file_extension_filter_bypass&redirect=true",
+  "server_security_misconfiguration.cookie_scoped_to_parent_domain": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:cookie_scoped_to_parent_domain&redirect=true",
+  "server_security_misconfiguration.missing_secure_or_httponly_cookie_flag": null,
+  "server_security_misconfiguration.missing_secure_or_httponly_cookie_flag.session_token": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:missing_secure_or_httponly_cookie_flag:session_token&redirect=true",
+  "server_security_misconfiguration.missing_secure_or_httponly_cookie_flag.non_session_cookie": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:missing_secure_or_httponly_cookie_flag:non_session_cookie&redirect=true",
+  "server_security_misconfiguration.clickjacking": null,
+  "server_security_misconfiguration.clickjacking.sensitive_action": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:clickjacking:sensitive_action&redirect=true",
+  "server_security_misconfiguration.clickjacking.form_input": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:clickjacking:form_input&redirect=true",
+  "server_security_misconfiguration.clickjacking.non_sensitive_action": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:clickjacking:non_sensitive_action&redirect=true",
+  "server_security_misconfiguration.oauth_misconfiguration": null,
+  "server_security_misconfiguration.oauth_misconfiguration.account_takeover": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:oauth_misconfiguration:account_takeover&redirect=true",
+  "server_security_misconfiguration.oauth_misconfiguration.account_squatting": null,
+  "server_security_misconfiguration.oauth_misconfiguration.missing_state_parameter": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:oauth_misconfiguration:missing_state_parameter&redirect=true",
+  "server_security_misconfiguration.oauth_misconfiguration.insecure_redirect_uri": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:oauth_misconfiguration:insecure_redirect_uri&redirect=true",
+  "server_security_misconfiguration.captcha": null,
+  "server_security_misconfiguration.captcha.implementation_vulnerability": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:captcha:implementation_vulnerability&redirect=true",
+  "server_security_misconfiguration.captcha.brute_force": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:captcha:brute_force&redirect=true",
+  "server_security_misconfiguration.captcha.missing": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:captcha:missing&redirect=true",
+  "server_security_misconfiguration.exposed_admin_portal": null,
+  "server_security_misconfiguration.exposed_admin_portal.to_internet": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:exposed_admin_portal:to_internet&redirect=true",
+  "server_security_misconfiguration.missing_dnssec": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:missing_dnssec&redirect=true",
+  "server_security_misconfiguration.fingerprinting_banner_disclosure": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:fingerprinting_banner_disclosure&redirect=true",
+  "server_security_misconfiguration.username_enumeration": null,
+  "server_security_misconfiguration.username_enumeration.brute_force": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:username_enumeration:brute_force&redirect=true",
+  "server_security_misconfiguration.potentially_unsafe_http_method_enabled": null,
+  "server_security_misconfiguration.potentially_unsafe_http_method_enabled.options": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:potentially_unsafe_http_method_enabled:options&redirect=true",
+  "server_security_misconfiguration.potentially_unsafe_http_method_enabled.trace": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:potentially_unsafe_http_method_enabled:trace&redirect=true",
+  "server_security_misconfiguration.insecure_ssl": null,
+  "server_security_misconfiguration.insecure_ssl.lack_of_forward_secrecy": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:insecure_ssl:lack_of_forward_secrecy&redirect=true",
+  "server_security_misconfiguration.insecure_ssl.insecure_cipher_suite": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:insecure_ssl:insecure_cipher_suite&redirect=true",
+  "server_security_misconfiguration.insecure_ssl.certificate_error": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:insecure_ssl:certificate_error&redirect=true",
+  "server_security_misconfiguration.rfd": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:rfd&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers": null,
+  "server_security_misconfiguration.lack_of_security_headers.x_frame_options": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:x_frame_options&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.cache_control_for_a_non_sensitive_page": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:cache_control_for_a_non_sensitive_page&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.x_xss_protection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:x_xss_protection&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.strict_transport_security": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:strict_transport_security&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.x_content_type_options": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:x_content_type_options&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.content_security_policy": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:content_security_policy&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.public_key_pins": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:public_key_pins&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.x_content_security_policy": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:x_content_security_policy&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.x_webkit_csp": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:x_webkit_csp&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.content_security_policy_report_only": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:content_security_policy_report_only&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.cache_control_for_a_sensitive_page": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:cache_control_for_a_sensitive_page&redirect=true",
+  "server_security_misconfiguration.waf_bypass": null,
+  "server_security_misconfiguration.waf_bypass.direct_server_access": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:waf_bypass:direct_server_access&redirect=true",
+  "server_security_misconfiguration.race_condition": null,
+  "server_security_misconfiguration.cache_poisoning": null,
+  "server_security_misconfiguration.bitsquatting": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:bitsquatting&redirect=true",
+  "server_side_injection": null,
+  "server_side_injection.file_inclusion": null,
+  "server_side_injection.file_inclusion.local": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:file_inclusion:local&redirect=true",
+  "server_side_injection.parameter_pollution": null,
+  "server_side_injection.parameter_pollution.social_media_sharing_buttons": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:parameter_pollution:social_media_sharing_buttons&redirect=true",
+  "server_side_injection.remote_code_execution_rce": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:remote_code_execution_rce&redirect=true",
+  "server_side_injection.sql_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:sql_injection&redirect=true",
+  "server_side_injection.xml_external_entity_injection_xxe": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:xml_external_entity_injection_xxe&redirect=true",
+  "server_side_injection.http_response_manipulation": null,
+  "server_side_injection.http_response_manipulation.response_splitting_crlf": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:http_response_manipulation:response_splitting_crlf&redirect=true",
+  "server_side_injection.content_spoofing": null,
+  "server_side_injection.content_spoofing.iframe_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:iframe_injection&redirect=true",
+  "server_side_injection.content_spoofing.impersonation_via_broken_link_hijacking": null,
+  "server_side_injection.content_spoofing.external_authentication_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:external_authentication_injection&redirect=true",
+  "server_side_injection.content_spoofing.flash_based_external_authentication_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:flash_based_external_authentication_injection&redirect=true",
+  "server_side_injection.content_spoofing.email_html_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:email_html_injection&redirect=true",
+  "server_side_injection.content_spoofing.email_hyperlink_injection_based_on_email_provider": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:email_hyperlink_injection_based_on_email_provider&redirect=true",
+  "server_side_injection.content_spoofing.text_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:text_injection&redirect=true",
+  "server_side_injection.content_spoofing.homograph_idn_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:homograph_idn_based&redirect=true",
+  "server_side_injection.content_spoofing.rtlo": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:rtlo&redirect=true",
+  "server_side_injection.ssti": null,
+  "server_side_injection.ssti.basic": null,
+  "server_side_injection.ssti.custom": null,
+  "broken_authentication_and_session_management": null,
+  "broken_authentication_and_session_management.authentication_bypass": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:authentication_bypass&redirect=true",
+  "broken_authentication_and_session_management.two_fa_bypass": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:two_fa_bypass&redirect=true",
+  "broken_authentication_and_session_management.privilege_escalation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:privilege_escalation&redirect=true",
+  "broken_authentication_and_session_management.cleartext_transmission_of_session_token": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:cleartext_transmission_of_session_token&redirect=true",
+  "broken_authentication_and_session_management.weak_login_function": null,
+  "broken_authentication_and_session_management.weak_login_function.not_operational": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:weak_login_function:not_operational&redirect=true",
+  "broken_authentication_and_session_management.weak_login_function.other_plaintext_protocol_no_secure_alternative": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:weak_login_function:other_plaintext_protocol_no_secure_alternative&redirect=true",
+  "broken_authentication_and_session_management.weak_login_function.over_http": null,
+  "broken_authentication_and_session_management.session_fixation": null,
+  "broken_authentication_and_session_management.session_fixation.remote_attack_vector": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:session_fixation:remote_attack_vector&redirect=true",
+  "broken_authentication_and_session_management.session_fixation.local_attack_vector": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:session_fixation:local_attack_vector&redirect=true",
+  "broken_authentication_and_session_management.failure_to_invalidate_session": null,
+  "broken_authentication_and_session_management.failure_to_invalidate_session.on_logout": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:failure_to_invalidate_session:on_logout&redirect=true",
+  "broken_authentication_and_session_management.failure_to_invalidate_session.on_logout_server_side_only": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:failure_to_invalidate_session:on_logout_server_side_only&redirect=true",
+  "broken_authentication_and_session_management.failure_to_invalidate_session.on_password_change": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:failure_to_invalidate_session:on_password_change&redirect=true",
+  "broken_authentication_and_session_management.failure_to_invalidate_session.all_sessions": null,
+  "broken_authentication_and_session_management.failure_to_invalidate_session.on_email_change": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:failure_to_invalidate_session:on_email_change&redirect=true",
+  "broken_authentication_and_session_management.failure_to_invalidate_session.on_two_fa_activation_change": null,
+  "broken_authentication_and_session_management.failure_to_invalidate_session.long_timeout": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:failure_to_invalidate_session:long_timeout&redirect=true",
+  "broken_authentication_and_session_management.concurrent_logins": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:concurrent_logins&redirect=true",
+  "broken_authentication_and_session_management.weak_registration_implementation": null,
+  "broken_authentication_and_session_management.weak_registration_implementation.over_http": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:weak_registration_implementation:over_http&redirect=true",
+  "sensitive_data_exposure": null,
+  "sensitive_data_exposure.disclosure_of_secrets": null,
+  "sensitive_data_exposure.disclosure_of_secrets.for_publicly_accessible_asset": null,
+  "sensitive_data_exposure.disclosure_of_secrets.for_internal_asset": null,
+  "sensitive_data_exposure.disclosure_of_secrets.pay_per_use_abuse": null,
+  "sensitive_data_exposure.disclosure_of_secrets.intentionally_public_sample_or_invalid": null,
+  "sensitive_data_exposure.disclosure_of_secrets.data_traffic_spam": null,
+  "sensitive_data_exposure.disclosure_of_secrets.non_corporate_user": null,
+  "sensitive_data_exposure.exif_geolocation_data_not_stripped_from_uploaded_images": null,
+  "sensitive_data_exposure.exif_geolocation_data_not_stripped_from_uploaded_images.automatic_user_enumeration": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:exif_geolocation_data_not_stripped_from_uploaded_images:automatic_user_enumeration&redirect=true",
+  "sensitive_data_exposure.exif_geolocation_data_not_stripped_from_uploaded_images.manual_user_enumeration": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:exif_geolocation_data_not_stripped_from_uploaded_images:manual_user_enumeration&redirect=true",
+  "sensitive_data_exposure.visible_detailed_error_page": null,
+  "sensitive_data_exposure.visible_detailed_error_page.detailed_server_configuration": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:visible_detailed_error_page:detailed_server_configuration&redirect=true",
+  "sensitive_data_exposure.visible_detailed_error_page.full_path_disclosure": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:visible_detailed_error_page:full_path_disclosure&redirect=true",
+  "sensitive_data_exposure.visible_detailed_error_page.descriptive_stack_trace": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:visible_detailed_error_page:descriptive_stack_trace&redirect=true",
+  "sensitive_data_exposure.disclosure_of_known_public_information": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:disclosure_of_known_public_information&redirect=true",
+  "sensitive_data_exposure.token_leakage_via_referer": null,
+  "sensitive_data_exposure.token_leakage_via_referer.trusted_third_party": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:token_leakage_via_referer:trusted_third_party&redirect=true",
+  "sensitive_data_exposure.token_leakage_via_referer.untrusted_third_party": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:token_leakage_via_referer:untrusted_third_party&redirect=true",
+  "sensitive_data_exposure.token_leakage_via_referer.over_http": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:token_leakage_via_referer:over_http&redirect=true",
+  "sensitive_data_exposure.sensitive_token_in_url": null,
+  "sensitive_data_exposure.sensitive_token_in_url.user_facing": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_token_in_url:user_facing&redirect=true",
+  "sensitive_data_exposure.sensitive_token_in_url.in_the_background": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_token_in_url:in_the_background&redirect=true",
+  "sensitive_data_exposure.sensitive_token_in_url.on_password_reset": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_token_in_url:on_password_reset&redirect=true",
+  "sensitive_data_exposure.non_sensitive_token_in_url": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:non_sensitive_token_in_url&redirect=true",
+  "sensitive_data_exposure.weak_password_reset_implementation": null,
+  "sensitive_data_exposure.weak_password_reset_implementation.password_reset_token_sent_over_http": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:weak_password_reset_implementation:password_reset_token_sent_over_http&redirect=true",
+  "sensitive_data_exposure.weak_password_reset_implementation.token_leakage_via_host_header_poisoning": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:weak_password_reset_implementation:token_leakage_via_host_header_poisoning&redirect=true",
+  "sensitive_data_exposure.mixed_content": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:mixed_content&redirect=true",
+  "sensitive_data_exposure.sensitive_data_hardcoded": null,
+  "sensitive_data_exposure.sensitive_data_hardcoded.oauth_secret": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_data_hardcoded:oauth_secret&redirect=true",
+  "sensitive_data_exposure.sensitive_data_hardcoded.file_paths": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_data_hardcoded:file_paths&redirect=true",
+  "sensitive_data_exposure.internal_ip_disclosure": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:internal_ip_disclosure&redirect=true",
+  "sensitive_data_exposure.xssi": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:xssi&redirect=true",
+  "sensitive_data_exposure.json_hijacking": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:json_hijacking&redirect=true",
+  "sensitive_data_exposure.via_localstorage_sessionstorage": null,
+  "sensitive_data_exposure.via_localstorage_sessionstorage.sensitive_token": null,
+  "sensitive_data_exposure.via_localstorage_sessionstorage.non_sensitive_token": null,
+  "cross_site_scripting_xss": null,
+  "cross_site_scripting_xss.stored": null,
+  "cross_site_scripting_xss.stored.non_admin_to_anyone": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:stored:non_admin_to_anyone&redirect=true",
+  "cross_site_scripting_xss.stored.privileged_user_to_privilege_elevation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:stored:privileged_user_to_privilege_elevation&redirect=true",
+  "cross_site_scripting_xss.stored.privileged_user_to_no_privilege_elevation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:stored:privileged_user_to_no_privilege_elevation&redirect=true",
+  "cross_site_scripting_xss.stored.url_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:stored:url_based&redirect=true",
+  "cross_site_scripting_xss.stored.self": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:stored:self&redirect=true",
+  "cross_site_scripting_xss.reflected": null,
+  "cross_site_scripting_xss.reflected.non_self": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:reflected:non_self&redirect=true",
+  "cross_site_scripting_xss.reflected.self": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:reflected:self&redirect=true",
+  "cross_site_scripting_xss.flash_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:flash_based&redirect=true",
+  "cross_site_scripting_xss.cookie_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:cookie_based&redirect=true",
+  "cross_site_scripting_xss.ie_only": null,
+  "cross_site_scripting_xss.ie_only.ie_eleven": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:ie_only:ie_eleven&redirect=true",
+  "cross_site_scripting_xss.ie_only.xss_filter_disabled": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:ie_only:xss_filter_disabled&redirect=true",
+  "cross_site_scripting_xss.ie_only.older_version_ie_eleven": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:ie_only:older_version_ie_eleven&redirect=true",
+  "cross_site_scripting_xss.referer": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:referer&redirect=true",
+  "cross_site_scripting_xss.trace_method": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:trace_method&redirect=true",
+  "cross_site_scripting_xss.universal_uxss": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:universal_uxss&redirect=true",
+  "cross_site_scripting_xss.off_domain": null,
+  "cross_site_scripting_xss.off_domain.data_uri": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:off_domain:data_uri&redirect=true",
+  "broken_access_control": null,
+  "broken_access_control.idor": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:idor&redirect=true",
+  "broken_access_control.server_side_request_forgery_ssrf": null,
+  "broken_access_control.server_side_request_forgery_ssrf.internal_high_impact": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:server_side_request_forgery_ssrf:internal_high_impact&redirect=true",
+  "broken_access_control.server_side_request_forgery_ssrf.internal_scan_and_or_medium_impact": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:server_side_request_forgery_ssrf:internal_scan_and_or_medium_impact&redirect=true",
+  "broken_access_control.server_side_request_forgery_ssrf.external": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:server_side_request_forgery_ssrf:external&redirect=true",
+  "broken_access_control.server_side_request_forgery_ssrf.dns_query_only": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:server_side_request_forgery_ssrf:dns_query_only&redirect=true",
+  "broken_access_control.username_enumeration": null,
+  "broken_access_control.username_enumeration.non_brute_force": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:username_enumeration:non_brute_force&redirect=true",
+  "broken_access_control.exposed_sensitive_android_intent": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:exposed_sensitive_android_intent&redirect=true",
+  "broken_access_control.exposed_sensitive_ios_url_scheme": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:exposed_sensitive_ios_url_scheme&redirect=true",
+  "cross_site_request_forgery_csrf": null,
+  "cross_site_request_forgery_csrf.application_wide": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_request_forgery_csrf:application_wide&redirect=true",
+  "cross_site_request_forgery_csrf.action_specific": null,
+  "cross_site_request_forgery_csrf.action_specific.authenticated_action": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_request_forgery_csrf:action_specific:authenticated_action&redirect=true",
+  "cross_site_request_forgery_csrf.action_specific.unauthenticated_action": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_request_forgery_csrf:action_specific:unauthenticated_action&redirect=true",
+  "cross_site_request_forgery_csrf.action_specific.logout": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_request_forgery_csrf:action_specific:logout&redirect=true",
+  "cross_site_request_forgery_csrf.csrf_token_not_unique_per_request": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_request_forgery_csrf:csrf_token_not_unique_per_request&redirect=true",
+  "cross_site_request_forgery_csrf.flash_based": null,
+  "cross_site_request_forgery_csrf.flash_based.high_impact": null,
+  "cross_site_request_forgery_csrf.flash_based.low_impact": null,
+  "application_level_denial_of_service_dos": null,
+  "application_level_denial_of_service_dos.critical_impact_and_or_easy_difficulty": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=application_level_denial_of_service_dos:critical_impact_and_or_easy_difficulty&redirect=true",
+  "application_level_denial_of_service_dos.high_impact_and_or_medium_difficulty": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=application_level_denial_of_service_dos:high_impact_and_or_medium_difficulty&redirect=true",
+  "application_level_denial_of_service_dos.app_crash": null,
+  "application_level_denial_of_service_dos.app_crash.malformed_android_intents": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=application_level_denial_of_service_dos:app_crash:malformed_android_intents&redirect=true",
+  "application_level_denial_of_service_dos.app_crash.malformed_ios_url_schemes": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=application_level_denial_of_service_dos:app_crash:malformed_ios_url_schemes&redirect=true",
+  "unvalidated_redirects_and_forwards": null,
+  "unvalidated_redirects_and_forwards.open_redirect": null,
+  "unvalidated_redirects_and_forwards.open_redirect.get_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:open_redirect:get_based&redirect=true",
+  "unvalidated_redirects_and_forwards.open_redirect.post_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:open_redirect:post_based&redirect=true",
+  "unvalidated_redirects_and_forwards.open_redirect.header_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:open_redirect:header_based&redirect=true",
+  "unvalidated_redirects_and_forwards.open_redirect.flash_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:open_redirect:flash_based&redirect=true",
+  "unvalidated_redirects_and_forwards.tabnabbing": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:tabnabbing&redirect=true",
+  "unvalidated_redirects_and_forwards.lack_of_security_speed_bump_page": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:lack_of_security_speed_bump_page&redirect=true",
+  "external_behavior": null,
+  "external_behavior.browser_feature": null,
+  "external_behavior.browser_feature.plaintext_password_field": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:browser_feature:plaintext_password_field&redirect=true",
+  "external_behavior.browser_feature.save_password": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:browser_feature:save_password&redirect=true",
+  "external_behavior.browser_feature.autocomplete_enabled": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:browser_feature:autocomplete_enabled&redirect=true",
+  "external_behavior.browser_feature.autocorrect_enabled": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:browser_feature:autocorrect_enabled&redirect=true",
+  "external_behavior.browser_feature.aggressive_offline_caching": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:browser_feature:aggressive_offline_caching&redirect=true",
+  "external_behavior.csv_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:csv_injection&redirect=true",
+  "external_behavior.captcha_bypass": null,
+  "external_behavior.captcha_bypass.crowdsourcing": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:captcha_bypass:crowdsourcing&redirect=true",
+  "external_behavior.system_clipboard_leak": null,
+  "external_behavior.system_clipboard_leak.shared_links": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:system_clipboard_leak:shared_links&redirect=true",
+  "external_behavior.user_password_persisted_in_memory": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:user_password_persisted_in_memory&redirect=true",
+  "insufficient_security_configurability": null,
+  "insufficient_security_configurability.weak_password_policy": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_policy&redirect=true",
+  "insufficient_security_configurability.no_password_policy": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:no_password_policy&redirect=true",
+  "insufficient_security_configurability.password_policy_bypass": null,
+  "insufficient_security_configurability.weak_password_reset_implementation": null,
+  "insufficient_security_configurability.weak_password_reset_implementation.token_is_not_invalidated_after_use": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_reset_implementation:token_is_not_invalidated_after_use&redirect=true",
+  "insufficient_security_configurability.weak_password_reset_implementation.token_is_not_invalidated_after_email_change": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_reset_implementation:token_is_not_invalidated_after_email_change&redirect=true",
+  "insufficient_security_configurability.weak_password_reset_implementation.token_is_not_invalidated_after_password_change": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_reset_implementation:token_is_not_invalidated_after_password_change&redirect=true",
+  "insufficient_security_configurability.weak_password_reset_implementation.token_has_long_timed_expiry": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_reset_implementation:token_has_long_timed_expiry&redirect=true",
+  "insufficient_security_configurability.weak_password_reset_implementation.token_is_not_invalidated_after_new_token_is_requested": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_reset_implementation:token_is_not_invalidated_after_new_token_is_requested&redirect=true",
+  "insufficient_security_configurability.weak_password_reset_implementation.token_is_not_invalidated_after_login": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_reset_implementation:token_is_not_invalidated_after_login&redirect=true",
+  "insufficient_security_configurability.verification_of_contact_method_not_required": null,
+  "insufficient_security_configurability.lack_of_notification_email": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:lack_of_notification_email&redirect=true",
+  "insufficient_security_configurability.weak_registration_implementation": null,
+  "insufficient_security_configurability.weak_registration_implementation.allows_disposable_email_addresses": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_registration_implementation:allows_disposable_email_addresses&redirect=true",
+  "insufficient_security_configurability.weak_two_fa_implementation": null,
+  "insufficient_security_configurability.weak_two_fa_implementation.two_fa_secret_cannot_be_rotated": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_two_fa_implementation:two_fa_secret_cannot_be_rotated&redirect=true",
+  "insufficient_security_configurability.weak_two_fa_implementation.two_fa_secret_remains_obtainable_after_two_fa_is_enabled": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_two_fa_implementation:two_fa_secret_remains_obtainable_after_two_fa_is_enabled&redirect=true",
+  "insufficient_security_configurability.weak_two_fa_implementation.missing_failsafe": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_two_fa_implementation:missing_failsafe&redirect=true",
+  "insufficient_security_configurability.weak_two_fa_implementation.two_fa_code_is_not_updated_after_new_code_is_requested": null,
+  "insufficient_security_configurability.weak_two_fa_implementation.old_two_fa_code_is_not_invalidated_after_new_code_is_generated": null,
+  "using_components_with_known_vulnerabilities": null,
+  "using_components_with_known_vulnerabilities.rosetta_flash": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=using_components_with_known_vulnerabilities:rosetta_flash&redirect=true",
+  "using_components_with_known_vulnerabilities.outdated_software_version": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=using_components_with_known_vulnerabilities:outdated_software_version&redirect=true",
+  "using_components_with_known_vulnerabilities.captcha_bypass": null,
+  "using_components_with_known_vulnerabilities.captcha_bypass.ocr_optical_character_recognition": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=using_components_with_known_vulnerabilities:captcha_bypass:ocr_optical_character_recognition&redirect=true",
+  "insecure_data_storage": null,
+  "insecure_data_storage.sensitive_application_data_stored_unencrypted": null,
+  "insecure_data_storage.sensitive_application_data_stored_unencrypted.on_external_storage": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_storage:sensitive_application_data_stored_unencrypted:on_external_storage&redirect=true",
+  "insecure_data_storage.sensitive_application_data_stored_unencrypted.on_internal_storage": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_storage:sensitive_application_data_stored_unencrypted:on_internal_storage&redirect=true",
+  "insecure_data_storage.server_side_credentials_storage": null,
+  "insecure_data_storage.server_side_credentials_storage.plaintext": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_storage:server_side_credentials_storage:plaintext&redirect=true",
+  "insecure_data_storage.non_sensitive_application_data_stored_unencrypted": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_storage:non_sensitive_application_data_stored_unencrypted&redirect=true",
+  "insecure_data_storage.screen_caching_enabled": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_storage:screen_caching_enabled&redirect=true",
+  "lack_of_binary_hardening": null,
+  "lack_of_binary_hardening.lack_of_exploit_mitigations": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=lack_of_binary_hardening:lack_of_exploit_mitigations&redirect=true",
+  "lack_of_binary_hardening.lack_of_jailbreak_detection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=lack_of_binary_hardening:lack_of_jailbreak_detection&redirect=true",
+  "lack_of_binary_hardening.lack_of_obfuscation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=lack_of_binary_hardening:lack_of_obfuscation&redirect=true",
+  "lack_of_binary_hardening.runtime_instrumentation_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=lack_of_binary_hardening:runtime_instrumentation_based&redirect=true",
+  "insecure_data_transport": null,
+  "insecure_data_transport.cleartext_transmission_of_sensitive_data": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_transport:cleartext_transmission_of_sensitive_data&redirect=true",
+  "insecure_data_transport.executable_download": null,
+  "insecure_data_transport.executable_download.no_secure_integrity_check": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_transport:executable_download:no_secure_integrity_check&redirect=true",
+  "insecure_data_transport.executable_download.secure_integrity_check": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_transport:executable_download:secure_integrity_check&redirect=true",
+  "insecure_os_firmware": null,
+  "insecure_os_firmware.command_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_os_firmware:command_injection&redirect=true",
+  "insecure_os_firmware.hardcoded_password": null,
+  "insecure_os_firmware.hardcoded_password.privileged_user": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_os_firmware:hardcoded_password:privileged_user&redirect=true",
+  "insecure_os_firmware.hardcoded_password.non_privileged_user": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_os_firmware:hardcoded_password:non_privileged_user&redirect=true",
+  "broken_cryptography": null,
+  "broken_cryptography.cryptographic_flaw": null,
+  "broken_cryptography.cryptographic_flaw.incorrect_usage": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_cryptography:cryptographic_flaw:incorrect_usage&redirect=true",
+  "privacy_concerns": null,
+  "privacy_concerns.unnecessary_data_collection": null,
+  "privacy_concerns.unnecessary_data_collection.wifi_ssid_password": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=privacy_concerns:unnecessary_data_collection:wifi_ssid_password&redirect=true",
+  "network_security_misconfiguration": null,
+  "network_security_misconfiguration.telnet_enabled": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=network_security_misconfiguration:telnet_enabled&redirect=true",
+  "mobile_security_misconfiguration": null,
+  "mobile_security_misconfiguration.ssl_certificate_pinning": null,
+  "mobile_security_misconfiguration.ssl_certificate_pinning.absent": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=mobile_security_misconfiguration:ssl_certificate_pinning:absent&redirect=true",
+  "mobile_security_misconfiguration.ssl_certificate_pinning.defeatable": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=mobile_security_misconfiguration:ssl_certificate_pinning:defeatable&redirect=true",
+  "mobile_security_misconfiguration.tapjacking": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=mobile_security_misconfiguration:tapjacking&redirect=true",
+  "mobile_security_misconfiguration.clipboard_enabled": null,
+  "mobile_security_misconfiguration.auto_backup_allowed_by_default": null,
+  "client_side_injection": null,
+  "client_side_injection.binary_planting": null,
+  "client_side_injection.binary_planting.privilege_escalation": null,
+  "client_side_injection.binary_planting.non_default_folder_privilege_escalation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=client_side_injection:binary_planting:non_default_folder_privilege_escalation&redirect=true",
+  "client_side_injection.binary_planting.no_privilege_escalation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=client_side_injection:binary_planting:no_privilege_escalation&redirect=true",
+  "automotive_security_misconfiguration": null,
+  "automotive_security_misconfiguration.infotainment": null,
+  "automotive_security_misconfiguration.infotainment.pii_leakage": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:infotainment:pii_leakage&redirect=true",
+  "automotive_security_misconfiguration.infotainment.code_execution_can_bus_pivot": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:infotainment:code_execution_can_bus_pivot&redirect=true",
+  "automotive_security_misconfiguration.infotainment.code_execution_no_can_bus_pivot": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:infotainment:code_execution_no_can_bus_pivot&redirect=true",
+  "automotive_security_misconfiguration.infotainment.unauthorized_access_to_services": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:infotainment:unauthorized_access_to_services&redirect=true",
+  "automotive_security_misconfiguration.infotainment.source_code_dump": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:infotainment:source_code_dump&redirect=true",
+  "automotive_security_misconfiguration.infotainment.dos_brick": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:infotainment:dos_brick&redirect=true",
+  "automotive_security_misconfiguration.infotainment.default_credentials": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:infotainment:default_credentials&redirect=true",
+  "automotive_security_misconfiguration.rf_hub": null,
+  "automotive_security_misconfiguration.rf_hub.key_fob_cloning": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:rf_hub:key_fob_cloning&redirect=true",
+  "automotive_security_misconfiguration.rf_hub.can_injection_interaction": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:rf_hub:can_injection_interaction&redirect=true",
+  "automotive_security_misconfiguration.rf_hub.data_leakage_pull_encryption_mechanism": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:rf_hub:data_leakage_pull_encryption_mechanism&redirect=true",
+  "automotive_security_misconfiguration.rf_hub.unauthorized_access_turn_on": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:rf_hub:unauthorized_access_turn_on&redirect=true",
+  "automotive_security_misconfiguration.rf_hub.roll_jam": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:rf_hub:roll_jam&redirect=true",
+  "automotive_security_misconfiguration.rf_hub.replay": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:rf_hub:replay&redirect=true",
+  "automotive_security_misconfiguration.rf_hub.relay": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:rf_hub:relay&redirect=true",
+  "automotive_security_misconfiguration.can": null,
+  "automotive_security_misconfiguration.can.injection_disallowed_messages": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:can:injection_disallowed_messages&redirect=true",
+  "automotive_security_misconfiguration.can.injection_dos": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:can:injection_dos&redirect=true",
+  "indicators_of_compromise": null
+}

From 3a7a063ed8a7e908a144e27151c9b4d74749995b Mon Sep 17 00:00:00 2001
From: Barnett Klane <barnett.klane@me.com>
Date: Mon, 21 Dec 2020 14:02:24 -0800
Subject: [PATCH 17/54] Secure Code Warrior Merge Cleanup (#313)

* move to mappings directory

* fix link to scw mapping

* move to third party mapping location

* fix link to scw mapping

* fix validation for new file location

* end quote

* add to changelog

* adjust headed for secure code warriors mapping

* Add test to validate artifact file location and format

Co-authored-by: Adam David <adamrdavid@gmail.com>
---
 CHANGELOG.md                                  |  1 +
 README.md                                     |  4 ++--
 lib/tests/test_artifact_format.py             | 20 +++++++++++++++++++
 lib/utils/utils.py                            |  4 ++++
 lib/validate_artifacts.py                     |  8 +++-----
 .../secure-code-warriors-links.json           |  0
 6 files changed, 30 insertions(+), 7 deletions(-)
 create mode 100644 lib/tests/test_artifact_format.py
 rename remediation_training/scw_links.json => third-party-mappings/remediation_training/secure-code-warriors-links.json (100%)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index d75819fe..7cf7c2d8 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -10,6 +10,7 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - insufficient_security_configurability.weak_two_fa_implementation.old_two_fa_code_is_not_invalidated_after_new_code_is_generated
 - broken_authentication_and_session_management.weak_login_function.over_http
 - server_security_misconfiguration.oauth_misconfiguration.account_squatting
+- Third-party mapping to [Secure Code Warrior](https://www.securecodewarrior.com/) trainings
 
 ### Removed
 - insufficient_security_configurability.lack_of_verification_email
diff --git a/README.md b/README.md
index e2d0f428..8a23fc16 100644
--- a/README.md
+++ b/README.md
@@ -166,8 +166,8 @@ Each mapping should be setup in the following structure:
 - [CWE](mappings/cwe/cwe.json)
 - [Remediation Advice](mappings/remediation_advice/remediation_advice.json)
 
-#### Remediation Training
-- [Secure Code Warriors](remediation_training/)
+#### Third-Party Managed Mappings
+- [Secure Code Warriors](third-party-mappings/remediation_training/secure-code-warriors-links.json)
 
 ## Supported Libraries
 - [Ruby](https://github.com/bugcrowd/vrt-ruby)
diff --git a/lib/tests/test_artifact_format.py b/lib/tests/test_artifact_format.py
new file mode 100644
index 00000000..9555f9cb
--- /dev/null
+++ b/lib/tests/test_artifact_format.py
@@ -0,0 +1,20 @@
+from utils import utils
+import os
+import unittest
+
+class TestArtifactFormat(unittest.TestCase):
+  def setUp(self):
+    self.scw_artifact_path = os.path.join(
+      utils.THIRD_PARTY_MAPPING_DIR,
+      utils.SCW_DIR,
+      utils.SCW_FILENAME
+    )
+
+  def test_artifact_loads_valid_json(self):
+    self.assertTrue(
+      utils.get_json(self.scw_artifact_path),
+      self.scw_artifact_path + ' is not valid JSON.'
+    )
+
+if __name__ == "__main__":
+    unittest.main()
\ No newline at end of file
diff --git a/lib/utils/utils.py b/lib/utils/utils.py
index 67cd0cb6..69d87034 100644
--- a/lib/utils/utils.py
+++ b/lib/utils/utils.py
@@ -6,6 +6,10 @@
 VRT_SCHEMA_FILENAME = 'vrt.schema.json'
 MAPPING_DIR = 'mappings'
 
+SCW_FILENAME = 'secure-code-warriors-links.json'
+SCW_DIR = 'remediation_training'
+THIRD_PARTY_MAPPING_DIR = 'third-party-mappings'
+
 def get_json(filename):
     with open(filename) as f:
         return json.loads(f.read())
diff --git a/lib/validate_artifacts.py b/lib/validate_artifacts.py
index e23d7a35..355a5784 100644
--- a/lib/validate_artifacts.py
+++ b/lib/validate_artifacts.py
@@ -2,12 +2,10 @@
 import sys
 import json
 from utils import utils
+from artifacts import scw_artifact
 
-ARTIFACT_FILENAME = 'scw_links.json'
-ARTIFACT_DIR = 'remediation_training'
-
-artifact_json = utils.get_json(ARTIFACT_FILENAME)
-repo_path = os.path.join(ARTIFACT_DIR, ARTIFACT_FILENAME)
+artifact_json = utils.get_json(scw_artifact.OUTPUT_FILENAME)
+repo_path = os.path.join(utils.THIRD_PARTY_MAPPING_DIR, utils.SCW_DIR, utils.SCW_FILENAME)
 print(os.path.abspath(repo_path))
 repo_json = utils.get_json(repo_path)
 
diff --git a/remediation_training/scw_links.json b/third-party-mappings/remediation_training/secure-code-warriors-links.json
similarity index 100%
rename from remediation_training/scw_links.json
rename to third-party-mappings/remediation_training/secure-code-warriors-links.json

From dc1aac0a5ad6540b74387e34ea5fedb15a142f35 Mon Sep 17 00:00:00 2001
From: "Luke Stephens (hakluke)" <13975395+hakluke@users.noreply.github.com>
Date: Thu, 11 Feb 2021 09:22:04 +1000
Subject: [PATCH 18/54] =?UTF-8?q?fixed=20number=20ordering=20on=20ordered?=
 =?UTF-8?q?=20list=20in=20no=5Fpassword=5Fpolicy=20remediati=E2=80=A6=20(#?=
 =?UTF-8?q?303)?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* fixed number ordering on ordered list in no_password_policy remediation advice

* same issue on different section

* added blank lines around code snippets as advised by MD linter

Co-authored-by: Adam David <adamrdavid@gmail.com>
---
 mappings/remediation_advice/remediation_advice.json | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index f0e048b9..4e391312 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -1014,14 +1014,14 @@
       "children": [
         {
           "id": "weak_password_policy",
-          "remediation_advice": "1. Allow all characters to be used for passwords to avoid shortening the key space for brute-force guessing.\n2. Do not impose character restrictions such as \"must have at least X number of specific character type\" in the password. This will shorten the key space for brute-force guessing.\n2. Disallow short password lengths. 8 characters is generally considered a good minimum password length.\n3. Allow for a large maximum password length.\n4. Do not advertise the maximum password length as this will shorten the key space for brute-force guessing.\n5. Disallow previous passwords from being used.\n6. Disallow the password being the same as the email or username.",
+          "remediation_advice": "1. Allow all characters to be used for passwords to avoid shortening the key space for brute-force guessing.\n2. Do not impose character restrictions such as \"must have at least X number of specific character type\" in the password. This will shorten the key space for brute-force guessing.\n3. Disallow short password lengths. 8 characters is generally considered a good minimum password length.\n4. Allow for a large maximum password length.\n5. Do not advertise the maximum password length as this will shorten the key space for brute-force guessing.\n6. Disallow previous passwords from being used.\n7. Disallow the password being the same as the email or username.",
           "references": [
             "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Authentication_Cheat_Sheet.md#implement-proper-password-strength-controls"
           ]
         },
         {
           "id": "no_password_policy",
-          "remediation_advice": "1. Allow all characters to be used for passwords to avoid shortening the key space for brute-force guessing.\n2. Do not impose character restrictions such as \"must have at least X number of specific character type\" in the password. This will shorten the key space for brute-force guessing.\n2. Disallow short password lengths. 8 characters is generally considered a good minimum password length.\n3. Allow for a large maximum password length.\n4. Do not advertise the maximum password length as this will shorten the key space for brute-force guessing.\n5. Disallow previous passwords from being used.\n6. Disallow the password being the same as the email or username.",
+          "remediation_advice": "1. Allow all characters to be used for passwords to avoid shortening the key space for brute-force guessing.\n2. Do not impose character restrictions such as \"must have at least X number of specific character type\" in the password. This will shorten the key space for brute-force guessing.\n3. Disallow short password lengths. 8 characters is generally considered a good minimum password length.\n4. Allow for a large maximum password length.\n5. Do not advertise the maximum password length as this will shorten the key space for brute-force guessing.\n6. Disallow previous passwords from being used.\n7. Disallow the password being the same as the email or username.",
           "references": [
             "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Authentication_Cheat_Sheet.md#implement-proper-password-strength-controls"
           ]
@@ -1240,7 +1240,7 @@
         },
         {
           "id": "clipboard_enabled",
-          "remediation_advice": "Ensure that copy/paste functionality is disabled on sensitive content like credit card numbers, social security numbers etc. as other apps on the same device can access data stored in clipboard.\nThe example below disables clipboard for the `textField` TextView in Android:\n```java\ntextField.setCustomSelectionActionModeCallback(new ActionMode.Callback() {\n  public boolean onCreateActionMode(ActionMode actionMode, Menu menu) {\n    return false;\n  }\n\n  public boolean onPrepareActionMode(ActionMode actionMode, Menu menu) {\n    return false;\n  }\n\n  public boolean onActionItemClicked(ActionMode actionMode, MenuItem item) {\n    return false;\n  }\n\n  public void onDestroyActionMode(ActionMode actionMode) {\n  }\n});\ntextField.setLongClickable(false);\ntextField.setTextIsSelectable(false);\n```\nThe example below disables clipboard for UITextField in iOS:\n```swift\noverride public func canPerformAction(_ action: Selector, withSender sender: Any?) -> Bool {\n  if action == #selector(copy(_:)) || action == #selector(paste(_:)) {\n    return false\n  }\n  return true\n}\n```"
+          "remediation_advice": "Ensure that copy/paste functionality is disabled on sensitive content like credit card numbers, social security numbers etc. as other apps on the same device can access data stored in clipboard.\nThe example below disables clipboard for the `textField` TextView in Android:\n\n```java\ntextField.setCustomSelectionActionModeCallback(new ActionMode.Callback() {\n  public boolean onCreateActionMode(ActionMode actionMode, Menu menu) {\n    return false;\n  }\n\n  public boolean onPrepareActionMode(ActionMode actionMode, Menu menu) {\n    return false;\n  }\n\n  public boolean onActionItemClicked(ActionMode actionMode, MenuItem item) {\n    return false;\n  }\n\n  public void onDestroyActionMode(ActionMode actionMode) {\n  }\n});\ntextField.setLongClickable(false);\ntextField.setTextIsSelectable(false);\n```\n\nThe example below disables clipboard for UITextField in iOS:\n\n```swift\noverride public func canPerformAction(_ action: Selector, withSender sender: Any?) -> Bool {\n  if action == #selector(copy(_:)) || action == #selector(paste(_:)) {\n    return false\n  }\n  return true\n}\n```\n\n"
         },
         {
           "id": "auto_backup_allowed_by_default",

From 4e811e73eb38e40627e8f91c144589edc9cf6eb3 Mon Sep 17 00:00:00 2001
From: Aidan Stansfield <aidan.stansfield@gmail.com>
Date: Sat, 13 Feb 2021 05:57:35 +1000
Subject: [PATCH 19/54] Resolves #308 (#309)

* update remediation advice for cache-control

* update cache control advice notes in changelog

* updated changelog

Co-authored-by: Adam David <adamrdavid@gmail.com>
---
 CHANGELOG.md                                        | 2 ++
 mappings/remediation_advice/remediation_advice.json | 4 ++--
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 7cf7c2d8..fe6fc114 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -19,6 +19,8 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - broken_authentication_and_session_management.weak_login_function.lan_only
 
 ### Changed
+ - server_security_misconfiguration.lack_of_security_headers.cache_control_for_a_non_sensitive_page updated remediation advice
+ - server_security_misconfiguration.lack_of_security_headers.cache_control_for_a_sensitive_page updated remediation advice
 
 ## [v1.9](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.8...v1.9) - 2020-05-22
 ### Added
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index 4e391312..f47578dd 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -412,7 +412,7 @@
             },
             {
               "id": "cache_control_for_a_non_sensitive_page",
-              "remediation_advice": "As a best practice, consider using the `Cache-Control: no-cache` as it will help insure that the browser does not cache pages. Although the page may not currently contain sensitive data, sensitive data may be unintentionally placed there in the future.",
+              "remediation_advice": "As a best practice, consider using the `Cache-Control: no-store` as it will help insure that the browser does not cache pages. Although the page may not currently contain sensitive data, sensitive data may be unintentionally placed there in the future.",
               "references": [
                 "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cache-Control"
               ]
@@ -483,7 +483,7 @@
             },
             {
               "id": "cache_control_for_a_sensitive_page",
-              "remediation_advice": "Add the `Cache-Control` HTTP response header such as `Cache-Control: no-cache`, as it will help insure that the browser does not cache sensitive pages."
+              "remediation_advice": "Add the `Cache-Control` HTTP response header such as `Cache-Control: no-store`, as it will help insure that the browser does not cache sensitive pages."
             }
           ]
         },

From df941e1a6b14acc257ba9d538b6b44dcd6a44908 Mon Sep 17 00:00:00 2001
From: PLRoman <plr0man@users.noreply.github.com>
Date: Mon, 15 Mar 2021 13:24:39 -0500
Subject: [PATCH 20/54] Add new automotive security entries (#321)

* Add new automotive security entries

* Update CWE mapping nodes

* Correct typo
---
 CHANGELOG.md                                  |  36 +++++
 deprecated-node-mapping.json                  |  24 ++++
 mappings/cvss_v3/cvss_v3.json                 |  87 +++++++++++-
 mappings/cwe/cwe.json                         |  22 ++-
 .../remediation_advice.json                   | 132 +++++++++++++++++-
 vulnerability-rating-taxonomy.json            | 129 ++++++++++++++++-
 6 files changed, 425 insertions(+), 5 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index fe6fc114..e6712912 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -11,12 +11,48 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - broken_authentication_and_session_management.weak_login_function.over_http
 - server_security_misconfiguration.oauth_misconfiguration.account_squatting
 - Third-party mapping to [Secure Code Warrior](https://www.securecodewarrior.com/) trainings
+- automotive_security_misconfiguration.can.injection_battery_management_system
+- automotive_security_misconfiguration.can.injection_steering_control
+- automotive_security_misconfiguration.can.injection_pyrotechnical_device_deployment_tool
+- automotive_security_misconfiguration.can.injection_headlights
+- automotive_security_misconfiguration.can.injection_sensors
+- automotive_security_misconfiguration.can.injection_vehicle_anti_theft_systems
+- automotive_security_misconfiguration.can.injection_powertrain
+- automotive_security_misconfiguration.can.injection_basic_safety_message
+- automotive_security_misconfiguration.battery_management_system
+- automotive_security_misconfiguration.battery_management_system.firmware_dump
+- automotive_security_misconfiguration.battery_management_system.fraudulent_interface
+- automotive_security_misconfiguration.gnss_gps
+- automotive_security_misconfiguration.gnss_gps.spoofing
+- automotive_security_misconfiguration.immobilizer
+- automotive_security_misconfiguration.immobilizer.engine_start
+- automotive_security_misconfiguration.abs
+- automotive_security_misconfiguration.abs.unintended_acceleration_brake
+- automotive_security_misconfiguration.rsu
+- automotive_security_misconfiguration.rsu.sybil_attack
+- automotive_security_misconfiguration.infotainment_radio_head_unit
+- automotive_security_misconfiguration.infotainment_radio_head_unit.pii_leakage
+- automotive_security_misconfiguration.infotainment_radio_head_unit.ota_firmware_manipulation
+- automotive_security_misconfiguration.infotainment_radio_head_unit.code_execution_can_bus_pivot
+- automotive_security_misconfiguration.infotainment_radio_head_unit.code_execution_no_can_bus_pivot
+- automotive_security_misconfiguration.infotainment_radio_head_unit.unauthorized_access_to_services
+- automotive_security_misconfiguration.infotainment_radio_head_unit.source_code_dump
+- automotive_security_misconfiguration.infotainment_radio_head_unit.dos_brick
+- automotive_security_misconfiguration.infotainment_radio_head_unit.default_credentials
 
 ### Removed
 - insufficient_security_configurability.lack_of_verification_email
 - broken_authentication_and_session_management.weak_login_function.https_not_available_or_http_by_default
 - broken_authentication_and_session_management.weak_login_function.http_and_https_available
 - broken_authentication_and_session_management.weak_login_function.lan_only
+- automotive_security_misconfiguration.infotainment
+- automotive_security_misconfiguration.infotainment.pii_leakage
+- automotive_security_misconfiguration.infotainment.code_execution_can_bus_pivot
+- automotive_security_misconfiguration.infotainment.code_execution_no_can_bus_pivot
+- automotive_security_misconfiguration.infotainment.unauthorized_access_to_services
+- automotive_security_misconfiguration.infotainment.source_code_dump
+- automotive_security_misconfiguration.infotainment.dos_brick
+- automotive_security_misconfiguration.infotainment.default_credentials
 
 ### Changed
  - server_security_misconfiguration.lack_of_security_headers.cache_control_for_a_non_sensitive_page updated remediation advice
diff --git a/deprecated-node-mapping.json b/deprecated-node-mapping.json
index 1a5fb0f9..8e0368bf 100644
--- a/deprecated-node-mapping.json
+++ b/deprecated-node-mapping.json
@@ -166,5 +166,29 @@
   },
   "broken_authentication_and_session_management.weak_login_function.lan_only": {
     "1.10": "broken_authentication_and_session_management.weak_login_function.over_http"
+  },
+  "automotive_security_misconfiguration.infotainment": {
+    "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit"
+  },
+  "automotive_security_misconfiguration.infotainment.pii_leakage": {
+    "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.pii_leakage"
+  },
+  "automotive_security_misconfiguration.infotainment.code_execution_can_bus_pivot": {
+    "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.code_execution_can_bus_pivot"
+  },
+  "automotive_security_misconfiguration.infotainment.code_execution_no_can_bus_pivot": {
+    "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.code_execution_no_can_bus_pivot"
+  },
+  "automotive_security_misconfiguration.infotainment.unauthorized_access_to_services": {
+    "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.unauthorized_access_to_services"
+  },
+  "automotive_security_misconfiguration.infotainment.source_code_dump": {
+    "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.source_code_dump"
+  },
+  "automotive_security_misconfiguration.infotainment.dos_brick": {
+    "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.dos_brick"
+  },
+  "automotive_security_misconfiguration.infotainment.default_credentials": {
+    "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.default_credentials"
   }
 }
diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index e9bbd78b..2b298e1d 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -910,12 +910,16 @@
       "id": "automotive_security_misconfiguration",
       "children": [
         {
-          "id": "infotainment",
+          "id": "infotainment_radio_head_unit",
           "children": [
             {
               "id": "pii_leakage",
               "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"
             },
+            {
+              "id": "ota_firmware_manipulation",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"
+            },
             {
               "id": "code_execution_can_bus_pivot",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"
@@ -978,6 +982,38 @@
         {
           "id": "can",
           "children": [
+            {
+              "id": "injection_battery_management_system",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+            },
+            {
+              "id": "injection_steering_control",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+            },
+            {
+              "id": "injection_pyrotechnical_device_deployment_tool",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+            },
+            {
+              "id": "injection_headlights",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+            },
+            {
+              "id": "injection_sensors",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+            },
+            {
+              "id": "injection_vehicle_anti_theft_systems",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+            },
+            {
+              "id": "injection_powertrain",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+            },
+            {
+              "id": "injection_basic_safety_message",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+            },
             {
               "id": "injection_disallowed_messages",
               "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"
@@ -987,6 +1023,55 @@
               "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"
             }
           ]
+        },
+        {
+          "id": "battery_management_system",
+          "children": [
+            {
+              "id": "firmware_dump",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"
+            },
+            {
+              "id": "fraudulent_interface",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H"
+            }
+          ]
+        },
+        {
+          "id": "gnss_gps",
+          "children": [
+            {
+              "id": "spoofing",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+            }
+          ]
+        },
+        {
+          "id": "immobilizer",
+          "children": [
+            {
+              "id": "engine_start",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+            }
+          ]
+        },
+        {
+          "id": "abs",
+          "children": [
+            {
+              "id": "unintended_acceleration_brake",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+            }
+          ]
+        },
+        {
+          "id": "rsu",
+          "children": [
+            {
+              "id": "sybil_attack",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+            }
+          ]
         }
       ]
     },
diff --git a/mappings/cwe/cwe.json b/mappings/cwe/cwe.json
index b79e7a40..0095b8d0 100644
--- a/mappings/cwe/cwe.json
+++ b/mappings/cwe/cwe.json
@@ -436,7 +436,7 @@
       "cwe": null,
       "children": [
         {
-          "id": "infotainment",
+          "id": "infotainment_radio_head_unit",
           "cwe": null
         },
         {
@@ -446,6 +446,26 @@
         {
           "id": "can",
           "cwe": null
+        },
+        {
+          "id": "battery_management_system",
+          "cwe": null
+        },
+        {
+          "id": "gnss_gps",
+          "cwe": null
+        },
+        {
+          "id": "immobilizer",
+          "cwe": null
+        },
+        {
+          "id": "abs",
+          "cwe": null
+        },
+        {
+          "id": "rsu",
+          "cwe": null
         }
       ]
     },
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index f47578dd..a6dba6ec 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -1268,7 +1268,7 @@
       "remediation_advice": "",
       "children": [
         {
-          "id": "infotainment",
+          "id": "infotainment_radio_head_unit",
           "children": [
             {
               "id": "pii_leakage",
@@ -1277,6 +1277,13 @@
                 "https://www.prnewswire.com/news-releases/carsblues-vehicle-hack-exploits-vehicle-infotainment-systems-allowing-access-to-call-logs-text-messages-and-more-300751244.html"
               ]
             },
+            {
+              "id": "ota_firmware_manipulation",
+              "remediation_advice": "Implement key signing and firmware verification.",
+              "references": [
+                "https://www.wired.com/2015/02/firmware-vulnerable-hacking-can-done/"
+              ]
+            },
             {
               "id": "code_execution_can_bus_pivot",
               "remediation_advice": "Filter arbitrary commands and apply input validation to any media devices to prevent executing from the infotainment system. Make sure that the infotainment system is on a sandbox module and does not have direct interaction to the CANbus network.",
@@ -1386,6 +1393,62 @@
         {
           "id": "can",
           "children": [
+            {
+              "id": "injection_battery_management_system",
+              "remediation_advice": "Filter malicious CANBus requests or codes that can be injected into the battery management system.",
+              "references": [
+                "https://i.blackhat.com/USA-20/Wednesday/us-20-Kiley-Reverse-Engineering-The-Tesla-Battery-Management-System-To-Increase-Power-Available.pdf"
+              ]
+            },
+            {
+              "id": "injection_steering_control",
+              "remediation_advice": "Filter malicious CANBus requests or codes that can be injected into the steering control.",
+              "references": [
+                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
+              ]
+            },
+            {
+              "id": "injection_pyrotechnical_device_deployment_tool",
+              "remediation_advice": "Countermeasures of this attack include selection of suitable technologies, hard-wired plausibility checks, usage of cryptography, and hardening against brute force attacks of the keys or algorithms.",
+              "references": [
+                "https://www.rapid7.com/db/modules/post/hardware/automotive/pdt/"
+              ]
+            },
+            {
+              "id": "injection_headlights",
+              "remediation_advice": "Filter malicious CANBus requests or codes that can be injected into the headlights.",
+              "references": [
+                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
+              ]
+            },
+            {
+              "id": "injection_sensors",
+              "remediation_advice": "Filter malicious CANBus requests or codes that can be used to manipulate the sensors.",
+              "references": [
+                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
+              ]
+            },
+            {
+              "id": "injection_vehicle_anti_theft_systems",
+              "remediation_advice": "Filter malicious CANBus requests or codes that can be used to manipulate the Vehicle Anti-theft Systems.",
+              "references": [
+                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
+              ]
+            },
+            {
+              "id": "injection_powertrain",
+              "remediation_advice": "Filter malicious CANBus requests or codes that can be used to manipulate the Powertrain.",
+              "references": [
+                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
+              ]
+            },
+            {
+              "id": "injection_basic_safety_message",
+              "remediation_advice": "Filter malicious CANBus requests or codes that can be used to manipulate the Basic Safety Message.",
+              "references": [
+                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
+              ]
+            },
             {
               "id": "injection_disallowed_messages",
               "remediation_advice": "Filter malicious CANbus requests or codes especially if not included in the DBC file by implementing a secure gateway.",
@@ -1402,6 +1465,73 @@
               ]
             }
           ]
+        },
+        {
+          "id": "battery_management_system",
+          "children": [
+            {
+              "id": "firmware_dump",
+              "remediation_advice": "Implement secure boot, obfuscate the code, and compression algorithm with hardware-backed dictionary. Find creative ways to break disassemblers and debuggers.",
+              "references": [
+                "https://en.wikipedia.org/wiki/Security_through_obscurityhttps://www.researchgate.net/publication/320859156_Source_Code_Vulnerabilities_in_IoT_Software_Systems"
+              ]
+            },
+            {
+              "id": "fraudulent_interface",
+              "remediation_advice": "Protect and make sure the battery management system provides prevention from operating outside its safe operating area.",
+              "references": [
+                "https://en.wikipedia.org/wiki/Battery_management_system"
+              ]
+            }
+          ]
+        },
+        {
+          "id": "gnss_gps",
+          "children": [
+            {
+              "id": "spoofing",
+              "remediation_advice": "Implement a system that detects GPS spoofing which evaluates or prevents the system from believing and acting on false data.",
+              "references": [
+                "https://www.kaspersky.com/blog/gps-spoofing-protection/26837/"
+              ]
+            }
+          ]
+        },
+        {
+          "id": "immobilizer",
+          "children": [
+            {
+              "id": "engine_start",
+              "remediation_advice": "Implement a secure gateway to protect against immobilizer attacks, assign significant bytes in data and a method to send an abnormal signal overwriting the false data when a communication error has occurred.",
+              "references": [
+                "https://www.kaspersky.com/blog/36c3-immobilizers/32419/"
+              ]
+            }
+          ]
+        },
+        {
+          "id": "abs",
+          "children": [
+            {
+              "id": "unintended_acceleration_brake",
+              "remediation_advice": "Implement a secure gateway to protect against ABS attacks.",
+              "references": [
+                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
+              ]
+            }
+          ]
+        },
+        {
+          "id": "rsu",
+          "children": [
+            {
+              "id": "sybil_attack",
+              "remediation_advice": "Known approaches to Sybil attack prevention include identity validation, social trust graph algorithms, or economic costs, personhood validation, and application-specific defenses.",
+              "references": [
+                "https://en.wikipedia.org/wiki/Sybil_attack"
+              ]
+            }
+          ]
         }
       ]
     },
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index 86af5a4a..1301bd0d 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1931,8 +1931,8 @@
       "type": "category",
       "children": [
         {
-          "id": "infotainment",
-          "name": "Infotainment",
+          "id": "infotainment_radio_head_unit",
+          "name": "Infotainment, Radio Head Unit",
           "type": "subcategory",
           "children": [
             {
@@ -1941,6 +1941,12 @@
               "type": "variant",
               "priority": 1
             },
+            {
+              "id": "ota_firmware_manipulation",
+              "name": "OTA Firmware Manipulation",
+              "type": "variant",
+              "priority": 2
+            },
             {
               "id": "code_execution_can_bus_pivot",
               "name": "Code Execution (CAN Bus Pivot)",
@@ -2033,6 +2039,54 @@
           "name": "CAN",
           "type": "subcategory",
           "children": [
+            {
+              "id": "injection_battery_management_system",
+              "name": "Injection (Battery Management System)",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "injection_steering_control",
+              "name": "Injection (Steering Control)",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "injection_pyrotechnical_device_deployment_tool",
+              "name": "Injection (Pyrotechnical Device Deployment Tool)",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "injection_headlights",
+              "name": "Injection (Headlights)",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "injection_sensors",
+              "name": "Injection (Sensors)",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "injection_vehicle_anti_theft_systems",
+              "name": "Injection (Vehicle Anti-theft Systems)",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "injection_powertrain",
+              "name": "Injection (Powertrain)",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "injection_basic_safety_message",
+              "name": "Injection (Basic Safety Message)",
+              "type": "variant",
+              "priority": 3
+            },
             {
               "id": "injection_disallowed_messages",
               "name": "Injection (Disallowed Messages)",
@@ -2046,6 +2100,77 @@
               "priority": 4
             }
           ]
+        },
+        {
+          "id": "battery_management_system",
+          "name": "Battery Management System",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "firmware_dump",
+              "name": "Firmware Dump",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "fraudulent_interface",
+              "name": "Fraudulent Interface",
+              "type": "variant",
+              "priority": 4
+            }
+          ]
+        },
+        {
+          "id": "gnss_gps",
+          "name": "GNSS / GPS",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "spoofing",
+              "name": "Spoofing",
+              "type": "variant",
+              "priority": 4
+            }
+          ]
+        },
+        {
+          "id": "immobilizer",
+          "name": "Immobilizer",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "engine_start",
+              "name": "Engine Start",
+              "type": "variant",
+              "priority": 3
+            }
+          ]
+        },
+        {
+          "id": "abs",
+          "name": "Automatic Braking System (ABS)",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "unintended_acceleration_brake",
+              "name": "Unintended Acceleration / Brake",
+              "type": "variant",
+              "priority": 3
+            }
+          ]
+        },
+        {
+          "id": "rsu",
+          "name": "Roadside Unit (RSU)",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "sybil_attack",
+              "name": "Sybil Attack",
+              "type": "variant",
+              "priority": 4
+            }
+          ]
         }
       ]
     },

From 1d7a58d62e1a98b61b44f7bc30893b3d6c729c31 Mon Sep 17 00:00:00 2001
From: PLRoman <plr0man@users.noreply.github.com>
Date: Mon, 15 Mar 2021 16:43:01 -0500
Subject: [PATCH 21/54] Downgrade Flash-based entries (#319)

Co-authored-by: Adam David <adamrdavid@gmail.com>
---
 CHANGELOG.md                       |  5 +++++
 deprecated-node-mapping.json       |  6 ++++++
 mappings/cvss_v3/cvss_v3.json      | 17 ++++-------------
 vulnerability-rating-taxonomy.json | 19 +++----------------
 4 files changed, 18 insertions(+), 29 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index e6712912..95836ba8 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -45,6 +45,8 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - broken_authentication_and_session_management.weak_login_function.https_not_available_or_http_by_default
 - broken_authentication_and_session_management.weak_login_function.http_and_https_available
 - broken_authentication_and_session_management.weak_login_function.lan_only
+- cross_site_request_forgery_csrf.flash_based.high_impact
+- cross_site_request_forgery_csrf.flash_based.low_impact
 - automotive_security_misconfiguration.infotainment
 - automotive_security_misconfiguration.infotainment.pii_leakage
 - automotive_security_misconfiguration.infotainment.code_execution_can_bus_pivot
@@ -57,6 +59,9 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 ### Changed
  - server_security_misconfiguration.lack_of_security_headers.cache_control_for_a_non_sensitive_page updated remediation advice
  - server_security_misconfiguration.lack_of_security_headers.cache_control_for_a_sensitive_page updated remediation advice
+ - cross_site_scripting_xss.flash_based priority changed from P4 to P5
+ - cross_site_request_forgery_csrf.flash_based priority changed from null to P5 (due to children removal)
+ - using_components_with_known_vulnerabilities.rosetta_flash priority changed from P4 to P5
 
 ## [v1.9](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.8...v1.9) - 2020-05-22
 ### Added
diff --git a/deprecated-node-mapping.json b/deprecated-node-mapping.json
index 8e0368bf..302579ca 100644
--- a/deprecated-node-mapping.json
+++ b/deprecated-node-mapping.json
@@ -167,6 +167,12 @@
   "broken_authentication_and_session_management.weak_login_function.lan_only": {
     "1.10": "broken_authentication_and_session_management.weak_login_function.over_http"
   },
+  "cross_site_request_forgery_csrf.flash_based.high_impact": {
+    "1.10": "cross_site_request_forgery_csrf.flash_based"
+  },
+  "cross_site_request_forgery_csrf.flash_based.low_impact": {
+    "1.10": "cross_site_request_forgery_csrf.flash_based"
+  },
   "automotive_security_misconfiguration.infotainment": {
     "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit"
   },
diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index 2b298e1d..66093cd0 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -295,7 +295,7 @@
             },
             {
               "id": "flash_based_external_authentication_injection",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
             },
             {
               "id": "email_html_injection",
@@ -582,7 +582,7 @@
         },
         {
           "id": "flash_based",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N"
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:N/A:N"
         },
         {
           "id": "cookie_based",
@@ -680,16 +680,7 @@
         },
         {
           "id": "flash_based",
-          "children": [
-            {
-              "id": "high_impact",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:N"
-            },
-            {
-              "id": "low_impact",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"
-            }
-          ]
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
         }
       ]
     },
@@ -767,7 +758,7 @@
       "children": [
         {
           "id": "rosetta_flash",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N"
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
         }
       ]
     },
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index 1301bd0d..a70dd876 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1120,7 +1120,7 @@
           "id": "flash_based",
           "name": "Flash-Based",
           "type": "subcategory",
-          "priority": 4
+          "priority": 5
         },
         {
           "id": "cookie_based",
@@ -1301,20 +1301,7 @@
           "id": "flash_based",
           "name": "Flash-Based",
           "type": "subcategory",
-          "children": [
-            {
-              "id": "high_impact",
-              "name": "High Impact",
-              "type": "variant",
-              "priority": 4
-            },
-            {
-              "id": "low_impact",
-              "name": "Low Impact",
-              "type": "variant",
-              "priority": 5
-            }
-          ]
+          "priority": 5
         }
       ]
     },
@@ -1627,7 +1614,7 @@
           "id": "rosetta_flash",
           "name": "Rosetta Flash",
           "type": "subcategory",
-          "priority": 4
+          "priority": 5
         },
         {
           "id": "outdated_software_version",

From 6bbca3e76d535018603c3f06c3ee0690a12fdce4 Mon Sep 17 00:00:00 2001
From: Adam David <adamrdavid@gmail.com>
Date: Tue, 16 Mar 2021 18:52:10 -0700
Subject: [PATCH 22/54] Update scw json links (#322)

* Update scw json links

* Remove flash based entries
---
 .../secure-code-warriors-links.json           | 66 ++++++++++++-------
 1 file changed, 42 insertions(+), 24 deletions(-)

diff --git a/third-party-mappings/remediation_training/secure-code-warriors-links.json b/third-party-mappings/remediation_training/secure-code-warriors-links.json
index c1a643c7..da241a6d 100755
--- a/third-party-mappings/remediation_training/secure-code-warriors-links.json
+++ b/third-party-mappings/remediation_training/secure-code-warriors-links.json
@@ -208,8 +208,6 @@
   "cross_site_request_forgery_csrf.action_specific.logout": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_request_forgery_csrf:action_specific:logout&redirect=true",
   "cross_site_request_forgery_csrf.csrf_token_not_unique_per_request": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_request_forgery_csrf:csrf_token_not_unique_per_request&redirect=true",
   "cross_site_request_forgery_csrf.flash_based": null,
-  "cross_site_request_forgery_csrf.flash_based.high_impact": null,
-  "cross_site_request_forgery_csrf.flash_based.low_impact": null,
   "application_level_denial_of_service_dos": null,
   "application_level_denial_of_service_dos.critical_impact_and_or_easy_difficulty": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=application_level_denial_of_service_dos:critical_impact_and_or_easy_difficulty&redirect=true",
   "application_level_denial_of_service_dos.high_impact_and_or_medium_difficulty": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=application_level_denial_of_service_dos:high_impact_and_or_medium_difficulty&redirect=true",
@@ -226,17 +224,17 @@
   "unvalidated_redirects_and_forwards.lack_of_security_speed_bump_page": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:lack_of_security_speed_bump_page&redirect=true",
   "external_behavior": null,
   "external_behavior.browser_feature": null,
-  "external_behavior.browser_feature.plaintext_password_field": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:browser_feature:plaintext_password_field&redirect=true",
-  "external_behavior.browser_feature.save_password": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:browser_feature:save_password&redirect=true",
-  "external_behavior.browser_feature.autocomplete_enabled": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:browser_feature:autocomplete_enabled&redirect=true",
-  "external_behavior.browser_feature.autocorrect_enabled": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:browser_feature:autocorrect_enabled&redirect=true",
-  "external_behavior.browser_feature.aggressive_offline_caching": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:browser_feature:aggressive_offline_caching&redirect=true",
-  "external_behavior.csv_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:csv_injection&redirect=true",
+  "external_behavior.browser_feature.plaintext_password_field": null,
+  "external_behavior.browser_feature.save_password": null,
+  "external_behavior.browser_feature.autocomplete_enabled": null,
+  "external_behavior.browser_feature.autocorrect_enabled": null,
+  "external_behavior.browser_feature.aggressive_offline_caching": null,
+  "external_behavior.csv_injection": null,
   "external_behavior.captcha_bypass": null,
   "external_behavior.captcha_bypass.crowdsourcing": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:captcha_bypass:crowdsourcing&redirect=true",
   "external_behavior.system_clipboard_leak": null,
-  "external_behavior.system_clipboard_leak.shared_links": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:system_clipboard_leak:shared_links&redirect=true",
-  "external_behavior.user_password_persisted_in_memory": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:user_password_persisted_in_memory&redirect=true",
+  "external_behavior.system_clipboard_leak.shared_links": null,
+  "external_behavior.user_password_persisted_in_memory": null,
   "insufficient_security_configurability": null,
   "insufficient_security_configurability.weak_password_policy": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_policy&redirect=true",
   "insufficient_security_configurability.no_password_policy": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:no_password_policy&redirect=true",
@@ -307,24 +305,44 @@
   "client_side_injection.binary_planting.non_default_folder_privilege_escalation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=client_side_injection:binary_planting:non_default_folder_privilege_escalation&redirect=true",
   "client_side_injection.binary_planting.no_privilege_escalation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=client_side_injection:binary_planting:no_privilege_escalation&redirect=true",
   "automotive_security_misconfiguration": null,
-  "automotive_security_misconfiguration.infotainment": null,
-  "automotive_security_misconfiguration.infotainment.pii_leakage": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:infotainment:pii_leakage&redirect=true",
-  "automotive_security_misconfiguration.infotainment.code_execution_can_bus_pivot": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:infotainment:code_execution_can_bus_pivot&redirect=true",
-  "automotive_security_misconfiguration.infotainment.code_execution_no_can_bus_pivot": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:infotainment:code_execution_no_can_bus_pivot&redirect=true",
-  "automotive_security_misconfiguration.infotainment.unauthorized_access_to_services": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:infotainment:unauthorized_access_to_services&redirect=true",
-  "automotive_security_misconfiguration.infotainment.source_code_dump": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:infotainment:source_code_dump&redirect=true",
-  "automotive_security_misconfiguration.infotainment.dos_brick": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:infotainment:dos_brick&redirect=true",
-  "automotive_security_misconfiguration.infotainment.default_credentials": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:infotainment:default_credentials&redirect=true",
+  "automotive_security_misconfiguration.infotainment_radio_head_unit": null,
+  "automotive_security_misconfiguration.infotainment_radio_head_unit.pii_leakage": null,
+  "automotive_security_misconfiguration.infotainment_radio_head_unit.ota_firmware_manipulation": null,
+  "automotive_security_misconfiguration.infotainment_radio_head_unit.code_execution_can_bus_pivot": null,
+  "automotive_security_misconfiguration.infotainment_radio_head_unit.code_execution_no_can_bus_pivot": null,
+  "automotive_security_misconfiguration.infotainment_radio_head_unit.unauthorized_access_to_services": null,
+  "automotive_security_misconfiguration.infotainment_radio_head_unit.source_code_dump": null,
+  "automotive_security_misconfiguration.infotainment_radio_head_unit.dos_brick": null,
+  "automotive_security_misconfiguration.infotainment_radio_head_unit.default_credentials": null,
   "automotive_security_misconfiguration.rf_hub": null,
-  "automotive_security_misconfiguration.rf_hub.key_fob_cloning": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:rf_hub:key_fob_cloning&redirect=true",
-  "automotive_security_misconfiguration.rf_hub.can_injection_interaction": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:rf_hub:can_injection_interaction&redirect=true",
+  "automotive_security_misconfiguration.rf_hub.key_fob_cloning": null,
+  "automotive_security_misconfiguration.rf_hub.can_injection_interaction": null,
   "automotive_security_misconfiguration.rf_hub.data_leakage_pull_encryption_mechanism": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:rf_hub:data_leakage_pull_encryption_mechanism&redirect=true",
   "automotive_security_misconfiguration.rf_hub.unauthorized_access_turn_on": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:rf_hub:unauthorized_access_turn_on&redirect=true",
-  "automotive_security_misconfiguration.rf_hub.roll_jam": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:rf_hub:roll_jam&redirect=true",
-  "automotive_security_misconfiguration.rf_hub.replay": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:rf_hub:replay&redirect=true",
-  "automotive_security_misconfiguration.rf_hub.relay": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:rf_hub:relay&redirect=true",
+  "automotive_security_misconfiguration.rf_hub.roll_jam": null,
+  "automotive_security_misconfiguration.rf_hub.replay": null,
+  "automotive_security_misconfiguration.rf_hub.relay": null,
   "automotive_security_misconfiguration.can": null,
-  "automotive_security_misconfiguration.can.injection_disallowed_messages": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:can:injection_disallowed_messages&redirect=true",
+  "automotive_security_misconfiguration.can.injection_battery_management_system": null,
+  "automotive_security_misconfiguration.can.injection_steering_control": null,
+  "automotive_security_misconfiguration.can.injection_pyrotechnical_device_deployment_tool": null,
+  "automotive_security_misconfiguration.can.injection_headlights": null,
+  "automotive_security_misconfiguration.can.injection_sensors": null,
+  "automotive_security_misconfiguration.can.injection_vehicle_anti_theft_systems": null,
+  "automotive_security_misconfiguration.can.injection_powertrain": null,
+  "automotive_security_misconfiguration.can.injection_basic_safety_message": null,
+  "automotive_security_misconfiguration.can.injection_disallowed_messages": null,
   "automotive_security_misconfiguration.can.injection_dos": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:can:injection_dos&redirect=true",
+  "automotive_security_misconfiguration.battery_management_system": null,
+  "automotive_security_misconfiguration.battery_management_system.firmware_dump": null,
+  "automotive_security_misconfiguration.battery_management_system.fraudulent_interface": null,
+  "automotive_security_misconfiguration.gnss_gps": null,
+  "automotive_security_misconfiguration.gnss_gps.spoofing": null,
+  "automotive_security_misconfiguration.immobilizer": null,
+  "automotive_security_misconfiguration.immobilizer.engine_start": null,
+  "automotive_security_misconfiguration.abs": null,
+  "automotive_security_misconfiguration.abs.unintended_acceleration_brake": null,
+  "automotive_security_misconfiguration.rsu": null,
+  "automotive_security_misconfiguration.rsu.sybil_attack": null,
   "indicators_of_compromise": null
 }

From 1643be363b8d9f1c360cbfadaf82bdd7e8f0e53e Mon Sep 17 00:00:00 2001
From: Barnett Klane <barnett.klane@me.com>
Date: Thu, 18 Mar 2021 17:43:34 -0700
Subject: [PATCH 23/54] V1.10 (#320)

* prepare v1.10

* update version timestamp

* update date for release date

* set release date within json

* update date

* update date
---
 CHANGELOG.md                       | 7 +++++++
 vulnerability-rating-taxonomy.json | 2 +-
 2 files changed, 8 insertions(+), 1 deletion(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 95836ba8..0a7d095a 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -5,6 +5,13 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 
 ## [Unreleased]
 ### Added
+
+### Removed
+
+### Changed
+
+## [v1.10](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.9...v1.10) - 2021-03-18
+### Added
 - insufficient_security_configurability.verification_of_contact_method_not_required
 - insufficient_security_configurability.weak_two_fa_implementation.two_fa_code_is_not_updated_after_new_code_is_requested
 - insufficient_security_configurability.weak_two_fa_implementation.old_two_fa_code_is_not_invalidated_after_new_code_is_generated
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index a70dd876..9a5e46c1 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1,6 +1,6 @@
 {
   "metadata": {
-    "release_date": "2020-05-22T00:00:00+00:00"
+    "release_date": "2021-03-18T00:00:00+00:00"
   },
   "content": [
     {

From 9fd4df06eb5eff7eaed3c8c1de7edc41d2dac7ab Mon Sep 17 00:00:00 2001
From: Barnett Klane <barnett.klane@me.com>
Date: Sat, 20 Mar 2021 09:25:45 -0700
Subject: [PATCH 24/54] fix scw spelling

---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 8a23fc16..a019f6cc 100644
--- a/README.md
+++ b/README.md
@@ -167,7 +167,7 @@ Each mapping should be setup in the following structure:
 - [Remediation Advice](mappings/remediation_advice/remediation_advice.json)
 
 #### Third-Party Managed Mappings
-- [Secure Code Warriors](third-party-mappings/remediation_training/secure-code-warriors-links.json)
+- [Secure Code Warrior](third-party-mappings/remediation_training/secure-code-warrior-links.json)
 
 ## Supported Libraries
 - [Ruby](https://github.com/bugcrowd/vrt-ruby)

From 8769e032fbe8618503086d60a28d405934b62640 Mon Sep 17 00:00:00 2001
From: Barnett Klane <barnett.klane@me.com>
Date: Tue, 23 Mar 2021 11:01:29 -0700
Subject: [PATCH 25/54] Fix Secure Code Warrior Spelling (#323)

* Rename secure-code-warriors-links.json to secure-code-warrior-links.json

* fix scw spelling
---
 lib/utils/utils.py                                              | 2 +-
 ...-code-warriors-links.json => secure-code-warrior-links.json} | 0
 2 files changed, 1 insertion(+), 1 deletion(-)
 rename third-party-mappings/remediation_training/{secure-code-warriors-links.json => secure-code-warrior-links.json} (100%)

diff --git a/lib/utils/utils.py b/lib/utils/utils.py
index 69d87034..70497821 100644
--- a/lib/utils/utils.py
+++ b/lib/utils/utils.py
@@ -6,7 +6,7 @@
 VRT_SCHEMA_FILENAME = 'vrt.schema.json'
 MAPPING_DIR = 'mappings'
 
-SCW_FILENAME = 'secure-code-warriors-links.json'
+SCW_FILENAME = 'secure-code-warrior-links.json'
 SCW_DIR = 'remediation_training'
 THIRD_PARTY_MAPPING_DIR = 'third-party-mappings'
 
diff --git a/third-party-mappings/remediation_training/secure-code-warriors-links.json b/third-party-mappings/remediation_training/secure-code-warrior-links.json
similarity index 100%
rename from third-party-mappings/remediation_training/secure-code-warriors-links.json
rename to third-party-mappings/remediation_training/secure-code-warrior-links.json

From 716ef51dfe8ee208f1732c925641194fd4a9d136 Mon Sep 17 00:00:00 2001
From: Barnett Klane <barnett.klane@me.com>
Date: Mon, 29 Mar 2021 20:43:28 -0700
Subject: [PATCH 26/54] V1.10.1 (#324)

---
 CHANGELOG.md                       | 10 ++++------
 vulnerability-rating-taxonomy.json |  2 +-
 2 files changed, 5 insertions(+), 7 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 0a7d095a..9a9d227f 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -10,6 +10,10 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 
 ### Changed
 
+## [v1.10.1](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.10...v1.10.1) - 2021-03-29
+### Changed
+- renamed `secure code warriors` mapping to `secure code warrior`
+
 ## [v1.10](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.9...v1.10) - 2021-03-18
 ### Added
 - insufficient_security_configurability.verification_of_contact_method_not_required
@@ -94,8 +98,6 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - sensitive_data_exposure.critically_sensitive_data.private_api_keys
 - sensitive_data_exposure.critically_sensitive_data
 
-### Changed
-
 
 ## [v1.8](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.7.1...v1.8) - 2019-09-25
 ### Added
@@ -116,10 +118,6 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 ### Added
 - Remediation Advice and CVSS mappings for automotive_security_misconfiguration
 
-### Removed
-
-### Changed
-
 ##  [v1.7](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.6...v1.7) - 2019-03-13
 ### Added
 - sensitive_data_exposure.weak_password_reset_implementation.token_leakage_via_host_header_poisoning
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index 9a5e46c1..2491dc30 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1,6 +1,6 @@
 {
   "metadata": {
-    "release_date": "2021-03-18T00:00:00+00:00"
+    "release_date": "2021-03-29T00:00:00+00:00"
   },
   "content": [
     {

From b069883984d54808d25890ec68f13018ccdd7800 Mon Sep 17 00:00:00 2001
From: Barnett Klane <barnett.klane@me.com>
Date: Tue, 4 May 2021 14:41:54 -0700
Subject: [PATCH 27/54] =?UTF-8?q?Update=20VRT=20Logo=20=E2=9C=A8=20=20(#32?=
 =?UTF-8?q?5)?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* update logo

* fix png

* limit height of image
---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index a019f6cc..34045cbf 100644
--- a/README.md
+++ b/README.md
@@ -1,5 +1,5 @@
 <p align="center">
-  <img src="https://user-images.githubusercontent.com/1854876/28642569-b44a823a-7207-11e7-8f26-af023adc5d22.png" />
+  <img src="https://user-images.githubusercontent.com/3189125/115076777-e434d600-9eb1-11eb-81bf-0b3ee98d9df5.png" height="200"/>
 </p>
 
 <p align="center">

From 48d97a2a8ef426b8c1166a07a182000b1a8e9c58 Mon Sep 17 00:00:00 2001
From: Timmy <106584457+TimmyBugcrowd@users.noreply.github.com>
Date: Tue, 16 May 2023 15:37:46 +0200
Subject: [PATCH 28/54] Remove X-XSS-Protection remediation advice header
 (#342)

* Remove p5 variant

Remove remediation advice for P5 XSS VRT entry

* remove xss protection remediation advice

Removed the 11th remediation advice on XSS P3 VRT entry

* Empty Remediation advice for P5-X-XSS-Protection header

Empty Remediation advice for P5-X-XSS-Protection header

* references can be zero

* Revert "references can be zero"

This reverts commit d6b3f19d348d9baed12e08ad054e723435c213b8.

* ignore DS_STORE

* Empty reference for passing tests

* Remove

---------

Co-authored-by: Amal Murali <amalmurali47@gmail.com>
---
 .gitignore                                          | 3 ++-
 mappings/remediation_advice/remediation_advice.json | 8 ++------
 2 files changed, 4 insertions(+), 7 deletions(-)

diff --git a/.gitignore b/.gitignore
index 5f703bab..559b476a 100644
--- a/.gitignore
+++ b/.gitignore
@@ -2,4 +2,5 @@
 *~
 
 # vscode config
-.vscode/
\ No newline at end of file
+.vscode/
+.DS_STORE
\ No newline at end of file
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index a6dba6ec..978af0b0 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -419,11 +419,7 @@
             },
             {
               "id": "x_xss_protection",
-              "remediation_advice": "As a best practice, consider using the `X-XSS-Protection` header as it will help ensure browsers that support this header will detect and help mitigate against reflected Cross Site Scripting. It is important to note that this will not completely mitigate against all reflected Cross Site Scripting attacks, but will help prevent many generic injection attacks.",
-              "references": [
-                "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#xxxsp_bp",
-                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-XSS-Protection"
-              ]
+              "remediation_advice": ""
             },
             {
               "id": "strict_transport_security",
@@ -854,7 +850,7 @@
     },
     {
       "id": "cross_site_scripting_xss",
-      "remediation_advice": "1. Always treat all user input as untrusted data.\n2. Never insert untrusted data except in allowed locations.\n3. Always input or output-encode all data coming into or out of the application.\n4. Always whitelist allowed characters and seldom use blacklisting of characters except in certain use cases.\n5. Always use a well-known and security encoding API for input and output encoding such as the `OWASP ESAPI`.\n6. Never try to write input and output encoders unless absolutely necessary. Chances are that someone has already written a good one.\n7. Never use the DOM function `innerHtml` and instead use the functions `innerText` and `textContent` to prevent against DOM-based XSS.\n8. As a best practice, consider using the `HTTPOnly` flag on cookies that are session tokens or sensitive tokens.\n9. As a best practice, consider implementing `Content Security Policy` to protect against XSS and other injection type attacks.\n10. As a best practice, consider using an auto-escaping templating system.\n11. As a best practice, consider using the `X-XSS-Protection` response header.",
+      "remediation_advice": "1. Always treat all user input as untrusted data.\n2. Never insert untrusted data except in allowed locations.\n3. Always input or output-encode all data coming into or out of the application.\n4. Always whitelist allowed characters and seldom use blacklisting of characters except in certain use cases.\n5. Always use a well-known and security encoding API for input and output encoding such as the `OWASP ESAPI`.\n6. Never try to write input and output encoders unless absolutely necessary. Chances are that someone has already written a good one.\n7. Never use the DOM function `innerHtml` and instead use the functions `innerText` and `textContent` to prevent against DOM-based XSS.\n8. As a best practice, consider using the `HTTPOnly` flag on cookies that are session tokens or sensitive tokens.\n9. As a best practice, consider implementing `Content Security Policy` to protect against XSS and other injection type attacks.\n10. As a best practice, consider using an auto-escaping templating system.",
       "references": [
         "https://www.owasp.org/index.php/Top_10-2017_A7-Cross-Site_Scripting_(XSS)",
         "https://www.owasp.org/index.php/Cross-site_Scripting_(XSS)",

From 967aa572d9bb94b9ca9c5e45238a35b31e993e14 Mon Sep 17 00:00:00 2001
From: Timmy <106584457+TimmyBugcrowd@users.noreply.github.com>
Date: Mon, 13 Nov 2023 18:09:45 +0100
Subject: [PATCH 29/54] hypens to underscores in vrt items (#386)

* Updating the SSRF category

* Revert "Updating the SSRF category"

This reverts commit 785bd8bf1c90b0cd907cb4e982db41657e48d547.

* Update SSRF classification from `Broken Access Control` to `Server Security Misconfiguration`

* Update SSRF mappings in CVSS V3, CWE, and Remediation Advice files

* Refactor SSRF category and split `External` variant into `GET Request Only` and `DNS Query Only`

* Update CVSS V3 mapping to include the updated mappings for the `External` SSRF variant

* PII-leakage-update

FROM:
P1 - Automotive Security Misconfiguration - Infotainment, Radio Head Unit - PII Leakage

TO:
P1 - Automotive Security Misconfiguration - Infotainment, Radio Head Unit - Sensitive data Leakage/Exposure
Varies - Sensitive Data Exposure - Disclosure of Secrets - PII Leakage/Exposure

* Update secure-code-warrior-links.json

* Update remediation_advice.json

* Update remediation_advice.json

* Update cwe.json

* Update cwe.json

* Update cwe.json

* Update cwe.json

* Update cwe.json

* Update cwe.json

* Update cwe.json

* Update remediation_advice.json

* HTTP Request Smuggling

Adding HTTP Request Smuggling as a new VRT entry.

* Update remediation_advice.json

* Update cvss_v3.json

* Failure to invalidate session on permission change

Adding Failure to invalidate session on permission change as a new VRT entry.

* Update cwe.json

* Update cwe.json

* Update remediation_advice.json

* Update cwe.json

* Deprecation of XSS on IE11

REMOVE: P4 - Cross-Site Scripting (XSS) - IE-Only - IE11

FROM: P5 - Cross-Site Scripting (XSS) - IE-Only - Older Version (< IE11)

TO: P5 - Cross-Site Scripting (XSS) - IE-Only

* Update remediation_advice.json

* LDAP Injection

Adding LDAP Injection as a new VRT entry.

* Update cwe.json

* Update remediation_advice.json

* Update cvss_v3.json

* HTML-Injection

Adding the category below to VRT:
P5 - Server-Side Injection - Content Spoofing - HTML Content Injection

* SSRF External Low Impact

* new IDOR variants

new IDOR variants

* LDAP Injection (#367)

* Update vulnerability-rating-taxonomy.json

* Update cvss_v3.json

* Update cvss_v3.json

* New Changes LDAP Injection

* Cryptographic Weakness Category #352

* New changes Cryptographic Weakness category

* json parse error fix (#380)

* hyphens to underscores in vrt items

* Update remediation_advice.json

* Update remediation_advice.json

---------

Co-authored-by: Amal Murali <amalmurali47@gmail.com>
Co-authored-by: Deepak Kumar Jha <Deepak.jha@bugcrowd.com>
---
 mappings/cvss_v3/cvss_v3.json                 | 242 ++++++++--
 mappings/cwe/cwe.json                         | 199 ++++++++-
 .../remediation_advice.json                   | 412 +++++++++++++++---
 .../secure-code-warrior-links.json            |   6 +-
 vulnerability-rating-taxonomy.json            | 403 ++++++++++++++---
 5 files changed, 1099 insertions(+), 163 deletions(-)

diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index 66093cd0..0a8af6dc 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -6,10 +6,35 @@
     {
       "id": "server_security_misconfiguration",
       "children": [
+        {
+          "id": "server_side_request_forgery_ssrf",
+          "children": [
+            {
+              "id": "internal_high_impact",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N"
+            },
+            {
+              "id": "internal_scan_and_or_medium_impact",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N"
+            },
+            {
+              "id": "external_low_impact",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
+            },
+            {
+              "id": "external_dns_query_only",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
+            }
+          ]
+        },
         {
           "id": "unsafe_cross_origin_resource_sharing",
           "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N"
         },
+        {
+          "id": "request_smuggling",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+        },
         {
           "id": "path_traversal",
           "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
@@ -265,6 +290,10 @@
           "id": "remote_code_execution_rce",
           "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
         },
+        {
+          "id": "ldap_injection",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+        },
         {
           "id": "sql_injection",
           "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N"
@@ -297,6 +326,10 @@
               "id": "flash_based_external_authentication_injection",
               "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
             },
+            {
+              "id": "html_content_injection",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+            },
             {
               "id": "email_html_injection",
               "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"
@@ -374,6 +407,10 @@
               "id": "on_logout",
               "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N"
             },
+            {
+              "id": "permission_change",
+              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N"
+            },
             {
               "id": "on_logout_server_side_only",
               "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N"
@@ -420,6 +457,10 @@
               "id": "for_publicly_accessible_asset",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"
             },
+            {
+              "id": "pii_leakage_exposure",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"
+            },
             {
               "id": "for_internal_asset",
               "cvss_v3": "AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L"
@@ -590,20 +631,7 @@
         },
         {
           "id": "ie_only",
-          "children": [
-            {
-              "id": "ie_eleven",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N"
-            },
-            {
-              "id": "xss_filter_disabled",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-            },
-            {
-              "id": "older_version_ie_eleven",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:N"
-            }
-          ]
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N"
         },
         {
           "id": "referer",
@@ -627,23 +655,6 @@
       "id": "broken_access_control",
       "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
       "children": [
-        {
-          "id": "server_side_request_forgery_ssrf",
-          "children": [
-            {
-              "id": "internal_high_impact",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N"
-            },
-            {
-              "id": "internal_scan_and_or_medium_impact",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N"
-            },
-            {
-              "id": "external",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
-            }
-          ]
-        },
         {
           "id": "username_enumeration",
           "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
@@ -834,9 +845,174 @@
         }
       ]
     },
+    {
+      "id": "cryptographic_weakness",
+      "children": [
+        {
+          "id": "insufficient_entropy",
+          "children": [
+            {
+              "id": "limited_rng_entropy_source",
+              "cvss_v3": "AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "use_of_trng_for_nonsecurity_purpose",
+              "cvss_v3": "AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"
+            },
+            {
+              "id": "prng_seed_reuse",
+              "cvss_v3": "AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "predictable_prng_seed",
+              "cvss_v3": "AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "small_seed_space_in_prng",
+              "cvss_v3": "AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "initialization_vector_reuse",
+              "cvss_v3": "AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "predictable_initialization_vector",
+              "cvss_v3": "AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
+            }
+          ]
+        },
+        {
+          "id": "insecure_implementation",
+          "children": [
+            {
+              "id": "missing_cryptographic_step",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L"
+            },
+            {
+              "id": "improper_following_of_specification",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L"
+            }
+          ]
+        },
+        {
+          "id": "weak_hash",
+          "children": [
+            {
+              "id": "lack_of_salt",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N"
+            },
+            {
+              "id": "use_of_predictable_salt",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N"
+            },
+            {
+              "id": "predictable_hash_collision",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N"
+            }
+          ]
+        },
+        {
+          "id": "insufficient_verification_of_data_authenticity",
+          "children": [
+            {
+              "id": "identity_check_value",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"
+            },
+            {
+              "id": "cryptographic_signature",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"
+            }
+          ]
+        },
+        {
+          "id": "insecure_key_generation",
+          "children": [
+            {
+              "id": "improper_asymmetric_prime_selection",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L"
+            },
+            {
+              "id": "improper_asymmetric_exponent_selection",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L"
+            },
+            {
+              "id": "insufficient_key_stretching",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"
+            },
+            {
+              "id": "insufficient_key_space",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"
+            },
+            {
+              "id": "key_exchange_without_entity_authentication",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"
+            }
+          ]
+        },
+        {
+          "id": "key_reuse",
+          "children": [
+            {
+              "id": "lack_of_perfect_forward_secrecy",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"
+            },
+            {
+              "id": "intra_environment",
+              "cvss_v3": "AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L"
+            },
+            {
+              "id": "inter_environment",
+              "cvss_v3": "AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"
+            }
+          ]
+        },
+        {
+          "id": "side_channel_attack",
+          "children": [
+            {
+              "id": "padding_oracle_attack",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "timing_attack",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "power_analysis_attack",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "emanations_attack",
+              "cvss_v3": "AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "differential_fault_analysis",
+              "cvss_v3": "AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
+            }
+          ]
+        },
+        {
+          "id": "use_of_expired_cryptographic_key_or_cert",
+          "cvss_v3": "AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L"
+        },
+        {
+          "id": "incomplete_cleanup_of_keying_material",
+          "cvss_v3": "AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L"
+        }
+      ]
+    },
     {
       "id": "broken_cryptography",
-      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N"
+      "children": [
+        {
+          "id": "use_of_broken_cryptographic_primitive",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"
+        },
+        {
+          "id": "use_of_vulnerable_cryptographic_library",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"
+        }
+      ]
     },
     {
       "id": "privacy_concerns",
@@ -904,7 +1080,7 @@
           "id": "infotainment_radio_head_unit",
           "children": [
             {
-              "id": "pii_leakage",
+              "id": "sensitive_data_leakage_exposure",
               "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"
             },
             {
diff --git a/mappings/cwe/cwe.json b/mappings/cwe/cwe.json
index 0095b8d0..edce0c68 100644
--- a/mappings/cwe/cwe.json
+++ b/mappings/cwe/cwe.json
@@ -7,10 +7,18 @@
       "id": "server_security_misconfiguration",
       "cwe": ["CWE-16"],
       "children": [
+        {
+          "id": "server_side_request_forgery_ssrf",
+          "cwe": ["CWE-918", "CWE-441"]
+        },
         {
           "id": "unsafe_cross_origin_resource_sharing",
           "cwe": ["CWE-942"]
         },
+        {
+          "id": "request_smuggling",
+          "cwe": ["CWE-444"]
+        },
         {
           "id": "path_traversal",
           "cwe": ["CWE-22", "CWE-73"]
@@ -139,6 +147,10 @@
       "id": "server_side_injection",
       "cwe": ["CWE-929"],
       "children": [
+        {
+          "id": "ldap_injection",
+          "cwe": ["CWE-90"]
+        },
         {
           "id": "file_inclusion",
           "cwe": ["CWE-73", "CWE-714"]
@@ -233,7 +245,12 @@
       "children": [
         {
           "id": "disclosure_of_secrets",
-          "cwe": ["CWE-522"]
+          "children": [
+            {
+              "id": "pii_leakage_exposure",
+              "cwe": ["CWE-200"]
+            }
+          ]
         },
         {
           "id": "exif_geolocation_data_not_stripped_from_uploaded_images",
@@ -281,10 +298,6 @@
           "id": "idor",
           "cwe": ["CWE-932"]
         },
-        {
-          "id": "server_side_request_forgery_ssrf",
-          "cwe": ["CWE-918", "CWE-441"]
-        },
         {
           "id": "username_enumeration",
           "cwe": ["CWE-200"]
@@ -411,9 +424,183 @@
         }
       ]
     },
+    {
+      "id": "cryptographic_weakness",
+      "cwe": ["CWE-310", "CWE-1205"],
+      "children": [
+        {
+          "id": "insufficient_entropy",
+          "cwe": ["CWE-330", "CWE-331"],
+          "children": [
+            {
+              "id": "limited_rng_entropy_source",
+              "cwe": ["CWE-338", "CWE-332"]
+            },
+            {
+              "id": "use_of_trng_for_nonsecurity_purpose",
+              "cwe": ["CWE-333"]
+            },
+            {
+              "id": "prng_seed_reuse",
+              "cwe": ["CWE-336"]
+            },
+            {
+              "id": "predictable_prng_seed",
+              "cwe": ["CWE-337"]
+            },
+            {
+              "id": "small_seed_space_in_prng",
+              "cwe": ["CWE-339", "CWE-334"]
+            },
+            {
+              "id": "initialization_vector_reuse",
+              "cwe": ["CWE-1204"]
+            },
+            {
+              "id": "predictable_initialization_vector",
+              "cwe": ["CWE-340"]
+            }
+          ]
+        },
+        {
+          "id": "insecure_implementation",
+          "cwe": ["CWE-573"],
+          "children": [
+            {
+              "id": "missing_cryptographic_step",
+              "cwe": ["CWE-325"]
+            },
+            {
+              "id": "improper_following_of_specification",
+              "cwe": ["CWE-358", "CWE-573"]
+            }
+          ]
+        },
+        {
+          "id": "weak_hash",
+          "cwe": ["CWE-328"],
+          "children": [
+            {
+              "id": "lack_of_salt",
+              "cwe": ["CWE-759", "CWE-916"]
+            },
+            {
+              "id": "use_of_predictable_salt",
+              "cwe": ["CWE-760"]
+            },
+            {
+              "id": "predictable_hash_collision",
+              "cwe": ["CWE-328"]
+            }
+          ]
+        },
+        {
+          "id": "insufficient_verification_of_data_authenticity",
+          "cwe": ["CWE-345"],
+          "children": [
+            {
+              "id": "identity_check_value",
+              "cwe": ["CWE-353", "CWE-354", "CWE-924"]
+            },
+            {
+              "id": "cryptographic_signature",
+              "cwe": ["CWE-347"]
+            }
+          ]
+        },
+        {
+          "id": "insecure_key_generation",
+          "cwe": null,
+          "children": [
+            {
+              "id": "improper_asymmetric_prime_selection",
+              "cwe": ["CWE-326", "CWE-1240"]
+            },
+            {
+              "id": "improper_asymmetric_exponent_selection",
+              "cwe": ["CWE-326", "CWE-1240"]
+            },
+            {
+              "id": "insufficient_key_stretching",
+              "cwe": ["CWE-326", "CWE-1240"]
+            },
+            {
+              "id": "insufficient_key_space",
+              "cwe": ["CWE-326", "CWE-331", "CWE-1240"]
+            },
+            {
+              "id": "key_exchange_without_entity_authentication",
+              "cwe": ["CWE-322"]
+            }
+          ]
+        },
+        {
+          "id": "key_reuse",
+          "cwe": ["CWE-323"],
+          "children": [
+            {
+              "id": "lack_of_perfect_forward_secrecy",
+              "cwe": ["CWE-323"]
+            },
+            {
+              "id": "intra_environment",
+              "cwe": ["CWE-323"]
+            },
+            {
+              "id": "inter_environment",
+              "cwe": ["CWE-323"]
+            }
+          ]
+        },
+        {
+          "id": "side_channel_attack",
+          "cwe": ["CWE-203", "CWE-1300"],
+          "children": [
+            {
+              "id": "padding_oracle_attack",
+              "cwe": ["CWE-780"]
+            },
+            {
+              "id": "timing_attack",
+              "cwe": ["CWE-208"]
+            },
+            {
+              "id": "power_analysis_attack",
+              "cwe": ["CWE-1300"]
+            },
+            {
+              "id": "emanations_attack",
+              "cwe": ["CWE-1300"]
+            },
+            {
+              "id": "differential_fault_analysis",
+              "cwe": ["CWE-204", "CWE-205"]
+            }
+          ]
+        },
+        {
+          "id": "use_of_expired_cryptographic_key_or_cert",
+          "cwe": ["CWE-295", "CWE-298", "CWE-299", "CWE-324"]
+        },
+        {
+          "id": "incomplete_cleanup_of_keying_material",
+          "cwe": ["CWE-459"]
+        }
+      ]
+    },
     {
       "id": "broken_cryptography",
-      "cwe": ["CWE-310"]
+      "cwe": ["CWE-327"],
+      "children": [
+        {
+          "id": "use_of_broken_cryptographic_primitive",
+          "cwe": ["CWE-327"]
+        },
+        {
+          "id": "use_of_vulnerable_cryptographic_library",
+          "cwe": ["CWE-327"]
+        }
+      ]
     },
     {
       "id": "privacy_concerns",
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index 978af0b0..082130fb 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -11,6 +11,17 @@
         "http://projects.webappsec.org/w/page/13246959/Server%20Misconfiguration"
       ],
       "children": [
+        {
+          "id": "server_side_request_forgery_ssrf",
+          "remediation_advice": "1. **Error handling and messages:** Display generic error messages to the client in case something goes wrong. If content type validation fails, display generic errors to the client like _“Invalid Data retrieved”_. Also ensure that the message is the same when the request fails on the backend and if invalid data is received. This will prevent the application from being abused as distinct error messages will be absent for closed and open ports. Under no circumstance should the raw response received from the remote server be displayed to the client.\n2. **Response Handling:** Validating responses received from remote resources on the server side is the most basic mitigation that can be readily implemented. If a web application expects specific content type on the server, programmatically ensure that the data received satisfies checks imposed on the server before displaying or processing the data for the client.\n3. **Disable unwanted protocols:** Allow only `http` and `https` to make requests to remote servers. Whitelisting these protocols will prevent the web application from making requests over other protocols like `file:///`, `gopher://`, `ftp://` and other URI schemes.\n4. **Blacklist IP addresses:** Internal IP addresses, localhost specifications and internal hostnames can all be blacklisted to prevent the web application from being abused to fetch data/attack these devices. Implementing this will protect servers from one time attack vectors. For example, even if the first fix (above) is implemented, the data is still being sent to the remote service. If an attack that does not need to see responses is executed (like a buffer overflow exploit) then this fix can actually prevent data from ever reaching the vulnerable device. Response handling is then not required at all as a request was never made.",
+          "references": [
+            "https://www.owasp.org/index.php/Top_10_2013-A7-Missing_Function_Level_Access_Control",
+            "http://projects.webappsec.org/w/page/13246913/Abuse%20of%20Functionality",
+            "http://resources.infosecinstitute.com/the-ssrf-vulnerability/",
+            "https://www.bishopfox.com/blog/2015/04/vulnerable-by-design-understanding-server-side-request-forgery/",
+            "http://niiconsulting.com/checkmate/2015/04/server-side-request-forgery-ssrf/"
+          ]
+        },
         {
           "id": "unsafe_cross_origin_resource_sharing",
           "remediation_advice": "1. **Origin & Access-Control-Allow-Origin:** The Origin header is always sent by the browser in a `CORS` request and indicates the origin of the request. The Origin header can not be changed from JavaScript however relying on this header for Access Control checks is not a good idea as it may be spoofed outside the browser, so you still need to check that application-level protocols are used to protect sensitive data.\n2. **Access-Control-Allow-Origin** is a response header used by a server to indicate which domains are allowed to read the response. Based on the `CORS W3 Specification` it is up to the client to determine and enforce the restriction of whether the client has access to the response data based on this header.\n3. Make sure that there are no insecure configurations using a wildcard as value which looks like `Access-Control-Allow-Origin: *` as this header means all domains are allowed access to the resource. \n4. Make sure that when the server returns back the Origin header that there are additional checks so that access of sensitive data is not allowed.\n5. The `Access-Control-Request-Method` header is used when a browser performs a preflight `OPTIONS` request and let the client indicate the request method of the final request. On the other hand, the `Access-Control-Allow-Method` is a response header used by the server to describe the methods the clients are allowed to use.\n6. **Access-Control-Request-Headers & Access-Control-Allow-Headers:** These two headers are used between the browser and the server to determine which headers can be used to perform a cross-origin request.\n7. **Access-Control-Allow-Credentials:** This header as part of a preflight request indicates that the final request can include user credentials.\n8. **Input validation:** XMLHttpRequest L2 (or XHR L2) introduces the possibility of creating a cross-domain request using the XHR API for backwards compatibility. This can introduce security vulnerabilities that in XHR L1 were not present. Interesting points of the code to exploit would be URLs that are passed to XMLHttpRequest without validation, specially if absolute URLS are allowed because that could lead to code injection. Likewise, other part of the application that can be exploited is if the response data is not escaped and we can control it by providing user-supplied input.\n9. **Other headers:** There are other headers involved like Access-Control-Max-Age that determines the time a preflight request can be cached in the browser, or Access-Control-Expose-Headers that indicates which headers are safe to expose to the API of a CORS API specification, both are response headers specified in the CORS W3C document.",
@@ -19,6 +30,13 @@
             "https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS"
           ]
         },
+        {
+          "id": "request_smuggling",
+          "remediation_advice": "Implement a robust security configuration, including secure parsing and handling of HTTP requests, and consider deploying a Web Application Firewall (WAF) to detect and mitigate potential smuggling attacks.",
+          "references": [
+            "https://cheatsheetseries.owasp.org/cheatsheets/HTTP_Request_Smuggling_Prevention_Cheat_Sheet.html"
+          ]
+        },
         {
           "id": "path_traversal",
           "remediation_advice": "1. Prefer working without user input when using file system calls\n2. Use indexes rather than actual portions of file names when templating or using language files (i.e. value 5 from the user submission = Czechoslovakian, rather than expecting the user to return “Czechoslovakian”)\n3. Ensure the user cannot supply all parts of the path – surround it with your path code\n4. Validate the user’s input by only accepting known good – do not sanitize the data\n5. Use `chroot`ed jails and code access policies to restrict where the files can be obtained or saved to\n6. If forced to use user input for file operations, normalize the input before using in file I/O APIs, such as the [Java SE URI normalize() method](http://docs.oracle.com/javase/7/docs/api/java/net/URI.html#normalize).",
@@ -38,9 +56,7 @@
         {
           "id": "same_site_scripting",
           "remediation_advice": "As a best practice, do not resolve targets or hostnames to 127.0.0.1 or similar addresses.",
-          "references": [
-            "http://seclists.org/bugtraq/2008/Jan/270"
-          ]
+          "references": ["http://seclists.org/bugtraq/2008/Jan/270"]
         },
         {
           "id": "ssl_attack_breach_poodle_etc",
@@ -88,9 +104,7 @@
             {
               "id": "missing_caa_record",
               "remediation_advice": "As the domain name holder you can modify the DNS zone file to specify one or more Certification Authorities (CAs) authorized to issue certificates for that domain.",
-              "references": [
-                "https://tools.ietf.org/html/rfc6844"
-              ]
+              "references": ["https://tools.ietf.org/html/rfc6844"]
             }
           ]
         },
@@ -149,9 +163,7 @@
             {
               "id": "excessively_privileged_user_dba",
               "remediation_advice": "Ensure that the current DBMS session user has the least amount of privilege necessary.",
-              "references": [
-                "https://www.owasp.org/index.php/Least_privilege"
-              ]
+              "references": ["https://www.owasp.org/index.php/Least_privilege"]
             }
           ]
         },
@@ -229,9 +241,7 @@
         {
           "id": "cookie_scoped_to_parent_domain",
           "remediation_advice": "If possible do not set the domain for the session cookie. If domain is not set, so by default, the cookie will be a host only cookie, meaning accessible explicitly to the domain from which it was set.",
-          "references": [
-            "https://tools.ietf.org/html/rfc6265"
-          ]
+          "references": ["https://tools.ietf.org/html/rfc6265"]
         },
         {
           "id": "missing_secure_or_httponly_cookie_flag",
@@ -277,9 +287,7 @@
             {
               "id": "account_takeover",
               "remediation_advice": "Ensure correct implementation of OAuth protocol in order to protect client secrets and tokens, and provide secure access controls.",
-              "references": [
-                "https://tools.ietf.org/html/rfc6819"
-              ]
+              "references": ["https://tools.ietf.org/html/rfc6819"]
             },
             {
               "id": "account_squatting",
@@ -517,9 +525,7 @@
         {
           "id": "bitsquatting",
           "remediation_advice": "As a best practice, consider registering any potential bitsquatting domain names.",
-          "references": [
-            "http://dinaburg.org/bitsquatting.html"
-          ]
+          "references": ["http://dinaburg.org/bitsquatting.html"]
         }
       ]
     },
@@ -530,6 +536,14 @@
         "https://www.owasp.org/index.php/Top_10-2017_A1-Injection"
       ],
       "children": [
+        {
+          "id": "ldap_injection",
+          "remediation_advice": "Implement input validation and sanitization techniques to filter and escape user input before using it in LDAP queries, and utilize parameterized queries or prepared statements to prevent injection attacks.",
+          "references": [
+            "https://owasp.org/www-community/attacks/LDAP_Injection",
+            "https://cheatsheetseries.owasp.org/cheatsheets/LDAP_Injection_Prevention_Cheat_Sheet.html"
+          ]
+        },
         {
           "id": "file_inclusion",
           "remediation_advice": "1. Don't allow user input in file paths. If hard-coding is not an option, select input from a limited list via an index variable.\n2. If dynamic path concatenation is a must have. Only accept required characters. Allow `a-z 0-9` and do not allow `..` or `/` or `%00` (null byte) or any unexpected characters.\n3. For API's allow only inclusion for a specific directory and those below it, this stops traversal attacks.",
@@ -601,14 +615,16 @@
             {
               "id": "external_authentication_injection",
               "remediation_advice": "Even if unsafe HTML tags like `<script>` or `<iframe>` are filtered out from user input, it is possible to inject `HTTP 401` authentication prompt into a HTML page via tags like `<img>`. In order to prevent this type of injection consider the following solutions:\n\n1. Always treat all user input as untrusted data.\n2. Always input or output encode all data coming into or out of the application.\n3. Always whitelist allowed characters and seldom use blacklisting of characters unless in certain use cases.\n4. Always use a well known and security encoding API for input and output encoding such as the `OWASP ESAPI`.\n5. Never try to write input and output encoders unless absolutely necessary. Chances are that someone has already written a good one.",
-              "references": [
-                "https://www.exploit-db.com/papers/12898/"
-              ]
+              "references": ["https://www.exploit-db.com/papers/12898/"]
             },
             {
               "id": "flash_based_external_authentication_injection",
               "remediation_advice": "Even if unsafe HTML tags like `<script>` or `<iframe>` are filtered out from user input, it is possible to inject `HTTP 401` authentication prompt into Flash content. In order to prevent this type of injection consider the following solutions:\n\n1. Always treat all user input as untrusted data.\n2. Always input or output encode all data coming into or out of the application.\n3. Always whitelist allowed characters and seldom use blacklisting of characters unless in certain use cases.\n4. Always use a well known and security encoding API for input and output encoding such as the `OWASP ESAPI`.\n5. Never try to write input and output encoders unless absolutely necessary. Chances are that someone has already written a good one."
             },
+            {
+              "id": "html_content_injection",
+              "remediation_advice": "Ensure proper input validation and output encoding to prevent HTML content injection attacks and protect against potential malicious code execution."
+            },
             {
               "id": "email_html_injection",
               "remediation_advice": "Always ensure that email contents cannot be tampered with. Limit what the user can insert into the email by filtering special characters and limiting the amount of characters that can be inserted. Additionally, filter out any URLs as they are often rendered as links by email providers.",
@@ -638,7 +654,7 @@
             },
             {
               "id": "rtlo",
-              "remediation_advice": "1. If possible avoid allowing Right to Left Override `\u202E` character in filenames and URLs.\n2. Avoid mixing right-to-left and left-to-right characters in a single name.",
+              "remediation_advice": "1. If possible avoid allowing Right to Left Override `‮` character in filenames and URLs.\n2. Avoid mixing right-to-left and left-to-right characters in a single name.",
               "references": [
                 "https://dl.packetstormsecurity.net/papers/general/righttoleften-override.pdf"
               ]
@@ -703,6 +719,10 @@
                 "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Session_Management_Cheat_Sheet.md#manual-session-expiration"
               ]
             },
+            {
+              "id": "permission_change",
+              "remediation_advice": "Review and update the necessary permissions, ensuring they align with the new requirements, and consider implementing a robust permission management system for better control and tracking."
+            },
             {
               "id": "on_logout_server_side_only",
               "remediation_advice": "Properly invalidate the session on the server-side when the user logs out of their session.",
@@ -819,18 +839,14 @@
             {
               "id": "oauth_secret",
               "remediation_advice": "Consider using OAuth Implicit Grant to avoid hardcoding the OAuth secret key within the application.",
-              "references": [
-                "https://tools.ietf.org/html/rfc6749#section-4.2"
-              ]
+              "references": ["https://tools.ietf.org/html/rfc6749#section-4.2"]
             }
           ]
         },
         {
           "id": "xssi",
           "remediation_advice": "1. Avoid placing sensitive content inside JavaScript files, and also not in `JSONP`.\n2. Consider using a CSRF token.\n3. Sensitive scripts should only respond to POST requests.\n4. Append some non-executable prefix to the response body.\n5. Usage of the response header `X-Content-Type-Options: nosniff` and usage of the correct `Content-Type` is also helpful in reducing the chance of XSSI.",
-          "references": [
-            "https://www.scip.ch/en/?labs.20160414"
-          ]
+          "references": ["https://www.scip.ch/en/?labs.20160414"]
         },
         {
           "id": "json_hijacking",
@@ -859,24 +875,10 @@
         "https://www.cvedetails.com/vulnerability-list/opxss-1/xss.html"
       ],
       "children": [
-        {
-          "id": "ie_only",
-          "children": [
-            {
-              "id": "xss_filter_disabled",
-              "remediation_advice": "As a best practice do not disable the XSS filter by utilizing `X-XSS-Protection: 0` header.",
-              "references": [
-                "https://msdn.microsoft.com/en-us/library/dd565647(v=vs.85).aspx"
-              ]
-            }
-          ]
-        },
         {
           "id": "trace_method",
           "remediation_advice": "As the TRACE method can be utilized to bypass certain protections, consider disabling the HTTP method TRACE.",
-          "references": [
-            "https://www.owasp.org/index.php/Cross_Site_Tracing"
-          ]
+          "references": ["https://www.owasp.org/index.php/Cross_Site_Tracing"]
         }
       ]
     },
@@ -891,17 +893,6 @@
             "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Insecure_Direct_Object_Reference_Prevention_Cheat_Sheet.md"
           ]
         },
-        {
-          "id": "server_side_request_forgery_ssrf",
-          "remediation_advice": "1. **Error handling and messages:** Display generic error messages to the client in case something goes wrong. If content type validation fails, display generic errors to the client like _“Invalid Data retrieved”_. Also ensure that the message is the same when the request fails on the backend and if invalid data is received. This will prevent the application from being abused as distinct error messages will be absent for closed and open ports. Under no circumstance should the raw response received from the remote server be displayed to the client.\n2. **Response Handling:** Validating responses received from remote resources on the server side is the most basic mitigation that can be readily implemented. If a web application expects specific content type on the server, programmatically ensure that the data received satisfies checks imposed on the server before displaying or processing the data for the client.\n3. **Disable unwanted protocols:** Allow only `http` and `https` to make requests to remote servers. Whitelisting these protocols will prevent the web application from making requests over other protocols like `file:///`, `gopher://`, `ftp://` and other URI schemes.\n4. **Blacklist IP addresses:** Internal IP addresses, localhost specifications and internal hostnames can all be blacklisted to prevent the web application from being abused to fetch data/attack these devices. Implementing this will protect servers from one time attack vectors. For example, even if the first fix (above) is implemented, the data is still being sent to the remote service. If an attack that does not need to see responses is executed (like a buffer overflow exploit) then this fix can actually prevent data from ever reaching the vulnerable device. Response handling is then not required at all as a request was never made.",
-          "references": [
-            "https://www.owasp.org/index.php/Top_10_2013-A7-Missing_Function_Level_Access_Control",
-            "http://projects.webappsec.org/w/page/13246913/Abuse%20of%20Functionality",
-            "http://resources.infosecinstitute.com/the-ssrf-vulnerability/",
-            "https://www.bishopfox.com/blog/2015/04/vulnerable-by-design-understanding-server-side-request-forgery/",
-            "http://niiconsulting.com/checkmate/2015/04/server-side-request-forgery-ssrf/"
-          ]
-        },
         {
           "id": "username_enumeration",
           "remediation_advice": "Ensure that the application does not reveal existing user names and any data associated with them, whether it's a consequence of misconfiguration or a design decision.",
@@ -1142,8 +1133,8 @@
       "id": "lack_of_binary_hardening",
       "remediation_advice": "To ensure security throughout the life cycle of an application, it is a good practice to harden binaries with memory protections, and significantly increase the cost of reverse engineering and code modification.",
       "references": [
-       "https://wiki.debian.org/Hardening",
-       "https://www.owasp.org/index.php/Mobile_Top_10_2014-M10"
+        "https://wiki.debian.org/Hardening",
+        "https://www.owasp.org/index.php/Mobile_Top_10_2014-M10"
       ]
     },
     {
@@ -1178,20 +1169,305 @@
       ]
     },
     {
-      "id": "broken_cryptography",
+      "id": "cryptographic_weakness",
       "children": [
         {
-          "id": "cryptographic_flaw",
+          "id": "insufficient_entropy",
+          "children": [
+            {
+              "id": "limited_rng_entropy_source",
+              "remediation_advice": "1. When using the native entropy sources in a Linux environment, be sure to use /dev/random instead of /dev/urandom.  This is because, in the event of depletion of the kernel entropy pool, /dev/random blocks until the level of entropy in the system entropy pool is high enough to ensure high entropy random number generation.  In contrast, /dev/urandom does not block and will return low-entropy random numbers in the event of depletion of the system entropy pool.\n\n2. In Windows environments, ensure all elements of the Windows entropy pool exhibit appropriately high levels of randomness.\n\n3. In applications that require large volumes of high-entropy random numbers to be generated, consider using alternative RNGs, such as Intel's Digital Random Number Generator (DRNG).",
+              "references": [
+                "https://www.redhat.com/en/blog/understanding-random-number-generators-and-their-limitations-linux#:~:text=A%20source%20of%20entropy%20(RNG)&text=Random%20number%20generators%20or%20RNGS,unpredictable%20numbers%20as%20its%20output.",
+                "https://blog.cloudflare.com/ensuring-randomness-with-linuxs-random-number-generator/",
+                "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90B.pdf",
+                "https://download.microsoft.com/download/1/c/9/1c9813b8-089c-4fef-b2ad-ad80e79403ba/Whitepaper%20-%20The%20Windows%2010%20random%20number%20generation%20infrastructure.pdf"
+              ]
+            },
+            {
+              "id": "use_of_trng_for_nonsecurity_purpose",
+              "remediation_advice": "1. The random number generation rate of most RNGs is limited, so it is important to draw from RNGs only when entropy is needed for security purposes.\n\n2. Applications should ensure resiliency when drawing from TRNGs by properly handling blocking conditions that may arise when the TRNG blocks due to depletion of the entropy source.\n\n3. Increase potential random number generation rate by integrating multiple, diverse, entropy sources in a secure manner.",
+              "references": [
+                "https://blog.cloudflare.com/ensuring-randomness-with-linuxs-random-number-generator/",
+                "https://cwe.mitre.org/documents/sources/TheCLASPApplicationSecurityProcess.pdf"
+              ]
+            },
+            {
+              "id": "prng_seed_reuse",
+              "remediation_advice": "Pseudo-Random Number Generators (PRNG) use complex algorithms to produce a stream of random bits but require an initial 'seeding,' which determines the outcome of all random numbers generated by the PRNG.  Therefore, if an attacker knows the seed value used to initialize the PRNG, it is possible to determine all future random numbers produced by the PRNG.  Do not use the same seed value for multiple invocations of PRNG initialization.",
+              "references": [
+                "https://www.sciencedirect.com/science/article/pii/S2212017316304972"
+              ]
+            },
+            {
+              "id": "predictable_prng_seed",
+              "remediation_advice": "Pseudo-Random Number Generators (PRNG) use complex algorithms to produce a stream of random bits but require an initial 'seeding,' which determines the outcome of all random numbers generated by the PRNG.  Therefore, if an attacker can predict all or a portion of the seed value used to initialize the PRNG, it is possible to predict the random number stream produced by the PRNG.  Per FIPS 140-3, \"Security Requirements for Cryptographic Modules,\" it is acceptable to use the output of a trustworthy PRNG as the seed value for another PRNG.  Ensure applications use a randomly-generated seed value by drawing from a trustworth entropy source, such as /dev/random.",
+              "references": [
+                "https://www.sciencedirect.com/science/article/pii/S2212017316304972",
+                "https://csrc.nist.gov/csrc/media/publications/fips/140/2/final/documents/fips1402.pdf",
+                "https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.140-3.pdf",
+                "https://www.appmarq.com/public/robustness,1039006,CWE-336-Avoid-using-predictable-SecureRandom-Seeds"
+              ]
+            },
+            {
+              "id": "small_seed_space_in_prng",
+              "remediation_advice": "Pseudo-Random Number Generators (PRNG) use complex algorithms to produce a stream of random bits but require an initial 'seeding,' which determines the outcome of all random numbers generated by the PRNG.  An insufficiently-sized seed value allows an attacker to brute force the random number stream produced by the PRNG by brute forcing all possible seed values.  Ensure the value used as a PRNG seed has a length (in terms of bit size) to guarantee a sufficiently large work-factor to render such brute force attacks infeasible.  As a general rule, the number of steps (iterations) required to compromise the seed value should be at least as large as the number of steps (iterations) required to compromise the cryptographic entity (e.g. key) that relies upon the PRNG.",
+              "references": [
+                "https://csrc.nist.gov/csrc/media/publications/fips/140/2/final/documents/fips1402.pdf",
+                "https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.140-3.pdf",
+                "https://wiki.sei.cmu.edu/confluence/display/c/MSC32-C.+Properly+seed+pseudorandom+number+generators"
+              ]
+            },
+            {
+              "id": "initialization_vector_reuse",
+              "remediation_advice": "Many cryptographic algorithms rely upon an initial block of data, called the 'initialization vector' (IV), in addition to the plaintext being encrypted.  If an application reuses the same IV for multiple invocations of an encryption routine, an attacker can use this knowledge to glean the original plaintext from an encrypted stream.  Ensure each invocation of an encryption routine uses a different IV.",
+              "references": [
+                "https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf",
+                "https://www.openssl.org/~bodo/tls-cbc.txt",
+                "https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38d.pdf",
+                "http://www.isaac.cs.berkeley.edu/isaac/mobicom.pdf"
+              ]
+            },
+            {
+              "id": "predictable_initialization_vector",
+              "remediation_advice": "Many cryptographic algorithms rely upon an initial block of data, called the 'initialization vector' (IV), in addition to the plaintext being encrypted.  It is critical that it be impossible to predict the IV associated with the plaintext for any given invocation of the encryption routine.  This is best achieved by using a newly-generated random number, produced by a trustworthy RNG, for each invocation of the encryption routine.",
+              "references": [
+                "https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf",
+                "https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38d.pdf",
+                "https://www.cve.org/CVERecord?id=CVE-2011-3389"
+              ]
+            }
+          ]
+        },
+        {
+          "id": "insecure_implementation",
+          "children": [
+            {
+              "id": "missing_cryptographic_step",
+              "remediation_advice": "Oftentimes cryptographic algorithms involve complex and time-consuming mathematical operations to ensure the security of the product (e.g. ciphertext, hash value).  In some instances, such as in limited power systems, costly cryptographic steps may be skipped.  As a general rule, cryptographic alorithms are difficult to properly implement and developers should rely on well-vetted cryptographic libraries rather than homegrown implementations.  When it is necessary to develop a homegrown implementation, always thoroughly review the algorithm specification and properly implement each computational step.",
+              "references": [
+                "https://www.rfc-editor.org/rfc/rfc3565",
+                "https://nvd.nist.gov/vuln/detail/CVE-2022-29053",
+                "https://www.fortiguard.com/psirt/FG-IR-22-158"
+              ]
+            },
+            {
+              "id": "improper_following_of_specification",
+              "remediation_advice": "As a general rule, cryptographic alorithms are difficult to properly implement and developers should rely on well-vetted cryptographic libraries rather than homegrown implementations.  When it is necessary to develop a homegrown implementation, ensure the implementation adheres to all requirements for the cryptographic parameters.",
+              "references": [
+                "https://www.rfc-editor.org/rfc/rfc7696",
+                "https://www.rfc-editor.org/rfc/rfc3565"
+              ]
+            }
+          ]
+        },
+        {
+          "id": "weak_hash",
           "children": [
             {
-              "id": "incorrect_usage",
-              "remediation_advice": "1. Never try to create your own cryptographic functions.\n2. Always use known, strong, and secure cryptographic API functions.\n3. Never store cleartext password strings anywhere.\n4. Always salt password strings before running through a cryptographically safe hashing algorithms.\n5. Always use a random salt for each password string.\n6. Always store the salt and the cryptographically hashed password string in an encrypted database.\n7. Never use unsafe hashing functions such as `MD5` and `SHA1` which have low key spaces and have working proof of concepts that break these hashing functions.\n8. Only use cryptographically safe hashing functions such as `SHA-256` and above.\n9. Never use unsafe encryption functions that have working proof of concepts that prove that they are broken.\n10. Only use cryptographically safe encryption functions that have a very high work factor to discourage attackers from trying to break the encryption such as `bcrypt`, `scrypt`, and `PBKDF2`.",
+              "id": "lack_of_salt",
+              "remediation_advice": "A hash computed without the addition of a salt value is vulnerable to rainbow table attacks.  To prevent such attacks, ensure a unique and randonly-generated salt value is concatenated with the plaintext prior to computing the hash.",
+              "references": [
+                "https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html#salting",
+                "https://www.rfc-editor.org/rfc/rfc2898#page-6"
+              ]
+            },
+            {
+              "id": "use_of_predictable_salt",
+              "remediation_advice": "When a hash is computing using a predictable salt, the protections afforded by the salt are diminished, leaving the hash vulnerable to rainbow table attacks.  Always use a unique and randomly-generated value for the salt, and ensure the length of the salt (in terms of bits) is sufficiently large to prevent brute force attacks.  As a general rule, salts used in cryptographic operations should be at least 8 bytes (64 bits) in length.",
+              "references": ["https://www.rfc-editor.org/rfc/rfc2898#page-7"]
+            },
+            {
+              "id": "predictable_hash_collision",
+              "remediation_advice": "Hash collisions occur when a hashing algorithm generates the same hash value for two (or more) different plaintext inputs.  This can be the result of mathematical errors in the algorithm itself, such those found in the MD5 and SHA-1 algorithms.  Hash collisions can also occur as the result of incorrect implementation of an otherwise secure algorithm.  Always ensure applications make use of unbroken and well-vetted hashing algorithms, and ensure implementations strictly adhere to the requirements of cryptographic parameters as indicated by the relevant specification(s).",
               "references": [
-                "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Cryptographic_Storage_Cheat_Sheet.md",
-                "https://crackstation.net/hashing-security.htm"
+                "https://en.wikipedia.org/wiki/MD5#Collision_vulnerabilities",
+                "https://github.com/nim-lang/Nim/issues/10097",
+                "https://www.rfc-editor.org/rfc/rfc6234"
               ]
             }
           ]
+        },
+        {
+          "id": "insufficient_verification_of_data_authenticity",
+          "children": [
+            {
+              "id": "identity_check_value",
+              "remediation_advice": "An Integrity Check Value (ICV) is used to ensure data has not become corrupted during transmission and may incorporate keying material to ensure message authenticity in security sensitive applications.  Failure to properly validate the ICV can lead to data corruption and may allow an attacker to impersonate other senders in messages.  Ensure the application validates the ICV in all received messages and adheres to the relevant specification(s) with regard to the ICV validation steps.",
+              "references": [
+                "https://cwe.mitre.org/documents/sources/TheCLASPApplicationSecurityProcess.pdf",
+                "https://www.rfc-editor.org/rfc/rfc4302#section-2.6",
+                "https://www.rfc-editor.org/rfc/rfc4302#section-3.3.3"
+              ]
+            },
+            {
+              "id": "cryptographic_signature",
+              "remediation_advice": "A cryptographic signature is used to provide authenticity verification and non-repudiation of data received from another party.  Depending on the application context failure to properly validate the cryptographic signature can result in vulnerabilities ranging from unauthorized information disclosure, to user impersonation, or even unauthorized code execution.  Ensure the application verifies the cryptographic signature accompanying received data and deny requests containing an invalid cryptographic signature.",
+              "references": [
+                "https://www.internetsociety.org/resources/deploy360/2014/the-two-sides-of-dnssec-signing-and-validation/",
+                "https://vulnerabilityhistory.org/tags/89",
+                "https://www.cisco.com/c/en/us/support/docs/csa/cisco-sa-20180926-digsig.html"
+              ]
+            }
+          ]
+        },
+        {
+          "id": "insecure_key_generation",
+          "children": [
+            {
+              "id": "improper_asymmetric_prime_selection",
+              "remediation_advice": "When implementing an asymmetric cryptography algorithm that relies upon prime numbers for public/private keypair generation:\n\n(a). ensure that prime number selection allows sufficiently large prime numbers to be represented;\n(b) ensure there is not mathematical relationship between each of the prime numbers selected; and\n(c) always use uniquely-generated random numbers for prime selection.",
+              "references": [
+                "https://medium.com/curiositypapers/a-complete-explanation-of-rsa-asymmetric-encryption-742c5971e0f",
+                "https://www.schneier.com/blog/archives/2022/03/breaking-rsa-through-insufficiently-random-primes.html",
+                "https://arstechnica.com/information-technology/2022/03/researcher-uses-600-year-old-algorithm-to-crack-crypto-keys-found-in-the-wild/",
+                "https://www.rfc-editor.org/rfc/rfc8017#page-36"
+              ]
+            },
+            {
+              "id": "improper_asymmetric_exponent_selection",
+              "remediation_advice": "When implementing an asymmetric cryptography algorithm that relies upon exponentiation:\n\n(a) ensure that private exponent selection allows for a sufficiently large number to be chosen; and\n(b) always use a uniquely-generated random number for the private exponent.",
+              "references": [
+                "https://medium.com/curiositypapers/a-complete-explanation-of-rsa-asymmetric-encryption-742c5971e0f",
+                "https://www.iacr.org/archive/eurocrypt2000/1807/18070374-new.pdf",
+                "https://www.rfc-editor.org/rfc/rfc8017"
+              ]
+            },
+            {
+              "id": "insufficient_key_stretching",
+              "remediation_advice": "Key stretching is a technique used to increase the entropy of low-entropy keys, such as user-supplied passwords.  The technique is usually based on many iterative rounds of cryptographic computations upon the initial low-entropy key and brute forcing vulnerabilities arise if an insufficient number of iterations are applied.  Ensure the application adheres to all relevant specification(s) and performs a sufficiently large number of iterations to render the work-factor of brute force attacks infeasible.",
+              "references": [
+                "https://link.springer.com/chapter/10.1007/BFb0030415",
+                "https://www.rfc-editor.org/rfc/rfc2898"
+              ]
+            },
+            {
+              "id": "insufficient_key_space",
+              "remediation_advice": "Most modern cryptogaphic algorithms allow implementers to specify the length of the key used by the algorithm.  If an insufficient key length is specified, an attacker can use offline brute force techniques to decrypt the ciphertext without any user input.  Ensure the application specifies a sufficiently large minimum cryptographic key length as appropriate for the context or as indicated by relevant regulations and standards.  As a general rule, AES-128, RSA-2048, and SHA-256 should be used, at a minimum.",
+              "references": [
+                "https://codeql.github.com/codeql-query-help/cpp/cpp-insufficient-key-size/",
+                "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar2.pdf"
+              ]
+            },
+            {
+              "id": "key_exchange_without_entity_authentication",
+              "remediation_advice": "When a key exchange is performed without validating the authenticity of the opposite entity, an attacker is able to impersonate a trusted entity and compromise the confidentiality of the encrypted data.  Ensure the application properly verifies the identity of the opposite party during key exchange using context appropriate mechanisms, as indiciated in the relevant standard(s) and specification(s).",
+              "references": [
+                "https://cwe.mitre.org/documents/sources/TheCLASPApplicationSecurityProcess.pdf",
+                "https://www.rfc-editor.org/rfc/rfc6071#page-17",
+                "https://www.rfc-editor.org/rfc/rfc5246"
+              ]
+            }
+          ]
+        },
+        {
+          "id": "key_reuse",
+          "children": [
+            {
+              "id": "lack_of_perfect_forward_secrecy",
+              "remediation_advice": "Perfect Forward Secrecy (PFS) is a technique used to minimize the impact of compromise of an entity's longterm private key by negotiating an ephemeral keypair for each new session between two parties.  Without PFS, compromise of an entity's longterm private key results in compromise of all historical and future session keys based thereupon, meaning any recorded encrypted traffic can then be decrypted.  Ensure the application enables PFS for the encryption protocols implemented, as indicated by the relevant standard(s) and specification(s).",
+              "references": [
+                "https://avinetworks.com/glossary/perfect-forward-secrecy/#:~:text=Without%20perfect%20forward%20secrecy%2C%20an,primary%20secret%20with%20each%20client.",
+                "https://medium.com/asecuritysite-when-bob-met-alice/forward-secrecy-and-ephemeral-keys-guarding-against-data-breaches-in-the-future-b709295c6e5a",
+                "https://www.rfc-editor.org/rfc/rfc7525#page-18"
+              ]
+            },
+            {
+              "id": "intra_environment",
+              "remediation_advice": "Cryptographic key reuse occurs when the same key is used for more than one purpose.  When the same key is used for multiple purposes within the context of a single environment (e.g. individual customer in a multi-tenant application) an attacker can leverage knowledge of the key to gain unauthorized access to other information or privileges protected by the same key.  Ensure all application components, such as information and authentication tokens, are appropriately grouped into separate trust zones and protected by separate cryptographic keys."
+            },
+            {
+              "id": "inter_environment",
+              "remediation_advice": "Cryptographic key reuse occurs when the same key is used for more than one purpose.  When the same key is used between multiple application contexts, such as different customer environments in a multi-tenancy application, an attacker can gain unauthorized access to other users' information and may be able to impersonate other users to achieve privilege escalation.  Ensure the application uses unique cryptographic keys for each application context and do not reuse keys across trust zones."
+            }
+          ]
+        },
+        {
+          "id": "side_channel_attack",
+          "children": [
+            {
+              "id": "padding_oracle_attack",
+              "remediation_advice": "A padding oracle attack occurs when the application reveals information about the validity of padding in data provided for decryption.  By making repeated attempts to decrypt attacker-controlled data, an attacker can use the information gleaned from the padding oracle to derive the encryption key.  Ensure the application produces non-descript error messages when decrypting user-supplied data.  Application responses also must not vary between different types of failure, such that an attacker cannot glean from the error that a padding exception has occurred.",
+              "references": [
+                "https://archiv.infsec.ethz.ch/education/fs08/secsem/Manger01.pdf",
+                "https://research.nccgroup.com/2021/02/17/cryptopals-exploiting-cbc-padding-oracles/",
+                "https://flast101.github.io/padding-oracle-attack-explained/"
+              ]
+            },
+            {
+              "id": "timing_attack",
+              "remediation_advice": "A timing attack occurs when the amount of time the application takes to complete a cryptographic operation is related to the data provided by the user.  By making repeated attempts to decrypt attacker-controlled data, an attacker can use the information gleaned from this attack to derive the encryption key.  Ensure the application implements constant-time cryptographic algorithms, which always take the same amount of time to complete regardless of the input.",
+              "references": [
+                "https://research.kudelskisecurity.com/2013/12/13/timing-attacks-part-1/",
+                "https://www.bearssl.org/constanttime.html",
+                "https://www.chosenplaintext.ca/articles/beginners-guide-constant-time-cryptography.html"
+              ]
+            },
+            {
+              "id": "power_analysis_attack",
+              "remediation_advice": "Power analysis attacks are made possible when the power consumption of a system or individual circuit is dependent upon the outcome or state of specific steps of the cryptographic algorithm implementation.  Ensure the outcome of an individual step, or a group of steps, in a cryptographic algorithm implementation cannot be directly observed via the electrical state of any given circuit board trace or component.  Ensure power consumption of the system as a whole is decoupled from the state of cryptographic operations performed by the system through the use of power supply capacitance measures.",
+              "references": [
+                "https://www.proquest.com/openview/45733f2da135a88fba879f038db4d319/1?pq-origsite=gscholar&cbl=18750&diss=y",
+                "https://web.wpi.edu/Pubs/E-project/Available/E-project-122211-215512/unrestricted/Power_analysis.pdf",
+                "https://eprint.iacr.org/2014/204.pdf",
+                "https://ieeexplore.ieee.org/document/6730921"
+              ]
+            },
+            {
+              "id": "emanations_attack",
+              "remediation_advice": "Emanations attacks are made possible when the outcome or state of specific steps of the cryptographic algorithm implementation result in changes to the electromagnetic emanations produced by the physical system on which the application is running.  Remediation of emanations leakage vulnerabilities is highly-dependent upon the application context but some general countermeasures are effective in most instances.  Ensure the application's implementation of each step of cryptographic algorithm processing results in uniform use of processor cycles, power, and features.  In some cases, this may involve the incorporation of less efficient code, in order to achieve a uniform emanations profile for all possible outcomes of each cryptographic step.  Additionally, incorporate EMF shielding into the physical device design to reduce detectable emanations from the device.",
+              "references": [
+                "https://www.cs.tau.ac.il/~tromer/mobilesc/",
+                "https://www.cs.tau.ac.il/~tromer/ecdh/",
+                "https://eprint.iacr.org/2016/231.pdf",
+                "https://eprint.iacr.org/2016/129.pdf"
+              ]
+            },
+            {
+              "id": "differential_fault_analysis",
+              "remediation_advice": "Differential fault analysis attacks are made possible when the outcome or state of specific steps of the cryptographic algorithm implementation can be gleaned by changes in the application's (or system's) response to specially-crafted fault conditions.  To prevent such attacks, applications and systems should always revert to a known and uniform state upon the occurrence of faults.  This may be achieved using a variety of methods, the effectiveness of which will vary depending upon context, such as uniform exception handling, restoration of a saved state, or system reset.",
+              "references": [
+                "https://link.springer.com/content/pdf/10.1007/BFb0052259.pdf?pdf=inline%20link",
+                "https://ieeexplore.ieee.org/document/6976633"
+              ]
+            }
+          ]
+        },
+        {
+          "id": "use_of_expired_cryptographic_key_or_cert",
+          "remediation_advice": "This vulnerabily occurs when:\n\n (a). the application fails to verify the expiration date of a certificate provided by another entity has not passed;\n(b) the application fails to verify the certificate provided by another entity has not been revoked by the issuing authority; or\n(c). the application relies upon manual key management and does not provide a means of verifying the lifecycle of keys in use.  Ensure the application verifies the certificate produced by the opposite entity has not expired or been revoked, and provide the application user with sufficient information about how to proceed.  Ensure the application implements mechanisms to determine the lifecycle of manually-managed cryptographic keys and reject attempts to use expired keys.",
+          "references": [
+            "https://cwe.mitre.org/documents/sources/TheCLASPApplicationSecurityProcess.pdf"
+          ]
+        },
+        {
+          "id": "incomplete_cleanup_of_keying_material",
+          "remediation_advice": "Ensure the application erases all non-volatile copies of sensitive cryptographic data in memory or other non-volatile storage when no longer needed by the application.  Ensure the application does not retain sensitive cryptographic data in memory longer than necessary by storing the data in protected volatile storage (e.g. TPM) and open/close handles to the data upon each new invocation of the cryptographic routine.",
+          "references": [
+            "https://documentation-service.arm.com/static/624af896b059dc5ff9a8fbda"
+          ]
+        }
+      ]
+    },
+    {
+      "id": "broken_cryptography",
+      "children": [
+        {
+          "id": "use_of_broken_cryptographic_primitive",
+          "remediation_advice": "The use of broken, weak, or flawed cryptographic algorithms can allow an attacker to decrypt sensistive information.  Ensure the application makes use of only trustworthy cryprographic algorithms as indicated by relevant security standard(s) and regulation(s).",
+          "references": [
+            "https://codeql.github.com/codeql-query-help/java/java-weak-cryptographic-algorithm/",
+            "https://csrc.nist.gov/csrc/media/publications/fips/140/2/final/documents/fips1402annexa.pdf",
+            "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar2.pdf"
+          ]
+        },
+        {
+          "id": "use_of_vulnerable_cryptographic_library",
+          "remediation_advice": "The identification, patching, and disclosure of vulnerabilities in third-party libraries, including cryptographic libraries, is a daily occurrence.  In some cases, cryptographic libraries are deemed 'broken' and deprecated.  Ensure the application is updated to include the latest secure version of all third-party cryptographic libraries and replace known 'broken' cryptographic libraries with secure alternatives.",
+          "references": [
+            "https://www.ubiqsecurity.com/bouncy-castle-and-the-impact-of-cryptographic-vulnerabilities/",
+            "https://blog.cryptographyengineering.com/2013/09/20/rsa-warns-developers-against-its-own/"
+          ]
         }
       ]
     },
@@ -1230,9 +1506,7 @@
         {
           "id": "tapjacking",
           "remediation_advice": "Ensure that the setting filterTouchesWhenObscured is set to true, or that the method onFilterTouchEventForSecurity() is implemented in your app.",
-          "references": [
-            "https://blog.devknox.io/tapjacking-android-prevent/"
-          ]
+          "references": ["https://blog.devknox.io/tapjacking-android-prevent/"]
         },
         {
           "id": "clipboard_enabled",
@@ -1267,8 +1541,8 @@
           "id": "infotainment_radio_head_unit",
           "children": [
             {
-              "id": "pii_leakage",
-              "remediation_advice": "Do not store PII such as call logs, text messages, and contact lists or names as plaintext in the infotainment system.",
+              "id": "sensitive_data_leakage_exposure",
+              "remediation_advice": "Do not store sensitive data such as call logs, text messages, and contact lists or names as plaintext in the infotainment system.",
               "references": [
                 "https://www.prnewswire.com/news-releases/carsblues-vehicle-hack-exploits-vehicle-infotainment-systems-allowing-access-to-call-logs-text-messages-and-more-300751244.html"
               ]
@@ -1523,9 +1797,7 @@
             {
               "id": "sybil_attack",
               "remediation_advice": "Known approaches to Sybil attack prevention include identity validation, social trust graph algorithms, or economic costs, personhood validation, and application-specific defenses.",
-              "references": [
-                "https://en.wikipedia.org/wiki/Sybil_attack"
-              ]
+              "references": ["https://en.wikipedia.org/wiki/Sybil_attack"]
             }
           ]
         }
diff --git a/third-party-mappings/remediation_training/secure-code-warrior-links.json b/third-party-mappings/remediation_training/secure-code-warrior-links.json
index da241a6d..a6fd3255 100755
--- a/third-party-mappings/remediation_training/secure-code-warrior-links.json
+++ b/third-party-mappings/remediation_training/secure-code-warrior-links.json
@@ -132,8 +132,10 @@
   "broken_authentication_and_session_management.weak_registration_implementation.over_http": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:weak_registration_implementation:over_http&redirect=true",
   "sensitive_data_exposure": null,
   "sensitive_data_exposure.disclosure_of_secrets": null,
+  "sensitive_data_exposure.pii_leakage_exposure": null,
   "sensitive_data_exposure.disclosure_of_secrets.for_publicly_accessible_asset": null,
-  "sensitive_data_exposure.disclosure_of_secrets.for_internal_asset": null,
+  "sensitive_data_exposure.disclosure_of_secrets.pii_leakage_exposure": null,
+  "sensitive_data_exposure.disclosure_of_secrets.pay_per_use_abuse": null,
   "sensitive_data_exposure.disclosure_of_secrets.pay_per_use_abuse": null,
   "sensitive_data_exposure.disclosure_of_secrets.intentionally_public_sample_or_invalid": null,
   "sensitive_data_exposure.disclosure_of_secrets.data_traffic_spam": null,
@@ -306,7 +308,7 @@
   "client_side_injection.binary_planting.no_privilege_escalation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=client_side_injection:binary_planting:no_privilege_escalation&redirect=true",
   "automotive_security_misconfiguration": null,
   "automotive_security_misconfiguration.infotainment_radio_head_unit": null,
-  "automotive_security_misconfiguration.infotainment_radio_head_unit.pii_leakage": null,
+  "automotive_security_misconfiguration.infotainment_radio_head_unit.sensitive_data_leakage_exposure": null,
   "automotive_security_misconfiguration.infotainment_radio_head_unit.ota_firmware_manipulation": null,
   "automotive_security_misconfiguration.infotainment_radio_head_unit.code_execution_can_bus_pivot": null,
   "automotive_security_misconfiguration.infotainment_radio_head_unit.code_execution_no_can_bus_pivot": null,
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index 2491dc30..c36f54e2 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -8,12 +8,49 @@
       "name": "Server Security Misconfiguration",
       "type": "category",
       "children": [
+        {
+          "id": "server_side_request_forgery_ssrf",
+          "name": "Server-Side Request Forgery (SSRF)",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "internal_high_impact",
+              "name": "Internal High Impact",
+              "type": "variant",
+              "priority": 2
+            },
+            {
+              "id": "internal_scan_and_or_medium_impact",
+              "name": "Internal Scan and/or Medium Impact",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "external_low_impact",
+              "name": "External - Low impact",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "external_dns_query_only",
+              "name": "External - DNS Query Only",
+              "type": "variant",
+              "priority": 5
+            }
+          ]
+        },
         {
           "id": "unsafe_cross_origin_resource_sharing",
           "name": "Unsafe Cross-Origin Resource Sharing",
           "type": "subcategory",
           "priority": null
         },
+        {
+          "id": "request_smuggling",
+          "name": "HTTP Request Smuggling",
+          "type": "subcategory",
+          "priority": null
+        },
         {
           "id": "path_traversal",
           "name": "Path Traversal",
@@ -568,6 +605,12 @@
           "type": "subcategory",
           "priority": 1
         },
+        {
+          "id": "ldap_injection",
+          "name": "LDAP Injection",
+          "type": "subcategory",
+          "priority": null
+        },
         {
           "id": "sql_injection",
           "name": "SQL Injection",
@@ -622,6 +665,12 @@
               "type": "variant",
               "priority": 5
             },
+            {
+              "id": "html_content_injection",
+              "name": "HTML Content Injection",
+              "type": "variant",
+              "priority": 5
+            },
             {
               "id": "email_html_injection",
               "name": "Email HTML Injection",
@@ -759,6 +808,12 @@
               "type": "variant",
               "priority": 4
             },
+            {
+              "id": "permission_change",
+              "name": "On Permission Change",
+              "type": "variant",
+              "priority": null
+            },
             {
               "id": "on_logout_server_side_only",
               "name": "On Logout (Server-Side Only)",
@@ -834,6 +889,12 @@
               "type": "variant",
               "priority": 1
             },
+            {
+              "id": "pii_leakage_exposure",
+              "name": "PII Leakage/Exposure",
+              "type": "variant",
+              "priority": null
+            },
             {
               "id": "for_internal_asset",
               "name": "For Internal Asset",
@@ -1132,26 +1193,7 @@
           "id": "ie_only",
           "name": "IE-Only",
           "type": "subcategory",
-          "children": [
-            {
-              "id": "ie_eleven",
-              "name": "IE11",
-              "type": "variant",
-              "priority": 4
-            },
-            {
-              "id": "xss_filter_disabled",
-              "name": "XSS Filter Disabled",
-              "type": "variant",
-              "priority": 5
-            },
-            {
-              "id": "older_version_ie_eleven",
-              "name": "Older Version (< IE11)",
-              "type": "variant",
-              "priority": 5
-            }
-          ]
+          "priority": 5
         },
         {
           "id": "referer",
@@ -1194,37 +1236,65 @@
         {
           "id": "idor",
           "name": "Insecure Direct Object References (IDOR)",
-          "type": "subcategory",
-          "priority": null
-        },
-        {
-          "id": "server_side_request_forgery_ssrf",
-          "name": "Server-Side Request Forgery (SSRF)",
-          "type": "subcategory",
+          "type": "category",
           "children": [
             {
-              "id": "internal_high_impact",
-              "name": "Internal High Impact",
-              "type": "variant",
-              "priority": 2
+              "id": "read_edit_delete_non_sensitive_information",
+              "name": "Read/Edit/Delete Non-Sensitive Information",
+              "type": "subcategory",
+              "priority": 5
             },
             {
-              "id": "internal_scan_and_or_medium_impact",
-              "name": "Internal Scan and/or Medium Impact",
-              "type": "variant",
-              "priority": 3
+              "id": "read_edit_delete_sensitive_information",
+              "name": "Read/Edit/Delete Sensitive Information",
+              "type": "subcategory",
+              "children": [
+                {
+                  "id": "complext_object_identifiers",
+                  "name": "GUID/Complex Object Identifiers",
+                  "type": "variant",
+                  "priority": 4
+                }
+              ]
             },
             {
-              "id": "external",
-              "name": "External",
-              "type": "variant",
-              "priority": 4
+              "id": "read_sensitive_information",
+              "name": "Read Sensitive Information",
+              "type": "subcategory",
+              "children": [
+                {
+                  "id": "iterable_object_identifiers",
+                  "name": "Iterable Object Identifiers",
+                  "type": "variant",
+                  "priority": 3
+                }
+              ]
             },
             {
-              "id": "dns_query_only",
-              "name": "DNS Query Only",
-              "type": "variant",
-              "priority": 5
+              "id": "edit_delete_sensitive_information",
+              "name": "Edit/Delete Sensitive Information",
+              "type": "subcategory",
+              "children": [
+                {
+                  "id": "iterable_object_identifiers",
+                  "name": "Iterable Object Identifiers",
+                  "type": "variant",
+                  "priority": 2
+                }
+              ]
+            },
+            {
+              "id": "edit_delete_sensitive_information",
+              "name": "Edit/Delete Sensitive Information",
+              "type": "subcategory",
+              "children": [
+                {
+                  "id": "read_edit_delete_sensitive_information_pii",
+                  "name": "Read/Edit/Delete Sensitive Information (PII)",
+                  "type": "variant",
+                  "priority": 1
+                }
+              ]
             }
           ]
         },
@@ -1784,22 +1854,251 @@
       ]
     },
     {
-      "id": "broken_cryptography",
-      "name": "Broken Cryptography",
+      "id": "cryptographic_weakness",
+      "name": "Cryptographic Weakness",
       "type": "category",
       "children": [
         {
-          "id": "cryptographic_flaw",
-          "name": "Cryptographic Flaw",
+          "id": "insufficient_entropy",
+          "name": "Insufficient Entropy",
           "type": "subcategory",
           "children": [
             {
-              "id": "incorrect_usage",
-              "name": "Incorrect Usage",
+              "id": "limited_rng_entropy_source",
+              "name": "Limited Random Number Generator (RNG) Entropy Source",
               "type": "variant",
-              "priority": 1
+              "priority": 4
+            },
+            {
+              "id": "use_of_trng_for_nonsecurity_purpose",
+              "name": "Use of True Random Number Generator (TRNG) for Non-Security Purpose",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "prng_seed_reuse",
+              "name": "Pseudo-Random Number Generator (PRNG) Seed Reuse",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "predictable_prng_seed",
+              "name": "Predictable Pseudo-Random Number Generator (PRNG) Seed",
+              "type": "variant",
+              "priority": 4
+            },
+            {
+              "id": "small_seed_space_in_prng",
+              "name": "Small Seed Space in Pseudo-Random Number Generator (PRNG)",
+              "type": "variant",
+              "priority": 4
+            },
+            {
+              "id": "initialization_vector_reuse",
+              "name": "Initialization Vector (IV) Reuse",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "predictable_initialization_vector",
+              "name": "Predictable Initialization Vector (IV)",
+              "type": "variant",
+              "priority": 4
             }
           ]
+        },
+        {
+          "id": "insecure_implementation",
+          "name": "Insecure Implementation",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "missing_cryptographic_step",
+              "name": "Missing Cryptographic Step",
+              "type": "variant",
+              "priority": null
+            },
+            {
+              "id": "improper_following_of_specification",
+              "name": "Improper Following of Specification (Other)",
+              "type": "variant",
+              "priority": null
+            }
+          ]
+        },
+        {
+          "id": "weak_hash",
+          "name": "Weak Hash",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "lack_of_salt",
+              "name": "Lack of Salt",
+              "type": "variant",
+              "priority": null
+            },
+            {
+              "id": "use_of_predictable_salt",
+              "name": "Use of Predictable Salt",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "predictable_hash_collision",
+              "name": "Predictable Hash Collision",
+              "type": "variant",
+              "priority": null
+            }
+          ]
+        },
+        {
+          "id": "insufficient_verification_of_data_authenticity",
+          "name": "Insufficient Verification of Data Authenticity",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "identity_check_value",
+              "name": "Integrity Check Value (ICV)",
+              "type": "variant",
+              "priority": 4
+            },
+            {
+              "id": "cryptographic_signature",
+              "name": "Cryptographic Signature",
+              "type": "variant",
+              "priority": null
+            }
+          ]
+        },
+        {
+          "id": "insecure_key_generation",
+          "name": "Insecure Key Generation",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "improper_asymmetric_prime_selection",
+              "name": "Improper Asymmetric Prime Selection",
+              "type": "variant",
+              "priority": null
+            },
+            {
+              "id": "improper_asymmetric_exponent_selection",
+              "name": "Improper Asymmetric Exponent Selection",
+              "type": "variant",
+              "priority": null
+            },
+            {
+              "id": "insufficient_key_stretching",
+              "name": "Insufficient Key Stretching",
+              "type": "variant",
+              "priority": null
+            },
+            {
+              "id": "insufficient_key_space",
+              "name": "Insufficient Key Space",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "key_exchange_without_entity_authentication",
+              "name": "Key Exchage Without Entity Authentication",
+              "type": "variant",
+              "priority": 4
+            }
+          ]
+        },
+        {
+          "id": "key_reuse",
+          "name": "Key Reuse",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "lack_of_perfect_forward_secrecy",
+              "name": "Lack of Perfect Forward Secrecy",
+              "type": "variant",
+              "priority": 4
+            },
+            {
+              "id": "intra_environment",
+              "name": "Intra-Environment",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "inter_environment",
+              "name": "Inter-Environment",
+              "type": "variant",
+              "priority": 2
+            }
+          ]
+        },
+        {
+          "id": "side_channel_attack",
+          "name": "Side-Channel Attack",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "padding_oracle_attack",
+              "name": "Padding Oracle Attack",
+              "type": "variant",
+              "priority": 4
+            },
+            {
+              "id": "timing_attack",
+              "name": "Timing Attack",
+              "type": "variant",
+              "priority": 4
+            },
+            {
+              "id": "power_analysis_attack",
+              "name": "Power Analysis Attack",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "emanations_attack",
+              "name": "Emanations Attack",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "differential_fault_analysis",
+              "name": "Differential Fault Analysis",
+              "type": "variant",
+              "priority": null
+            }
+          ]
+        },
+        {
+          "id": "use_of_expired_cryptographic_key_or_cert",
+          "name": "Use of Expired Cryptographic Key (or Certificate)",
+          "type": "subcategory",
+          "priority": 4
+        },
+        {
+          "id": "incomplete_cleanup_of_keying_material",
+          "name": "Incomplete Cleanup of Keying Material",
+          "type": "subcategory",
+          "priority": 5
+        }
+      ]
+    },
+    {
+      "id": "broken_cryptography",
+      "name": "Broken Cryptography",
+      "type": "category",
+      "children": [
+        {
+          "id": "use_of_broken_cryptographic_primitive",
+          "name": "Use of Broken Cryptographic Primitive",
+          "type": "subcategory",
+          "priority": 3
+        },
+        {
+          "id": "use_of_vulnerable_cryptographic_library",
+          "name": "Use of Vulnerable Cryptographic Library",
+          "type": "subcategory",
+          "priority": 4
         }
       ]
     },
@@ -1923,8 +2222,8 @@
           "type": "subcategory",
           "children": [
             {
-              "id": "pii_leakage",
-              "name": "PII Leakage",
+              "id": "sensitive_data_leakage_exposure",
+              "name": "Sensitive data Leakage/Exposure",
               "type": "variant",
               "priority": 1
             },

From f3ce97cf0466c267fff8c55b647f8f72ed0c90ab Mon Sep 17 00:00:00 2001
From: Timmy <106584457+TimmyBugcrowd@users.noreply.github.com>
Date: Wed, 15 Nov 2023 12:53:29 +0100
Subject: [PATCH 30/54] V1.11 (#392)

* Update vulnerability-rating-taxonomy.json

* v1.11

* Revert "Update vulnerability-rating-taxonomy.json"

This reverts commit 3222464cdb0d859a9d9ebce51017b95cf6f1ef28.

* Update vulnerability-rating-taxonomy.json

Co-authored-by: Deepak Kumar Jha <Deepak.jha@bugcrowd.com>

---------

Co-authored-by: Deepak Kumar Jha <Deepak.jha@bugcrowd.com>
---
 CHANGELOG.md                       | 66 ++++++++++++++++++++++++++++++
 vulnerability-rating-taxonomy.json |  2 +-
 2 files changed, 67 insertions(+), 1 deletion(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 9a9d227f..3c1d0229 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -10,6 +10,72 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 
 ### Changed
 
+## [v1.11](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.10...v1.11) - 2023-11-20
+### Added
+- Sensitive Data Exposure - Disclosure of Secrets - PII Leakage/Exposure: VARIES
+- Sensitive Data Exposure - Disclosure of Secrets - Sensitive data Leakage/Exposure: P1
+- Server-Side Injection - Content Spoofing - HTML Content Injection: P5
+- Broken Authentication and Session Management - Failure to invalidate session - Permission change: VARIES
+- Server Security Misconfiguration - Request Smuggling: VARIES
+- Cryptographic Weakness - Insufficient Entropy - Limited Random Number Generator (RNG) Entropy Source: P4
+- Cryptographic Weakness - Insufficient_Entropy - Use of True Random Number Generator (TRNG) for Non-Security Purpose: P5
+- Cryptographic Weakness - Insufficient_Entropy - Pseudo-Random Number Generator (PRNG) Seed Reuse: P5
+- Cryptographic Weakness - Insufficient_Entropy - Predictable Pseudo-Random Number Generator (PRNG) Seed: P4 
+- Cryptographic Weakness - Insufficient_Entropy - Small Seed Space in Pseudo-Random Number Generator (PRNG): P4
+- Cryptographic Weakness - Insufficient_Entropy - Initialization Vector (IV) Reuse: P5
+- Cryptographic Weakness - Insufficient_Entropy - Predictable Initialization Vector (IV): P4
+- Cryptographic Weakness - Insecure Implementation - Missing Cryptographic Step: VARIES
+- Cryptographic Weakness - Insecure Implementation - Improper Following of Specification (Other): VARIES
+- Cryptographic Weakness - Weak Hash - Lack of Salt: VARIES
+- Cryptographic Weakness - Weak Hash - Use of Predictable Salt: P5
+- Cryptographic Weakness - Weak Hash - Predictable Hash Collision: VARIES
+- Cryptographic Weakness - Insufficient Verification of Data Authenticity - Integrity Check Value (ICV): P4
+- Cryptographic Weakness - Insufficient Verification of Data Authenticity - Cryptographic Signature: VARIES
+- Cryptographic Weakness - Insecure Key Generation - Improper Asymmetric Prime Selection: VARIES
+- Cryptographic Weakness - Insecure Key Generation - Improper Asymmetric Exponent Selection: VARIES
+- Cryptographic Weakness - Insecure Key Generation - Insufficient Key Stretching: VARIES
+- Cryptographic Weakness - Insecure Key Generation - Insufficient Key Space: P3
+- Cryptographic Weakness - Insecure Key Generation - Key Exchage Without Entity Authentication: P3
+- Cryptographic Weakness - Key Reuse - Lack of Perfect Forward Secrecy: P4
+- Cryptographic Weakness - Key Reuse - Intra-Environment: P5
+- Cryptographic Weakness - Key Reuse - Inter-Environment: P2
+- Cryptographic Weakness - Side-Channel Attack - Padding Oracle Attack: P4
+- Cryptographic Weakness - Side-Channel Attack - Timing Attack: P4
+- Cryptographic Weakness - Side-Channel Attack - Power Analysis Attack: P5
+- Cryptographic Weakness - Side-Channel Attack - Emanations Attack: P5
+- Cryptographic Weakness - Side-Channel Attack - Differential Fault Analysis: VARIES
+- Cryptographic Weakness - Use of Expired Cryptographic Key (or Certificate): P4
+- Cryptographic Weakness - Incomplete Cleanup of Keying Material: P5
+- Cryptographic Weakness - Broken Cryptography - Use of Broken Cryptographic Primitive: P3
+- Cryptographic Weakness - Broken Cryptography - Use of Vulnerable Cryptographic Library: P4
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Manipulate Non-Sensitive Information: P5
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Manipulate Sensitive Information | GUID/Complex Object Identifiers: P4
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Read Sensitive Information | Iteratable Object Identifiers: P3
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Alter Sensitive Information | Iteratable Object Identifiers: P2
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Read Sensitive Information (PII) | Iteratable Object Identifiers: P1
+
+### Changed
+FROM: 
+- Cross-Site Scripting (XSS) - IE-Only - Older Version (< IE11): P5
+TO: 
+- Cross-Site Scripting (XSS) - IE-Only: P5
+
+- FROM:
+- Broken Access Control (BAC) - Server-Side Request Forgery (SSRF) - Internal High Impact: P2
+- Broken Access Control (BAC) - Server-Side Request Forgery (SSRF) - Internal Scan and/or Medium Impact: P3
+- Broken Access Control (BAC) - Server-Side Request Forgery (SSRF) - External: P4
+- Broken Access Control (BAC) - Server-Side Request Forgery (SSRF) - DNS Query Only : P5
+TO:
+- Server Security Misconfiguration - Server-Side Request Forgery (SSRF) - Internal High Impact: P2
+- Server Security Misconfiguration - Server-Side Request Forgery (SSRF) - Internal Scan and/or Medium Impact: P3
+- Server Security Misconfiguration - Server-Side Request Forgery (SSRF) - External - Low impact: P5
+- Server Security Misconfiguration - Server-Side Request Forgery (SSRF) - External - DNS Query Only: P5
+
+### Removed
+- Cross-Site Scripting (XSS) - IE-Only - IE11: P4
+- Broken Cryptography - Cryptographic Flaw - Incorrect Usage: P1
+- Automotive Security Misconfiguration - Infotainment, Radio Head Unit - PII Leakage: P1
+
 ## [v1.10.1](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.10...v1.10.1) - 2021-03-29
 ### Changed
 - renamed `secure code warriors` mapping to `secure code warrior`
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index c36f54e2..87ea1a62 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1,6 +1,6 @@
 {
   "metadata": {
-    "release_date": "2021-03-29T00:00:00+00:00"
+    "release_date": "2023-11-20T00:00:00+00:00"
   },
   "content": [
     {

From 7b4a14c783ed81341d24fd09ed44d895d0cda4c4 Mon Sep 17 00:00:00 2001
From: Timmy <106584457+TimmyBugcrowd@users.noreply.github.com>
Date: Thu, 16 Nov 2023 09:32:10 +0100
Subject: [PATCH 31/54] Fixing duplicate error (#393)

---
 .../remediation_training/secure-code-warrior-links.json          | 1 -
 1 file changed, 1 deletion(-)

diff --git a/third-party-mappings/remediation_training/secure-code-warrior-links.json b/third-party-mappings/remediation_training/secure-code-warrior-links.json
index a6fd3255..2ca635dc 100755
--- a/third-party-mappings/remediation_training/secure-code-warrior-links.json
+++ b/third-party-mappings/remediation_training/secure-code-warrior-links.json
@@ -136,7 +136,6 @@
   "sensitive_data_exposure.disclosure_of_secrets.for_publicly_accessible_asset": null,
   "sensitive_data_exposure.disclosure_of_secrets.pii_leakage_exposure": null,
   "sensitive_data_exposure.disclosure_of_secrets.pay_per_use_abuse": null,
-  "sensitive_data_exposure.disclosure_of_secrets.pay_per_use_abuse": null,
   "sensitive_data_exposure.disclosure_of_secrets.intentionally_public_sample_or_invalid": null,
   "sensitive_data_exposure.disclosure_of_secrets.data_traffic_spam": null,
   "sensitive_data_exposure.disclosure_of_secrets.non_corporate_user": null,

From 439da3a2a92f83720c373c94c9e3b655698971ba Mon Sep 17 00:00:00 2001
From: Deepak Kumar Jha <Deepak.jha@bugcrowd.com>
Date: Thu, 16 Nov 2023 14:54:57 +0530
Subject: [PATCH 32/54] scw-update (#394)

---
 .../secure-code-warrior-links.json            | 68 ++++++++++++++++---
 1 file changed, 57 insertions(+), 11 deletions(-)

diff --git a/third-party-mappings/remediation_training/secure-code-warrior-links.json b/third-party-mappings/remediation_training/secure-code-warrior-links.json
index 2ca635dc..5c27c94d 100755
--- a/third-party-mappings/remediation_training/secure-code-warrior-links.json
+++ b/third-party-mappings/remediation_training/secure-code-warrior-links.json
@@ -1,6 +1,12 @@
 {
   "server_security_misconfiguration": null,
+  "server_security_misconfiguration.server_side_request_forgery_ssrf": null,
+  "server_security_misconfiguration.server_side_request_forgery_ssrf.internal_high_impact": null,
+  "server_security_misconfiguration.server_side_request_forgery_ssrf.internal_scan_and_or_medium_impact": null,
+  "server_security_misconfiguration.server_side_request_forgery_ssrf.external_low_impact": null,
+  "server_security_misconfiguration.server_side_request_forgery_ssrf.external_dns_query_only": null,
   "server_security_misconfiguration.unsafe_cross_origin_resource_sharing": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:unsafe_cross_origin_resource_sharing&redirect=true",
+  "server_security_misconfiguration.request_smuggling": null,
   "server_security_misconfiguration.path_traversal": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:path_traversal&redirect=true",
   "server_security_misconfiguration.directory_listing_enabled": null,
   "server_security_misconfiguration.directory_listing_enabled.sensitive_data_exposure": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:directory_listing_enabled:sensitive_data_exposure&redirect=true",
@@ -90,6 +96,7 @@
   "server_side_injection.parameter_pollution": null,
   "server_side_injection.parameter_pollution.social_media_sharing_buttons": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:parameter_pollution:social_media_sharing_buttons&redirect=true",
   "server_side_injection.remote_code_execution_rce": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:remote_code_execution_rce&redirect=true",
+  "server_side_injection.ldap_injection": null,
   "server_side_injection.sql_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:sql_injection&redirect=true",
   "server_side_injection.xml_external_entity_injection_xxe": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:xml_external_entity_injection_xxe&redirect=true",
   "server_side_injection.http_response_manipulation": null,
@@ -99,6 +106,7 @@
   "server_side_injection.content_spoofing.impersonation_via_broken_link_hijacking": null,
   "server_side_injection.content_spoofing.external_authentication_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:external_authentication_injection&redirect=true",
   "server_side_injection.content_spoofing.flash_based_external_authentication_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:flash_based_external_authentication_injection&redirect=true",
+  "server_side_injection.content_spoofing.html_content_injection": null,
   "server_side_injection.content_spoofing.email_html_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:email_html_injection&redirect=true",
   "server_side_injection.content_spoofing.email_hyperlink_injection_based_on_email_provider": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:email_hyperlink_injection_based_on_email_provider&redirect=true",
   "server_side_injection.content_spoofing.text_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:text_injection&redirect=true",
@@ -121,6 +129,7 @@
   "broken_authentication_and_session_management.session_fixation.local_attack_vector": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:session_fixation:local_attack_vector&redirect=true",
   "broken_authentication_and_session_management.failure_to_invalidate_session": null,
   "broken_authentication_and_session_management.failure_to_invalidate_session.on_logout": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:failure_to_invalidate_session:on_logout&redirect=true",
+  "broken_authentication_and_session_management.failure_to_invalidate_session.permission_change": null,
   "broken_authentication_and_session_management.failure_to_invalidate_session.on_logout_server_side_only": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:failure_to_invalidate_session:on_logout_server_side_only&redirect=true",
   "broken_authentication_and_session_management.failure_to_invalidate_session.on_password_change": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:failure_to_invalidate_session:on_password_change&redirect=true",
   "broken_authentication_and_session_management.failure_to_invalidate_session.all_sessions": null,
@@ -132,9 +141,9 @@
   "broken_authentication_and_session_management.weak_registration_implementation.over_http": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:weak_registration_implementation:over_http&redirect=true",
   "sensitive_data_exposure": null,
   "sensitive_data_exposure.disclosure_of_secrets": null,
-  "sensitive_data_exposure.pii_leakage_exposure": null,
   "sensitive_data_exposure.disclosure_of_secrets.for_publicly_accessible_asset": null,
   "sensitive_data_exposure.disclosure_of_secrets.pii_leakage_exposure": null,
+  "sensitive_data_exposure.disclosure_of_secrets.for_internal_asset": null,
   "sensitive_data_exposure.disclosure_of_secrets.pay_per_use_abuse": null,
   "sensitive_data_exposure.disclosure_of_secrets.intentionally_public_sample_or_invalid": null,
   "sensitive_data_exposure.disclosure_of_secrets.data_traffic_spam": null,
@@ -182,9 +191,6 @@
   "cross_site_scripting_xss.flash_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:flash_based&redirect=true",
   "cross_site_scripting_xss.cookie_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:cookie_based&redirect=true",
   "cross_site_scripting_xss.ie_only": null,
-  "cross_site_scripting_xss.ie_only.ie_eleven": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:ie_only:ie_eleven&redirect=true",
-  "cross_site_scripting_xss.ie_only.xss_filter_disabled": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:ie_only:xss_filter_disabled&redirect=true",
-  "cross_site_scripting_xss.ie_only.older_version_ie_eleven": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:ie_only:older_version_ie_eleven&redirect=true",
   "cross_site_scripting_xss.referer": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:referer&redirect=true",
   "cross_site_scripting_xss.trace_method": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:trace_method&redirect=true",
   "cross_site_scripting_xss.universal_uxss": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:universal_uxss&redirect=true",
@@ -192,11 +198,14 @@
   "cross_site_scripting_xss.off_domain.data_uri": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:off_domain:data_uri&redirect=true",
   "broken_access_control": null,
   "broken_access_control.idor": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:idor&redirect=true",
-  "broken_access_control.server_side_request_forgery_ssrf": null,
-  "broken_access_control.server_side_request_forgery_ssrf.internal_high_impact": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:server_side_request_forgery_ssrf:internal_high_impact&redirect=true",
-  "broken_access_control.server_side_request_forgery_ssrf.internal_scan_and_or_medium_impact": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:server_side_request_forgery_ssrf:internal_scan_and_or_medium_impact&redirect=true",
-  "broken_access_control.server_side_request_forgery_ssrf.external": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:server_side_request_forgery_ssrf:external&redirect=true",
-  "broken_access_control.server_side_request_forgery_ssrf.dns_query_only": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:server_side_request_forgery_ssrf:dns_query_only&redirect=true",
+  "broken_access_control.idor.read_edit_delete_non_sensitive_information": null,
+  "broken_access_control.idor.read_edit_delete_sensitive_information": null,
+  "broken_access_control.idor.read_edit_delete_sensitive_information.complext_object_identifiers": null,
+  "broken_access_control.idor.read_sensitive_information": null,
+  "broken_access_control.idor.read_sensitive_information.iterable_object_identifiers": null,
+  "broken_access_control.idor.edit_delete_sensitive_information": null,
+  "broken_access_control.idor.edit_delete_sensitive_information.iterable_object_identifiers": null,
+  "broken_access_control.idor.edit_delete_sensitive_information.read_edit_delete_sensitive_information_pii": null,
   "broken_access_control.username_enumeration": null,
   "broken_access_control.username_enumeration.non_brute_force": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:username_enumeration:non_brute_force&redirect=true",
   "broken_access_control.exposed_sensitive_android_intent": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:exposed_sensitive_android_intent&redirect=true",
@@ -285,9 +294,46 @@
   "insecure_os_firmware.hardcoded_password": null,
   "insecure_os_firmware.hardcoded_password.privileged_user": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_os_firmware:hardcoded_password:privileged_user&redirect=true",
   "insecure_os_firmware.hardcoded_password.non_privileged_user": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_os_firmware:hardcoded_password:non_privileged_user&redirect=true",
+  "cryptographic_weakness": null,
+  "cryptographic_weakness.insufficient_entropy": null,
+  "cryptographic_weakness.insufficient_entropy.limited_rng_entropy_source": null,
+  "cryptographic_weakness.insufficient_entropy.use_of_trng_for_nonsecurity_purpose": null,
+  "cryptographic_weakness.insufficient_entropy.prng_seed_reuse": null,
+  "cryptographic_weakness.insufficient_entropy.predictable_prng_seed": null,
+  "cryptographic_weakness.insufficient_entropy.small_seed_space_in_prng": null,
+  "cryptographic_weakness.insufficient_entropy.initialization_vector_reuse": null,
+  "cryptographic_weakness.insufficient_entropy.predictable_initialization_vector": null,
+  "cryptographic_weakness.insecure_implementation": null,
+  "cryptographic_weakness.insecure_implementation.missing_cryptographic_step": null,
+  "cryptographic_weakness.insecure_implementation.improper_following_of_specification": null,
+  "cryptographic_weakness.weak_hash": null,
+  "cryptographic_weakness.weak_hash.lack_of_salt": null,
+  "cryptographic_weakness.weak_hash.use_of_predictable_salt": null,
+  "cryptographic_weakness.weak_hash.predictable_hash_collision": null,
+  "cryptographic_weakness.insufficient_verification_of_data_authenticity": null,
+  "cryptographic_weakness.insufficient_verification_of_data_authenticity.identity_check_value": null,
+  "cryptographic_weakness.insufficient_verification_of_data_authenticity.cryptographic_signature": null,
+  "cryptographic_weakness.insecure_key_generation": null,
+  "cryptographic_weakness.insecure_key_generation.improper_asymmetric_prime_selection": null,
+  "cryptographic_weakness.insecure_key_generation.improper_asymmetric_exponent_selection": null,
+  "cryptographic_weakness.insecure_key_generation.insufficient_key_stretching": null,
+  "cryptographic_weakness.insecure_key_generation.insufficient_key_space": null,
+  "cryptographic_weakness.insecure_key_generation.key_exchange_without_entity_authentication": null,
+  "cryptographic_weakness.key_reuse": null,
+  "cryptographic_weakness.key_reuse.lack_of_perfect_forward_secrecy": null,
+  "cryptographic_weakness.key_reuse.intra_environment": null,
+  "cryptographic_weakness.key_reuse.inter_environment": null,
+  "cryptographic_weakness.side_channel_attack": null,
+  "cryptographic_weakness.side_channel_attack.padding_oracle_attack": null,
+  "cryptographic_weakness.side_channel_attack.timing_attack": null,
+  "cryptographic_weakness.side_channel_attack.power_analysis_attack": null,
+  "cryptographic_weakness.side_channel_attack.emanations_attack": null,
+  "cryptographic_weakness.side_channel_attack.differential_fault_analysis": null,
+  "cryptographic_weakness.use_of_expired_cryptographic_key_or_cert": null,
+  "cryptographic_weakness.incomplete_cleanup_of_keying_material": null,
   "broken_cryptography": null,
-  "broken_cryptography.cryptographic_flaw": null,
-  "broken_cryptography.cryptographic_flaw.incorrect_usage": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_cryptography:cryptographic_flaw:incorrect_usage&redirect=true",
+  "broken_cryptography.use_of_broken_cryptographic_primitive": null,
+  "broken_cryptography.use_of_vulnerable_cryptographic_library": null,
   "privacy_concerns": null,
   "privacy_concerns.unnecessary_data_collection": null,
   "privacy_concerns.unnecessary_data_collection.wifi_ssid_password": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=privacy_concerns:unnecessary_data_collection:wifi_ssid_password&redirect=true",

From 3c3cd00e294a63acc55db6a0b77cd5e851eaf3ce Mon Sep 17 00:00:00 2001
From: Timmy <106584457+TimmyBugcrowd@users.noreply.github.com>
Date: Mon, 20 Nov 2023 05:41:04 +0100
Subject: [PATCH 33/54] Fixing-errors (#396)

* fixing-errors

fixing-errors

* Update vulnerability-rating-taxonomy.json

* fixing-errors

* broken_cryptography fix

* broken_cryptography fix for cvss, cwe and remediation

* Fixing-errors

* Update deprecated-node-mapping.json

* fixing-errors

* Update deprecated-node-mapping.json

* scw updated

---------

Co-authored-by: Deepak Kumar Jha <Deepak.jha@bugcrowd.com>
---
 CHANGELOG.md                                  |  23 ++--
 deprecated-node-mapping.json                  |  36 ++++++
 mappings/cvss_v3/cvss_v3.json                 |  26 ++--
 mappings/cwe/cwe.json                         |  28 ++--
 .../remediation_advice.json                   |  44 +++----
 .../secure-code-warrior-links.json            |  17 +--
 vulnerability-rating-taxonomy.json            | 120 +++++++-----------
 7 files changed, 153 insertions(+), 141 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 3c1d0229..be549c56 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -13,10 +13,10 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 ## [v1.11](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.10...v1.11) - 2023-11-20
 ### Added
 - Sensitive Data Exposure - Disclosure of Secrets - PII Leakage/Exposure: VARIES
-- Sensitive Data Exposure - Disclosure of Secrets - Sensitive data Leakage/Exposure: P1
 - Server-Side Injection - Content Spoofing - HTML Content Injection: P5
 - Broken Authentication and Session Management - Failure to invalidate session - Permission change: VARIES
 - Server Security Misconfiguration - Request Smuggling: VARIES
+- Server-Side Injection - LDAP Injection: VARIES
 - Cryptographic Weakness - Insufficient Entropy - Limited Random Number Generator (RNG) Entropy Source: P4
 - Cryptographic Weakness - Insufficient_Entropy - Use of True Random Number Generator (TRNG) for Non-Security Purpose: P5
 - Cryptographic Weakness - Insufficient_Entropy - Pseudo-Random Number Generator (PRNG) Seed Reuse: P5
@@ -48,33 +48,40 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - Cryptographic Weakness - Incomplete Cleanup of Keying Material: P5
 - Cryptographic Weakness - Broken Cryptography - Use of Broken Cryptographic Primitive: P3
 - Cryptographic Weakness - Broken Cryptography - Use of Vulnerable Cryptographic Library: P4
-- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Manipulate Non-Sensitive Information: P5
-- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Manipulate Sensitive Information | GUID/Complex Object Identifiers: P4
-- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Read Sensitive Information | Iteratable Object Identifiers: P3
-- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Alter Sensitive Information | Iteratable Object Identifiers: P2
-- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Read Sensitive Information (PII) | Iteratable Object Identifiers: P1
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Read/Edit/Delete Non-Sensitive Information: P5
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Read/Edit/Delete Sensitive Information/GUID/Complex Object Identifiers: P4
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Read Sensitive Information/Iterable Object Identifiers: P3
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Edit/Delete Sensitive Information/Iterable Object Identifiers: P2
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Read/Edit/Delete Sensitive Information (PII)/Iterable Object Identifier: P1
 
 ### Changed
 FROM: 
 - Cross-Site Scripting (XSS) - IE-Only - Older Version (< IE11): P5
+
 TO: 
 - Cross-Site Scripting (XSS) - IE-Only: P5
 
-- FROM:
+FROM:
 - Broken Access Control (BAC) - Server-Side Request Forgery (SSRF) - Internal High Impact: P2
 - Broken Access Control (BAC) - Server-Side Request Forgery (SSRF) - Internal Scan and/or Medium Impact: P3
 - Broken Access Control (BAC) - Server-Side Request Forgery (SSRF) - External: P4
 - Broken Access Control (BAC) - Server-Side Request Forgery (SSRF) - DNS Query Only : P5
+
 TO:
 - Server Security Misconfiguration - Server-Side Request Forgery (SSRF) - Internal High Impact: P2
 - Server Security Misconfiguration - Server-Side Request Forgery (SSRF) - Internal Scan and/or Medium Impact: P3
 - Server Security Misconfiguration - Server-Side Request Forgery (SSRF) - External - Low impact: P5
 - Server Security Misconfiguration - Server-Side Request Forgery (SSRF) - External - DNS Query Only: P5
 
+FROM:
+- Automotive Security Misconfiguration - Infotainment, Radio Head Unit - PII Leakage: P1
+
+TO:
+- Automotive Security Misconfiguration - Infotainment, Radio Head Unit - Sensitive data Leakage/Exposure: P1
 ### Removed
 - Cross-Site Scripting (XSS) - IE-Only - IE11: P4
+- Cross-Site Scripting (XSS) - XSS Filter Disabled: P5
 - Broken Cryptography - Cryptographic Flaw - Incorrect Usage: P1
-- Automotive Security Misconfiguration - Infotainment, Radio Head Unit - PII Leakage: P1
 
 ## [v1.10.1](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.10...v1.10.1) - 2021-03-29
 ### Changed
diff --git a/deprecated-node-mapping.json b/deprecated-node-mapping.json
index 302579ca..5eae889c 100644
--- a/deprecated-node-mapping.json
+++ b/deprecated-node-mapping.json
@@ -196,5 +196,41 @@
   },
   "automotive_security_misconfiguration.infotainment.default_credentials": {
     "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.default_credentials"
+  },
+  "broken_cryptography": {
+    "1.11": "other"
+  },
+  "broken_cryptography.cryptographic_flaw": {
+    "1.11": "other"
+  },
+  "broken_cryptography.cryptographic_flaw.incorrect_usage": {
+    "1.11": "other"
+  },
+  "broken_cryptography.use_of_broken_cryptographic_primitive": {
+    "1.11": "cryptographic_weakness.broken_cryptography.use_of_broken_cryptographic_primitive"
+  },
+  "broken_cryptography.use_of_vulnerable_cryptographic_library": {
+    "1.11": "cryptographic_weakness.broken_cryptography.use_of_vulnerable_cryptographic_library"
+  },
+  "cross_site_scripting_xss.ie_only.older_version_ie11": {
+    "1.11": "other"
+  },
+  "cross_site_scripting_xss.ie_only.xss_filter_disabled": {
+    "1.11": "other"
+  },
+  "automotive_security_misconfiguration.infotainment_radio_head_unit.pii_leakage": {
+    "1.11": "automotive_security_misconfiguration.infotainment_radio_head_unit.sensitive_data_leakage_exposure"
+  },
+  "broken_access_control.server_side_request_forgery_ssrf.internal_high_impact": {
+    "1.11": "server_security_misconfiguration.server_side_request_forgery_ssrf.internal_high_impact"
+  },
+  "broken_access_control.server_side_request_forgery_ssrf.internal_scan_and_or_medium_impact": {
+    "1.11": "server_security_misconfiguration.server_side_request_forgery_ssrf.internal_scan_and_or_medium_impact"
+  },
+  "broken_access_control.server_side_request_forgery_ssrf.dns_query_only": {
+    "1.11": "server_security_misconfiguration.server_side_request_forgery_ssrf.external_dns_query_only"
+  },
+  "broken_access_control.server_side_request_forgery_ssrf.external": {
+    "1.11": "server_security_misconfiguration.server_side_request_forgery_ssrf.external_low_impact"
   }
 }
diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index 0a8af6dc..2421aaf3 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -966,6 +966,19 @@
             }
           ]
         },
+        {
+          "id": "broken_cryptography",
+          "children": [
+            {
+              "id": "use_of_broken_cryptographic_primitive",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"
+            },
+            {
+              "id": "use_of_vulnerable_cryptographic_library",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"
+            }
+          ]
+        },
         {
           "id": "side_channel_attack",
           "children": [
@@ -1001,19 +1014,6 @@
         }
       ]
     },
-    {
-      "id": "broken_cryptography",
-      "children": [
-        {
-          "id": "use_of_broken_cryptographic_primitive",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"
-        },
-        {
-          "id": "use_of_vulnerable_cryptographic_library",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"
-        }
-      ]
-    },
     {
       "id": "privacy_concerns",
       "children": [
diff --git a/mappings/cwe/cwe.json b/mappings/cwe/cwe.json
index edce0c68..804163fe 100644
--- a/mappings/cwe/cwe.json
+++ b/mappings/cwe/cwe.json
@@ -552,6 +552,20 @@
             }
           ]
         },
+        {
+          "id": "broken_cryptography",
+          "cwe": ["CWE-327"],
+          "children": [
+            {
+              "id": "use_of_broken_cryptographic_primitive",
+              "cwe": ["CWE-327"]
+            },
+            {
+              "id": "use_of_vulnerable_cryptographic_library",
+              "cwe": ["CWE-327"]
+            }
+          ]
+        },
         {
           "id": "side_channel_attack",
           "cwe": ["CWE-203", "CWE-1300"],
@@ -588,20 +602,6 @@
         }
       ]
     },
-    {
-      "id": "broken_cryptography",
-      "cwe": ["CWE-327"],
-      "children": [
-        {
-          "id": "use_of_broken_cryptographic_primitive",
-          "cwe": ["CWE-327"]
-        },
-        {
-          "id": "use_of_vulnerable_cryptographic_library",
-          "cwe": ["CWE-327"]
-        }
-      ]
-    },
     {
       "id": "privacy_concerns",
       "cwe": ["CWE-359"]
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index 082130fb..e09bc36d 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -1382,6 +1382,28 @@
             }
           ]
         },
+        {
+          "id": "broken_cryptography",
+          "children": [
+            {
+              "id": "use_of_broken_cryptographic_primitive",
+              "remediation_advice": "The use of broken, weak, or flawed cryptographic algorithms can allow an attacker to decrypt sensistive information.  Ensure the application makes use of only trustworthy cryprographic algorithms as indicated by relevant security standard(s) and regulation(s).",
+              "references": [
+                "https://codeql.github.com/codeql-query-help/java/java-weak-cryptographic-algorithm/",
+                "https://csrc.nist.gov/csrc/media/publications/fips/140/2/final/documents/fips1402annexa.pdf",
+                "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar2.pdf"
+              ]
+            },
+            {
+              "id": "use_of_vulnerable_cryptographic_library",
+              "remediation_advice": "The identification, patching, and disclosure of vulnerabilities in third-party libraries, including cryptographic libraries, is a daily occurrence.  In some cases, cryptographic libraries are deemed 'broken' and deprecated.  Ensure the application is updated to include the latest secure version of all third-party cryptographic libraries and replace known 'broken' cryptographic libraries with secure alternatives.",
+              "references": [
+                "https://www.ubiqsecurity.com/bouncy-castle-and-the-impact-of-cryptographic-vulnerabilities/",
+                "https://blog.cryptographyengineering.com/2013/09/20/rsa-warns-developers-against-its-own/"
+              ]
+            }
+          ]
+        },
         {
           "id": "side_channel_attack",
           "children": [
@@ -1449,28 +1471,6 @@
         }
       ]
     },
-    {
-      "id": "broken_cryptography",
-      "children": [
-        {
-          "id": "use_of_broken_cryptographic_primitive",
-          "remediation_advice": "The use of broken, weak, or flawed cryptographic algorithms can allow an attacker to decrypt sensistive information.  Ensure the application makes use of only trustworthy cryprographic algorithms as indicated by relevant security standard(s) and regulation(s).",
-          "references": [
-            "https://codeql.github.com/codeql-query-help/java/java-weak-cryptographic-algorithm/",
-            "https://csrc.nist.gov/csrc/media/publications/fips/140/2/final/documents/fips1402annexa.pdf",
-            "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar2.pdf"
-          ]
-        },
-        {
-          "id": "use_of_vulnerable_cryptographic_library",
-          "remediation_advice": "The identification, patching, and disclosure of vulnerabilities in third-party libraries, including cryptographic libraries, is a daily occurrence.  In some cases, cryptographic libraries are deemed 'broken' and deprecated.  Ensure the application is updated to include the latest secure version of all third-party cryptographic libraries and replace known 'broken' cryptographic libraries with secure alternatives.",
-          "references": [
-            "https://www.ubiqsecurity.com/bouncy-castle-and-the-impact-of-cryptographic-vulnerabilities/",
-            "https://blog.cryptographyengineering.com/2013/09/20/rsa-warns-developers-against-its-own/"
-          ]
-        }
-      ]
-    },
     {
       "id": "privacy_concerns",
       "remediation_advice": "1. Avoid storing unnecessary data where possible.\n2. Purge all known unnecessary data when identified on the device or application.\n3. Purge all known unnecessary data in known cached locations.\n4. Purge all known unnecessary data on known backup locations.",
diff --git a/third-party-mappings/remediation_training/secure-code-warrior-links.json b/third-party-mappings/remediation_training/secure-code-warrior-links.json
index 5c27c94d..00f32d97 100755
--- a/third-party-mappings/remediation_training/secure-code-warrior-links.json
+++ b/third-party-mappings/remediation_training/secure-code-warrior-links.json
@@ -199,13 +199,10 @@
   "broken_access_control": null,
   "broken_access_control.idor": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:idor&redirect=true",
   "broken_access_control.idor.read_edit_delete_non_sensitive_information": null,
-  "broken_access_control.idor.read_edit_delete_sensitive_information": null,
-  "broken_access_control.idor.read_edit_delete_sensitive_information.complext_object_identifiers": null,
-  "broken_access_control.idor.read_sensitive_information": null,
-  "broken_access_control.idor.read_sensitive_information.iterable_object_identifiers": null,
-  "broken_access_control.idor.edit_delete_sensitive_information": null,
-  "broken_access_control.idor.edit_delete_sensitive_information.iterable_object_identifiers": null,
-  "broken_access_control.idor.edit_delete_sensitive_information.read_edit_delete_sensitive_information_pii": null,
+  "broken_access_control.idor.read_edit_delete_sensitive_information_guid": null,
+  "broken_access_control.idor.read_sensitive_information_iterable_object_identifiers": null,
+  "broken_access_control.idor.edit_delete_sensitive_information_iterable_object_identifiers": null,
+  "broken_access_control.idor.read_edit_delete_sensitive_information_iterable_object_identifiers": null,
   "broken_access_control.username_enumeration": null,
   "broken_access_control.username_enumeration.non_brute_force": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:username_enumeration:non_brute_force&redirect=true",
   "broken_access_control.exposed_sensitive_android_intent": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:exposed_sensitive_android_intent&redirect=true",
@@ -323,6 +320,9 @@
   "cryptographic_weakness.key_reuse.lack_of_perfect_forward_secrecy": null,
   "cryptographic_weakness.key_reuse.intra_environment": null,
   "cryptographic_weakness.key_reuse.inter_environment": null,
+  "cryptographic_weakness.broken_cryptography": null,
+  "cryptographic_weakness.broken_cryptography.use_of_broken_cryptographic_primitive": null,
+  "cryptographic_weakness.broken_cryptography.use_of_vulnerable_cryptographic_library": null,
   "cryptographic_weakness.side_channel_attack": null,
   "cryptographic_weakness.side_channel_attack.padding_oracle_attack": null,
   "cryptographic_weakness.side_channel_attack.timing_attack": null,
@@ -331,9 +331,6 @@
   "cryptographic_weakness.side_channel_attack.differential_fault_analysis": null,
   "cryptographic_weakness.use_of_expired_cryptographic_key_or_cert": null,
   "cryptographic_weakness.incomplete_cleanup_of_keying_material": null,
-  "broken_cryptography": null,
-  "broken_cryptography.use_of_broken_cryptographic_primitive": null,
-  "broken_cryptography.use_of_vulnerable_cryptographic_library": null,
   "privacy_concerns": null,
   "privacy_concerns.unnecessary_data_collection": null,
   "privacy_concerns.unnecessary_data_collection.wifi_ssid_password": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=privacy_concerns:unnecessary_data_collection:wifi_ssid_password&redirect=true",
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index 87ea1a62..afc8873c 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1236,65 +1236,37 @@
         {
           "id": "idor",
           "name": "Insecure Direct Object References (IDOR)",
-          "type": "category",
+          "type": "subcategory",
           "children": [
             {
               "id": "read_edit_delete_non_sensitive_information",
               "name": "Read/Edit/Delete Non-Sensitive Information",
-              "type": "subcategory",
-              "priority": 5
-            },
-            {
-              "id": "read_edit_delete_sensitive_information",
-              "name": "Read/Edit/Delete Sensitive Information",
-              "type": "subcategory",
-              "children": [
-                {
-                  "id": "complext_object_identifiers",
-                  "name": "GUID/Complex Object Identifiers",
-                  "type": "variant",
-                  "priority": 4
-                }
-              ]
-            },
-            {
-              "id": "read_sensitive_information",
-              "name": "Read Sensitive Information",
-              "type": "subcategory",
-              "children": [
-                {
-                  "id": "iterable_object_identifiers",
-                  "name": "Iterable Object Identifiers",
-                  "type": "variant",
-                  "priority": 3
-                }
-              ]
-            },
-            {
-              "id": "edit_delete_sensitive_information",
-              "name": "Edit/Delete Sensitive Information",
-              "type": "subcategory",
-              "children": [
-                {
-                  "id": "iterable_object_identifiers",
-                  "name": "Iterable Object Identifiers",
-                  "type": "variant",
-                  "priority": 2
-                }
-              ]
-            },
-            {
-              "id": "edit_delete_sensitive_information",
-              "name": "Edit/Delete Sensitive Information",
-              "type": "subcategory",
-              "children": [
-                {
-                  "id": "read_edit_delete_sensitive_information_pii",
-                  "name": "Read/Edit/Delete Sensitive Information (PII)",
-                  "type": "variant",
-                  "priority": 1
-                }
-              ]
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "read_edit_delete_sensitive_information_guid",
+              "name": "Read/Edit/Delete Sensitive Information/Complex Object Identifiers(GUID)",
+              "type": "variant",
+              "priority": 4
+            },
+            {
+              "id": "read_sensitive_information_iterable_object_identifiers",
+              "name": "Read Sensitive Information/Iterable Object Identifiers",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "edit_delete_sensitive_information_iterable_object_identifiers",
+              "name": "Edit/Delete Sensitive Information/Iterable Object Identifiers",
+              "type": "variant",
+              "priority": 2
+            },
+            {
+              "id": "read_edit_delete_sensitive_information_iterable_object_identifiers",
+              "name": "Read/Edit/Delete Sensitive Information/Iterable Object Identifiers",
+              "type": "variant",
+              "priority": 1
             }
           ]
         },
@@ -2032,6 +2004,25 @@
             }
           ]
         },
+        {
+          "id": "broken_cryptography",
+          "name": "Broken Cryptography",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "use_of_broken_cryptographic_primitive",
+              "name": "Use of Broken Cryptographic Primitive",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "use_of_vulnerable_cryptographic_library",
+              "name": "Use of Vulnerable Cryptographic Library",
+              "type": "variant",
+              "priority": 4
+            }
+          ]
+        },
         {
           "id": "side_channel_attack",
           "name": "Side-Channel Attack",
@@ -2083,25 +2074,6 @@
         }
       ]
     },
-    {
-      "id": "broken_cryptography",
-      "name": "Broken Cryptography",
-      "type": "category",
-      "children": [
-        {
-          "id": "use_of_broken_cryptographic_primitive",
-          "name": "Use of Broken Cryptographic Primitive",
-          "type": "subcategory",
-          "priority": 3
-        },
-        {
-          "id": "use_of_vulnerable_cryptographic_library",
-          "name": "Use of Vulnerable Cryptographic Library",
-          "type": "subcategory",
-          "priority": 4
-        }
-      ]
-    },
     {
       "id": "privacy_concerns",
       "name": "Privacy Concerns",

From d88c73549d4e2d18148f0cfb063929bfff287ac2 Mon Sep 17 00:00:00 2001
From: Deepak Kumar Jha <Deepak.jha@bugcrowd.com>
Date: Mon, 20 Nov 2023 23:27:40 +0530
Subject: [PATCH 34/54] deprecated-node-json-fix (#397)

---
 deprecated-node-mapping.json | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/deprecated-node-mapping.json b/deprecated-node-mapping.json
index 5eae889c..a39f07c8 100644
--- a/deprecated-node-mapping.json
+++ b/deprecated-node-mapping.json
@@ -206,21 +206,21 @@
   "broken_cryptography.cryptographic_flaw.incorrect_usage": {
     "1.11": "other"
   },
-  "broken_cryptography.use_of_broken_cryptographic_primitive": {
-    "1.11": "cryptographic_weakness.broken_cryptography.use_of_broken_cryptographic_primitive"
-  },
-  "broken_cryptography.use_of_vulnerable_cryptographic_library": {
-    "1.11": "cryptographic_weakness.broken_cryptography.use_of_vulnerable_cryptographic_library"
-  },
-  "cross_site_scripting_xss.ie_only.older_version_ie11": {
+  "cross_site_scripting_xss.ie_only.ie_eleven": {
     "1.11": "other"
   },
+  "cross_site_scripting_xss.ie_only.older_version_ie_eleven": {
+    "1.11": "cross_site_scripting_xss.ie_only"
+  },
   "cross_site_scripting_xss.ie_only.xss_filter_disabled": {
     "1.11": "other"
   },
   "automotive_security_misconfiguration.infotainment_radio_head_unit.pii_leakage": {
     "1.11": "automotive_security_misconfiguration.infotainment_radio_head_unit.sensitive_data_leakage_exposure"
   },
+  "broken_access_control.server_side_request_forgery_ssrf": {
+    "1.11": "server_security_misconfiguration.server_side_request_forgery_ssrf"
+  },
   "broken_access_control.server_side_request_forgery_ssrf.internal_high_impact": {
     "1.11": "server_security_misconfiguration.server_side_request_forgery_ssrf.internal_high_impact"
   },

From 8e7a418de79018e5e1365440126ab59263340d18 Mon Sep 17 00:00:00 2001
From: Timmy <106584457+TimmyBugcrowd@users.noreply.github.com>
Date: Wed, 6 Dec 2023 14:10:17 +0100
Subject: [PATCH 35/54] AI Application Security(LLM) (#389)

* llm model added

* llm model added

* llm model added

* changelog.md and metadata release updated

---------

Co-authored-by: Deepak Kumar Jha <Deepak.jha@bugcrowd.com>
---
 CHANGELOG.md                                  |  8 +++
 mappings/cvss_v3/cvss_v3.json                 | 30 +++++++++++
 mappings/cwe/cwe.json                         |  4 ++
 .../remediation_advice.json                   | 39 ++++++++++++++
 vulnerability-rating-taxonomy.json            | 53 ++++++++++++++++++-
 5 files changed, 133 insertions(+), 1 deletion(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index be549c56..f037b994 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -10,6 +10,14 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 
 ### Changed
 
+## [v1.12](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.11...v1.12) - 2023-12-18
+### Added
+- Application Level DoS - Excessive Resource Consumption - Injection (Prompt) - VARIES
+- AI Application Security - Large Language Model (LLM) Security - Prompt Injection - P1
+- AI Application Security - Large Language Model (LLM) Security - LLM Output Handling - P1
+- AI Application Security - Large Language Model (LLM) Security - Training Data Poisoning - P1
+- AI Application Security - Large Language Model (LLM) Security - Excessive Agency/Permission Manipulation - P2
+
 ## [v1.11](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.10...v1.11) - 2023-11-20
 ### Added
 - Sensitive Data Exposure - Disclosure of Secrets - PII Leakage/Exposure: VARIES
diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index 2421aaf3..8e4dc8bc 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -709,6 +709,10 @@
         {
           "id": "app_crash",
           "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "excessive_resource_consumption",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H"
         }
       ]
     },
@@ -1245,6 +1249,32 @@
     {
       "id": "indicators_of_compromise",
       "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+    },
+    {
+      "id": "ai_application_security",
+      "children": [
+        {
+          "id": "llm_security",
+          "children": [
+            {
+              "id": "prompt_injection",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L"
+            },
+            {
+              "id": "llm_output_handling",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L"
+            },
+            {
+              "id": "training_data_poisoning",
+              "cvss_v3": "AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H"
+            },
+            {
+              "id": "excessive_agency_permission_manipulation",
+              "cvss_v3": "AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"
+            }
+          ]
+        }
+      ]
     }
   ]
 }
diff --git a/mappings/cwe/cwe.json b/mappings/cwe/cwe.json
index 804163fe..0da41d6e 100644
--- a/mappings/cwe/cwe.json
+++ b/mappings/cwe/cwe.json
@@ -388,6 +388,10 @@
         }
       ]
     },
+    {
+      "id": "ai_application_security",
+      "cwe": null
+    },
     {
       "id": "lack_of_binary_hardening",
       "cwe": ["CWE-693"]
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index e09bc36d..059605a5 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -1803,6 +1803,45 @@
         }
       ]
     },
+    {
+      "id": "ai_application_security",
+      "children": [
+        {
+          "id": "llm_security",
+          "children": [
+            {
+              "id": "prompt_injection",
+              "remediation_advice": "Implement robust input sanitization to prevent malicious or unintended prompt execution. Establish strict access controls and usage monitoring to detect and prevent unauthorized or anomalous interactions with the LLM. Regularly review and update the model's training data and algorithms to reduce vulnerabilities. Educate users and developers on safe interaction practices with AI systems.",
+              "references": [
+                "https://developer.nvidia.com/blog/securing-llm-systems-against-prompt-injection"
+              ]
+            },
+            {
+              "id": "llm_output_handling",
+              "remediation_advice": "Implement output filtering and validation to ensure the LLM's responses are appropriate and secure. Use context-aware controls to manage how the LLM processes and responds to various inputs. Regularly audit and update the LLM to handle new types of outputs and emerging security threats. Train users on the potential risks associated with LLM outputs, particularly in sensitive applications.",
+              "references": [
+                "https://whylabs.ai/blog/posts/safeguard-monitor-large-language-model-llm-applications"
+              ]
+            },
+            {
+              "id": "training_data_poisoning",
+              "remediation_advice": "Implement robust anomaly detection systems to identify and address poisoned data in real-time. Regularly retrain the LLM with clean, diverse, and representative datasets to correct any potential biases or vulnerabilities. Engage in continuous monitoring and auditing of the training process and data sources.",
+              "references": [
+                "https://owasp.org/www-project-top-10-for-large-language-model-applications/#:~:text=,security%2C%20accuracy%2C%20or%20ethical%20behavior",
+                "https://owasp.org/www-project-top-10-for-large-language-model-applications/Archive/0_1_vulns/Training_Data_Poisoning.html"
+              ]
+            },
+            {
+              "id": "excessive_agency_permission_manipulation",
+              "remediation_advice": "Implement stringent access controls and define clear user permissions for interacting with the LLM. Employ regular audits and monitoring to detect and prevent unauthorized or excessive permission changes. Use role-based access control systems to manage user permissions effectively. Educate users and administrators about the risks of permission manipulation and establish protocols for safely managing access rights.",
+              "references": [
+                "https://owasp.org/www-project-ai-security-and-privacy-guide/#:~:text=,auditability%2C%20bias%20countermeasures%20and%20oversight"
+              ]
+            }
+          ]
+        }
+      ]
+    },
     {
       "id": "indicators_of_compromise",
       "remediation_advice": ""
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index afc8873c..a835e6e5 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1,6 +1,6 @@
 {
   "metadata": {
-    "release_date": "2023-11-20T00:00:00+00:00"
+    "release_date": "2023-12-18T00:00:00+00:00"
   },
   "content": [
     {
@@ -1352,6 +1352,19 @@
       "name": "Application-Level Denial-of-Service (DoS)",
       "type": "category",
       "children": [
+        {
+          "id": "excessive_resource_consumption",
+          "name": "Excessive Resource Consumption",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "injection_prompt",
+              "name": "Injection (Prompt)",
+              "type": "variant",
+              "priority": null
+            }
+          ]
+        },
         {
           "id": "critical_impact_and_or_easy_difficulty",
           "name": "Critical Impact and/or Easy Difficulty",
@@ -2432,6 +2445,44 @@
         }
       ]
     },
+    {
+      "id": "ai_application_security",
+      "name": "AI Application Security",
+      "type": "category",
+      "children": [
+        {
+          "id": "llm_security",
+          "name": "Large Language Model (LLM) Security",
+          "type": "subcategory",
+          "children":[
+            {
+              "id": "prompt_injection",
+              "name": "Prompt Injection",
+              "type": "variant",
+              "priority": 1
+            },
+            {
+              "id": "llm_output_handling",
+              "name": "LLM Output Handling",
+              "type": "variant",
+              "priority": 1
+            },
+            {
+              "id": "training_data_poisoning",
+              "name": "Training Data Poisoning",
+              "type": "variant",
+              "priority": 1
+            },
+            {
+              "id": "excessive_agency_permission_manipulation",
+              "name": "Excessive Agency/Permission Manipulation",
+              "type": "variant",
+              "priority": 2
+            }
+          ]
+        }
+      ]
+    },
     {
       "id": "indicators_of_compromise",
       "name": "Indicators of Compromise",

From 10397d091891561b3289f84ee1848e884292a2e7 Mon Sep 17 00:00:00 2001
From: Deepak Kumar Jha <Deepak.jha@bugcrowd.com>
Date: Thu, 14 Dec 2023 04:40:18 +0530
Subject: [PATCH 36/54] SCW update for AI security (#401)

---
 .../remediation_training/secure-code-warrior-links.json   | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/third-party-mappings/remediation_training/secure-code-warrior-links.json b/third-party-mappings/remediation_training/secure-code-warrior-links.json
index 00f32d97..4015a883 100755
--- a/third-party-mappings/remediation_training/secure-code-warrior-links.json
+++ b/third-party-mappings/remediation_training/secure-code-warrior-links.json
@@ -216,6 +216,8 @@
   "cross_site_request_forgery_csrf.csrf_token_not_unique_per_request": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_request_forgery_csrf:csrf_token_not_unique_per_request&redirect=true",
   "cross_site_request_forgery_csrf.flash_based": null,
   "application_level_denial_of_service_dos": null,
+  "application_level_denial_of_service_dos.excessive_resource_consumption": null,
+  "application_level_denial_of_service_dos.excessive_resource_consumption.injection_prompt": null,
   "application_level_denial_of_service_dos.critical_impact_and_or_easy_difficulty": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=application_level_denial_of_service_dos:critical_impact_and_or_easy_difficulty&redirect=true",
   "application_level_denial_of_service_dos.high_impact_and_or_medium_difficulty": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=application_level_denial_of_service_dos:high_impact_and_or_medium_difficulty&redirect=true",
   "application_level_denial_of_service_dos.app_crash": null,
@@ -388,5 +390,11 @@
   "automotive_security_misconfiguration.abs.unintended_acceleration_brake": null,
   "automotive_security_misconfiguration.rsu": null,
   "automotive_security_misconfiguration.rsu.sybil_attack": null,
+  "ai_application_security": null,
+  "ai_application_security.llm_security": null,
+  "ai_application_security.llm_security.prompt_injection": null,
+  "ai_application_security.llm_security.llm_output_handling": null,
+  "ai_application_security.llm_security.training_data_poisoning": null,
+  "ai_application_security.llm_security.excessive_agency_permission_manipulation": null,
   "indicators_of_compromise": null
 }

From 6dbb653ded716fac1456be318eb86cb9a9b9269a Mon Sep 17 00:00:00 2001
From: Timmy <106584457+TimmyBugcrowd@users.noreply.github.com>
Date: Mon, 1 Apr 2024 15:41:32 +0200
Subject: [PATCH 37/54] VRT Addition - Hardware and Physical Security (#410)

* Update vulnerability-rating-taxonomy.json

* Update vulnerability-rating-taxonomy.json

* Update vulnerability-rating-taxonomy.json

* Update vulnerability-rating-taxonomy.json

* Update vulnerability-rating-taxonomy.json

* Update vulnerability-rating-taxonomy.json

* Update cvss_v3.json

* Update vulnerability-rating-taxonomy.json

* Update cvss_v3.json

* error fixes

* Update cvss_v3.json

* Update cvss_v3.json

* new-update

new-update

* Update secure-code-warrior-links.json

* Update secure-code-warrior-links.json

* new-update2

* new-update2

* Update cwe.json

* Update cwe.json

* Update cwe.json

* Update cwe.json

* Update remediation_advice.json

* Update remediation_advice.json

* Update remediation_advice.json

* Update remediation_advice.json

* Update remediation_advice.json

* Update remediation_advice.json

* SCW file added

---------

Co-authored-by: Bugcrowd <deepak.jha@bugcrowd.com>
---
 mappings/cvss_v3/cvss_v3.json                 |  94 ++++++++++++-
 mappings/cwe/cwe.json                         |  90 +++++++++++-
 .../remediation_advice.json                   |  90 +++++++++++-
 .../secure-code-warrior-links.json            |  23 ++-
 vulnerability-rating-taxonomy.json            | 132 +++++++++++++++++-
 5 files changed, 422 insertions(+), 7 deletions(-)

diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index 8e4dc8bc..6f2735f6 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -827,6 +827,32 @@
         }
       ]
     },
+    {
+    "id": "physical_security_issues",
+    "children": [
+      {
+        "id": "bypass_of_physical_access_control",
+        "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
+      },
+      {
+        "id": "weakness_in_physical_access_control",
+        "children": [
+          {
+            "id": "cloneable_key",
+            "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N"
+          },
+          {
+            "id": "master_key_identification",
+            "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
+          },
+          {
+            "id": "commonly_keyed_system",
+            "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N"
+          }
+        ]
+      }
+    ]
+  },
     {
       "id": "insecure_os_firmware",
       "children": [
@@ -846,9 +872,71 @@
               "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
             }
           ]
-        }
-      ]
-    },
+        },
+       {
+          "id": "weakness_in_firmware_updates",
+          "children": [
+            {
+              "id": "firmware_cannot_be_updated",
+              "cvss_v3": "AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"
+            },
+            {
+              "id": "firmware_does_not_validate_update_integrity",
+              "cvss_v3": "AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H"
+            },
+            {
+              "id": "firmware_is_not_encrypted",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+            }
+          ]
+        },      
+  {
+    "id": "kiosk_escape_or_breakout",
+    "cvss_v3": "AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L"
+  },
+  {
+    "id": "poorly_configured_disk_encryption",
+    "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
+  },
+  {
+    "id": "shared_credentials_on_storage",
+    "cvss_v3": "AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
+  },
+  {
+    "id": "over_permissioned_credentials_on_storage",
+    "cvss_v3": "AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
+  },
+  {
+    "id": "local_administrator_on_default_environment",
+    "cvss_v3": "AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"
+  },
+  {
+    "id": "poorly_configured_operating_system_security",
+    "cvss_v3": "AV:L/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L"
+  },
+  {
+    "id": "recovery_of_disk_contains_sensitive_material",
+    "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
+  },
+  {
+    "id": "failure_to_remove_sensitive_artifacts_from_disk",
+    "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+  },
+  {
+    "id": "data_not_encrypted_at_rest",
+    "children": [
+      {
+        "id": "non_sensitive",
+        "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
+      },
+      {
+        "id": "sensitive",
+        "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
+      }
+    ]
+  } 
+ ]
+},
     {
       "id": "cryptographic_weakness",
       "children": [
diff --git a/mappings/cwe/cwe.json b/mappings/cwe/cwe.json
index 0da41d6e..e7b953b6 100644
--- a/mappings/cwe/cwe.json
+++ b/mappings/cwe/cwe.json
@@ -415,6 +415,32 @@
         }
       ]
     },
+    {
+      "id": "physical_security_issues",
+      "children": [
+        {
+          "id": "bypass_of_physical_access_control",
+          "cwe": ["CWE-1300"]
+        },
+        {
+          "id": "weakness_in_physical_access_control",
+      "children": [
+        {
+          "id": "cloneable_key",
+          "cwe": ["CWE-1300"]          
+        },
+        {
+          "id": "master_key_identification",
+          "cwe": ["CWE-284"]          
+        },
+        {
+          "id": "commonly_keyed_system",
+          "cwe": ["CWE-284"]          
+        }        
+          ]
+        }        
+      ]
+    },
     {
       "id": "insecure_os_firmware",
       "children": [
@@ -425,7 +451,69 @@
         {
           "id": "hardcoded_password",
           "cwe": ["CWE-259"]
-        }
+        },
+        {
+          "id": "weakness_in_firmware_updates",
+      "children": [
+        {
+          "id": "firmware_cannot_be_updated",
+          "cwe": ["CWE-434"]
+        },
+        {
+          "id": "firmware_does_not_validate_update_integrity",
+          "cwe": ["CWE-434"]
+        },
+        {
+          "id": "firmware_is_not_encrypted",
+          "cwe": ["CWE-434"]
+        }                
+         ]
+        },
+        {
+          "id": "kiosk_escape_or_breakout",
+          "cwe": ["CWE-284"]
+        },
+        {
+          "id": "poorly_configured_disk_encryption",
+          "cwe": ["CWE-326"]
+        }, 
+        {
+          "id": "shared_credentials_on_storage",
+          "cwe": ["CWE-798"]
+        }, 
+        {
+          "id": "over_permissioned_credentials_on_storage",
+          "cwe": ["CWE-250"]
+        }, 
+        {
+          "id": "local_administrator_on_default_environment",
+          "cwe": ["CWE-276"]
+        }, 
+        {
+          "id": "poorly_configured_operating_system_security",
+          "cwe": ["CWE-16"]
+        }, 
+        {
+          "id": "recovery_of_disk_contains_sensitive_material",
+          "cwe": ["CWE-522"]
+        }, 
+        {
+          "id": "failure_to_remove_sensitive_artifacts_from_disk",
+          "cwe": ["CWE-459"]
+        },
+        {
+          "id": "data_not_encrypted_at_rest",
+      "children": [
+        {
+          "id": "sensitive",
+          "cwe": ["CWE-311"]
+        },
+        {
+          "id": "non_sensitive",
+          "cwe": ["CWE-311"]
+        }               
+         ]
+        }                                                                                 
       ]
     },
     {
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index 059605a5..0f45b455 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -1144,6 +1144,32 @@
         "https://www.owasp.org/index.php/Top_10_2010-A9-Insufficient_Transport_Layer_Protection"
       ]
     },
+    {
+      "id": "physical_security_issues",
+      "children": [
+        {
+          "id": "bypass_of_physical_access_control",
+          "remediation_advice": " "
+        },
+        {
+          "id": "weakness_in_physical_access_control",
+          "children": [
+            {
+              "id": "cloneable_key",
+              "remediation_advice": "The 2 most effective are interative locking elements (which can be defeated still by a skilled attacker) or usage of digital key systems such as Assa eCLIQ or Pulse"
+            },
+            {
+              "id": "commonly_keyed_system",
+              "remediation_advice": "Unique keys should be used on any system which intends to be secure, otherwise if keyed to a common key system, the risk needs to be accepted that the key could be obtained if the lock doesn't secure a secure component."
+            },
+            {
+              "id": "master_key_identification",
+              "remediation_advice": "While physical lock systems require the key material to be inside the lock, electonic access control systems can use cryptographicly strong key mechanisms which prevent the key material from being accessable on the device"
+            }
+          ]
+        }
+      ]
+    },
     {
       "id": "insecure_os_firmware",
       "children": [
@@ -1165,7 +1191,69 @@
             "https://www.owasp.org/index.php/Password_Management:_Hardcoded_Password",
             "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Password_Storage_Cheat_Sheet.md"
           ]
-        }
+        },
+        {
+          "id": "data_not_encrypted_at_rest",
+          "children": [
+            {
+              "id": "non_sensitive",
+              "remediation_advice": "Data within the device should be encrypted at rest, preventing the data from being viewable by a 3rd party attacker."
+            },
+            {
+              "id": "sensitive",
+              "remediation_advice": "Data within the device should be encrypted at rest, preventing the data from being viewable by a 3rd party attacker."
+            }
+          ]
+        },
+        {
+          "id": "failure_to_remove_sensitive_artifacts_from_disk",
+          "remediation_advice": "Implement robust deletion functions which not only reference to the data, but write over the existing data to prevent digital forensic methods of recovery"
+        },
+        {
+          "id": "kiosk_escape_or_breakout",
+          "remediation_advice": "1. Implement vigirous QA testing of applications prior to deployment\n2. Implement robust error logging and catching within the application to prevent crashes\n3. Initiate application restarts in the event of a application crash.\n4. Use Lower Privleged accounts with minimal permissions to lower the impact of a potential kiosk escape"
+        },
+        {
+          "id": "local_administrator_on_default_environment",
+          "remediation_advice": "The usage of Local Administrator accounts on a device is usually not nessicary for the operation, especially with embedded hardware and kiosks. Use of Lower Privleged accounts with minimal permissions and Jails lowers the impact if access by an attacker is acheved."
+        },
+        {
+          "id": "over_permissioned_credentials_on_storage",
+          "remediation_advice": "When provisioning credentials, strict scoping of the credentials to the resources required to operate reduce the impact of an exposure of those credentials."
+        },
+        {
+          "id": "poorly_configured_disk_encryption",
+          "remediation_advice": "1. Use of standard cryptographic libraries reduces the likelyhood of implementation vulnerabilities\n2. Verify your bootloader and encryption systems are up to date to avoid public exploits."
+        },
+        {
+          "id": "poorly_configured_operating_system_security",
+          "remediation_advice": "Following standards such as the NIST or ASD hardening guide allows you to identify known configuration issues and apply configuration changes to prevent this from being exploited further."
+        },
+        {
+          "id": "recovery_of_disk_contains_sensitive_material",
+          "remediation_advice": "Implement robust deletion functions which not only reference to the data, but write over the existing data to prevent digital forensic methods of recovery."
+        },
+        {
+          "id": "shared_credentials_on_storage",
+          "remediation_advice": "Credentials for shared services should be avoided where possible, they allow for a single breach to be escalated to effect an entire organisation. When provisioning a service credential, they should be unique per device and strict scoped to the resources required to operate, to reduce the impact of an exposure of those credentials"
+        },
+        {
+          "id": "weakness_in_firmware_updates",
+          "children": [
+            {
+              "id": "firmware_cannot_be_updated",
+              "remediation_advice": "Implement the ability for the firmware to be upgraded on a device, including an automatic update policy, which will allow for the patch of future security issues on the device."
+            },
+            {
+              "id": "firmware_does_not_validate_update_integrity",
+              "remediation_advice": "Implementation of firmware integrity checking using cryptographic signitures of a certificate is considered best practice, allowing the integrity of the firmware updates to be validated by the device prior to patching."
+            },
+            {
+              "id": "firmware_is_not_encrypted",
+              "remediation_advice": "Implementation of encryption for firmware updates allows for the update data to be protected during transit, and increases the time taken to reverse engineer the firmware used, and future security patches."
+            }
+          ]
+        }                
       ]
     },
     {
diff --git a/third-party-mappings/remediation_training/secure-code-warrior-links.json b/third-party-mappings/remediation_training/secure-code-warrior-links.json
index 4015a883..35198535 100755
--- a/third-party-mappings/remediation_training/secure-code-warrior-links.json
+++ b/third-party-mappings/remediation_training/secure-code-warrior-links.json
@@ -288,11 +288,32 @@
   "insecure_data_transport.executable_download": null,
   "insecure_data_transport.executable_download.no_secure_integrity_check": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_transport:executable_download:no_secure_integrity_check&redirect=true",
   "insecure_data_transport.executable_download.secure_integrity_check": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_transport:executable_download:secure_integrity_check&redirect=true",
+  "physical_security_issues": null,
+  "physical_security_issues.bypass_of_physical_access_control": null,
+  "physical_security_issues.weakness_in_physical_access_control": null,
+  "physical_security_issues.weakness_in_physical_access_control.cloneable_key": null,
+  "physical_security_issues.weakness_in_physical_access_control.master_key_identification": null,
+  "physical_security_issues.weakness_in_physical_access_control.commonly_keyed_system": null,
   "insecure_os_firmware": null,
   "insecure_os_firmware.command_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_os_firmware:command_injection&redirect=true",
   "insecure_os_firmware.hardcoded_password": null,
   "insecure_os_firmware.hardcoded_password.privileged_user": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_os_firmware:hardcoded_password:privileged_user&redirect=true",
   "insecure_os_firmware.hardcoded_password.non_privileged_user": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_os_firmware:hardcoded_password:non_privileged_user&redirect=true",
+  "insecure_os_firmware.weakness_in_firmware_updates": null,
+  "insecure_os_firmware.weakness_in_firmware_updates.firmware_cannot_be_updated": null,
+  "insecure_os_firmware.weakness_in_firmware_updates.firmware_does_not_validate_update_integrity": null,
+  "insecure_os_firmware.weakness_in_firmware_updates.firmware_is_not_encrypted": null,
+  "insecure_os_firmware.kiosk_escape_or_breakout": null,
+  "insecure_os_firmware.poorly_configured_disk_encryption": null,
+  "insecure_os_firmware.shared_credentials_on_storage": null,
+  "insecure_os_firmware.over_permissioned_credentials_on_storage": null,
+  "insecure_os_firmware.local_administrator_on_default_environment": null,
+  "insecure_os_firmware.poorly_configured_operating_system_security": null,
+  "insecure_os_firmware.recovery_of_disk_contains_sensitive_material": null,
+  "insecure_os_firmware.failure_to_remove_sensitive_artifacts_from_disk": null,
+  "insecure_os_firmware.data_not_encrypted_at_rest": null,
+  "insecure_os_firmware.data_not_encrypted_at_rest.sensitive": null,
+  "insecure_os_firmware.data_not_encrypted_at_rest.non_sensitive": null,
   "cryptographic_weakness": null,
   "cryptographic_weakness.insufficient_entropy": null,
   "cryptographic_weakness.insufficient_entropy.limited_rng_entropy_source": null,
@@ -397,4 +418,4 @@
   "ai_application_security.llm_security.training_data_poisoning": null,
   "ai_application_security.llm_security.excessive_agency_permission_manipulation": null,
   "indicators_of_compromise": null
-}
+}
\ No newline at end of file
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index a835e6e5..87dbc846 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1806,6 +1806,44 @@
         }
       ]
     },
+    {
+  "id": "physical_security_issues",
+  "name": "Physical Security Issues",
+  "type": "category",
+  "children": [
+    {
+      "id": "bypass_of_physical_access_control",
+      "name": "Bypass of physical access control",
+      "type": "subcategory",
+      "priority": null
+    },
+    {
+      "id": "weakness_in_physical_access_control",
+      "name": "Weakness in physical access control",
+      "type": "subcategory",
+      "children": [
+        {
+          "id": "cloneable_key",
+          "name": "Cloneable Key",
+          "type": "variant",
+          "priority": null
+        },
+        {
+          "id": "master_key_identification",
+          "name": "Master Key Identification",
+          "type": "variant",
+          "priority": null
+        },
+        {
+          "id": "commonly_keyed_system",
+          "name": "Commonly Keyed System",
+          "type": "variant",
+          "priority": 2
+        }
+      ]
+    }
+  ]
+},
     {
       "id": "insecure_os_firmware",
       "name": "Insecure OS/Firmware",
@@ -1835,7 +1873,99 @@
               "priority": 2
             }
           ]
-        }
+        },
+         {
+          "id": "weakness_in_firmware_updates",
+          "name": "Weakness in Firmware Updates",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "firmware_cannot_be_updated",
+              "name": "Firmware cannot be updated",
+              "type": "variant",
+              "priority": null
+            },
+            {
+              "id": "firmware_does_not_validate_update_integrity",
+              "name": "Firmware does not validate update integrity",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "firmware_is_not_encrypted",
+              "name": "Firmware is not encrypted",
+              "type": "variant",
+              "priority": 5
+            }                        
+      ]
+    },
+          {
+          "id": "kiosk_escape_or_breakout",
+          "name": "Kiosk Escape or Breakout",
+          "type": "subcategory",
+          "priority": null
+        },
+          {
+          "id": "poorly_configured_disk_encryption",
+          "name": "Poorly Configured Disk Encryption",
+          "type": "subcategory",
+          "priority": null
+        },
+          {
+          "id": "shared_credentials_on_storage",
+          "name": "Shared Credentials on Storage",
+          "type": "subcategory",
+          "priority": 3
+        },
+          {
+          "id": "over_permissioned_credentials_on_storage",
+          "name": "Over-Permissioned Credentials on Storage",
+          "type": "subcategory",
+          "priority": 2
+        },       
+          {
+          "id": "local_administrator_on_default_environment",
+          "name": "Local Administrator on default environment",
+          "type": "subcategory",
+          "priority": 2
+        },
+          {
+          "id": "poorly_configured_operating_system_security",
+          "name": "Poorly Configured Operating System Security",
+          "type": "subcategory",
+          "priority": null
+        },
+          {
+          "id": "recovery_of_disk_contains_sensitive_material",
+          "name": "Recovery of Disk Contains Sensitive Material",
+          "type": "subcategory",
+          "priority": null
+        },
+          {
+          "id": "failure_to_remove_sensitive_artifacts_from_disk",
+          "name": "Failure to Remove Sensitive Artifacts from Disk",
+          "type": "subcategory",
+          "priority": null
+        },
+         {
+          "id": "data_not_encrypted_at_rest",
+          "name": "Data not encrypted at rest",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "sensitive",
+              "name": "Sensitive",
+              "type": "variant",
+              "priority": null
+            },
+            {
+              "id": "non_sensitive",
+              "name": "Non sensitive",
+              "type": "variant",
+              "priority": 5
+            }                       
+          ]
+        }                     
       ]
     },
     {

From c39d933556053fb433fe4d0a98a3213720f737f4 Mon Sep 17 00:00:00 2001
From: Abhinav Nain <156283939+abhinav-nain@users.noreply.github.com>
Date: Wed, 3 Apr 2024 15:37:57 +0530
Subject: [PATCH 38/54] Adding Changelog and Release Date (#411)

---
 CHANGELOG.md                       | 20 ++++++++++++++++++++
 vulnerability-rating-taxonomy.json |  2 +-
 2 files changed, 21 insertions(+), 1 deletion(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index f037b994..d7685c95 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -10,6 +10,26 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 
 ### Changed
 
+## [v1.13](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.12...v1.13) - 2024-04-02
+### Added
+- Physical Security Issues - Bypass of physical access control - VARIES
+- Physical Security Issues - Weakness in physical access control - Clonable Key - VARIES
+- Physical Security Issues - Weakness in physical access control - Master Key Identification - VARIES
+- Physical Security Issues - Weakness in physical access control - Commonly Keyed System - P2
+- Insecure OS/Firmware - Weakness in Firmware Updates - Firmware cannot be updated - VARIES
+- Insecure OS/Firmware - Weakness in Firmware Updates - Firmware does not validate update integrity- P3
+- Insecure OS/Firmware - Weakness in Firmware Updates - Firmware is not encrypted- P5
+- Insecure OS/Firmware - Kiosk Escape or Breakout - VARIES
+- Insecure OS/Firmware - Poorly Configured Disk Encryption - VARIES
+- Insecure OS/Firmware - Shared Credentials on Storage - P3
+- Insecure OS/Firmware - Over-Permissioned Credentials on Storage - P2
+- Insecure OS/Firmware - Local Administrator on default environment - P2
+- Insecure OS/Firmware - Poorly Configured Operating System Security - VARIES
+- Insecure OS/Firmware - Recovery of Disk Contains Sensitive Material - VARIES
+- Insecure OS/Firmware - Failure to Remove Sensitive Artifacts from Disk - VARIES
+- Insecure OS/Firmware - Data not encrypted at rest - Sensitive - VARIES
+- Insecure OS/Firmware - Data not encrypted at rest - Non sensitive - P5
+
 ## [v1.12](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.11...v1.12) - 2023-12-18
 ### Added
 - Application Level DoS - Excessive Resource Consumption - Injection (Prompt) - VARIES
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index 87dbc846..bed03ede 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1,6 +1,6 @@
 {
   "metadata": {
-    "release_date": "2023-12-18T00:00:00+00:00"
+    "release_date": "2024-04-02T00:00:00+00:00"
   },
   "content": [
     {

From 206c4b0f0e7001c2df1350662b327b7f758efa5e Mon Sep 17 00:00:00 2001
From: Timmy <106584457+TimmyBugcrowd@users.noreply.github.com>
Date: Thu, 4 Jul 2024 17:35:34 +0200
Subject: [PATCH 39/54] Biases entries (#416)

* Biases entries

* Update vulnerability-rating-taxonomy.json

* * Fixing Indentation in JSONs
* Fixing cvss_v3 file
* Adding secure-code-warrior-links.json

* * Fixing mixup of entries in remediation_advice.json

* Adding CVSS Fix

* Modifying tests and Python Upgrade

* Reverting changes

* Fixing CWE Mapping in JSON

---------

Co-authored-by: Abhinav Nain <abhinav.nain@bugcrowd.com>
---
 .github/workflows/validate_artifacts.yml      |   4 +-
 .github/workflows/validate_vrt.yml            |   4 +-
 Dockerfile                                    |   8 +-
 lib/tests/test_vrt.py                         |  15 +-
 mappings/cvss_v3/cvss_v3.json                 | 205 +++++++++++-------
 mappings/cwe/cwe.json                         |  62 ++++++
 .../remediation_advice.json                   | 140 ++++++++++--
 .../secure-code-warrior-links.json            |  13 ++
 vulnerability-rating-taxonomy.json            | 165 ++++++++++----
 9 files changed, 474 insertions(+), 142 deletions(-)

diff --git a/.github/workflows/validate_artifacts.yml b/.github/workflows/validate_artifacts.yml
index 9cf7b57a..3600f388 100644
--- a/.github/workflows/validate_artifacts.yml
+++ b/.github/workflows/validate_artifacts.yml
@@ -16,10 +16,10 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v1
-      - name: Set up Python 3.7
+      - name: Set up Python 3.11
         uses: actions/setup-python@v1
         with:
-          python-version: 3.7
+          python-version: 3.11
       - name: Install dependencies
         run: |
           python -m pip install --upgrade pip
diff --git a/.github/workflows/validate_vrt.yml b/.github/workflows/validate_vrt.yml
index 7b8378f3..bfa189dc 100644
--- a/.github/workflows/validate_vrt.yml
+++ b/.github/workflows/validate_vrt.yml
@@ -9,10 +9,10 @@ jobs:
 
     steps:
     - uses: actions/checkout@v1
-    - name: Set up Python 3.7
+    - name: Set up Python 3.11
       uses: actions/setup-python@v1
       with:
-        python-version: 3.7
+        python-version: 3.11
     - name: Install dependencies
       run: |
         python -m pip install --upgrade pip
diff --git a/Dockerfile b/Dockerfile
index 8824a941..f0da0ce0 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,6 +1,8 @@
-FROM python:3.6
-
-RUN pip install jsonschema GitPython semantic_version
+FROM python:3.11
 
 WORKDIR /tmp/vrt
+ADD . /tmp/vrt
+
+RUN pip install -r lib/requirements.txt
+
 CMD [ "python3", "-B" , "./lib/validate_vrt.py" ]
diff --git a/lib/tests/test_vrt.py b/lib/tests/test_vrt.py
index ea78802f..66976d16 100644
--- a/lib/tests/test_vrt.py
+++ b/lib/tests/test_vrt.py
@@ -7,6 +7,8 @@
 
 class TestVrt(unittest.TestCase):
     def setUp(self):
+        print("\n`---{}---`".format(self._testMethodName))
+        self.vrt = utils.get_json(utils.VRT_FILENAME)
         self.mappings = [
             { 'filename': f, 'name': os.path.splitext(os.path.basename(f))[0] }
             for f in glob.glob(utils.MAPPING_DIR + '/**/*.json', recursive=True) if 'schema' not in f
@@ -43,19 +45,22 @@ def test_mapping_schemas(self):
             self.validate_schema(schema_file, mapping['filename'])
 
     def all_vrt_ids_have_mapping(self, mappping_filename, key):
-        vrt = utils.get_json(utils.VRT_FILENAME)
         mapping = utils.get_json(mappping_filename)
         keyed_mapping = utils.key_by_id(mapping['content'])
-        for vrt_id_list in utils.all_id_lists(vrt, include_internal=False):
-            self.assertTrue(utils.has_mapping(keyed_mapping, vrt_id_list, key),
-                                'no ' + key + ' mapping for ' + '.'.join(vrt_id_list))
+        for vrt_id_list in utils.all_id_lists(self.vrt, include_internal=False):
+            result = utils.has_mapping(keyed_mapping, vrt_id_list, key)
+            if key == 'cwe' and not result:
+                print('WARNING: no ' + key + ' mapping for ' + '.'.join(vrt_id_list))
+            else:
+                self.assertTrue(utils.has_mapping(keyed_mapping, vrt_id_list, key),
+                                    'no ' + key + ' mapping for ' + '.'.join(vrt_id_list))
 
     def test_all_vrt_ids_have_all_mappings(self):
         for mapping in self.mappings:
             self.all_vrt_ids_have_mapping(mapping['filename'], mapping['name'])
 
     def only_map_valid_ids(self, mapping_filename):
-        vrt_ids = utils.all_id_lists(utils.get_json(utils.VRT_FILENAME))
+        vrt_ids = utils.all_id_lists(self.vrt)
         mapping_ids = utils.all_id_lists(utils.get_json(mapping_filename))
         for id_list in mapping_ids:
             self.assertIn(id_list, vrt_ids, 'invalid id in ' + mapping_filename + ' - ' + '.'.join(id_list))
diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index 6f2735f6..56e6611f 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -447,6 +447,63 @@
         }
       ]
     },
+    {
+      "id": "data_biases",
+      "children": [
+        {
+          "id": "representation_bias",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
+        },
+        {
+          "id": "pre_existing_bias",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
+        }
+      ]
+    },
+    {
+      "id": "algorithmic_biases",
+      "children": [
+        {
+          "id": "processing_bias",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
+        },
+        {
+          "id": "aggregation_bias",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
+        }
+      ]
+    },
+    {
+      "id": "societal_biases",
+      "children": [
+        {
+          "id": "confirmation_bias",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"
+        },
+        {
+          "id": "systemic_bias",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
+        }
+      ]
+    },
+    {
+      "id": "misinterpretation_biases",
+      "children": [
+        {
+          "id": "context_ignorance",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"
+        }
+      ]
+    },
+    {
+      "id": "developer_biases",
+      "children": [
+        {
+          "id": "implicit_bias",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:N"
+        }
+      ]
+    },
     {
       "id": "sensitive_data_exposure",
       "children": [
@@ -828,31 +885,31 @@
       ]
     },
     {
-    "id": "physical_security_issues",
-    "children": [
-      {
-        "id": "bypass_of_physical_access_control",
-        "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
-      },
-      {
-        "id": "weakness_in_physical_access_control",
-        "children": [
-          {
-            "id": "cloneable_key",
-            "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N"
-          },
-          {
-            "id": "master_key_identification",
-            "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
-          },
-          {
-            "id": "commonly_keyed_system",
-            "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N"
-          }
-        ]
-      }
-    ]
-  },
+      "id": "physical_security_issues",
+      "children": [
+        {
+          "id": "bypass_of_physical_access_control",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
+        },
+        {
+          "id": "weakness_in_physical_access_control",
+          "children": [
+            {
+              "id": "cloneable_key",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N"
+            },
+            {
+              "id": "master_key_identification",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
+            },
+            {
+              "id": "commonly_keyed_system",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N"
+            }
+          ]
+        }
+      ]
+    },
     {
       "id": "insecure_os_firmware",
       "children": [
@@ -873,7 +930,7 @@
             }
           ]
         },
-       {
+        {
           "id": "weakness_in_firmware_updates",
           "children": [
             {
@@ -889,54 +946,54 @@
               "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
             }
           ]
-        },      
-  {
-    "id": "kiosk_escape_or_breakout",
-    "cvss_v3": "AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L"
-  },
-  {
-    "id": "poorly_configured_disk_encryption",
-    "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
-  },
-  {
-    "id": "shared_credentials_on_storage",
-    "cvss_v3": "AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
-  },
-  {
-    "id": "over_permissioned_credentials_on_storage",
-    "cvss_v3": "AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
-  },
-  {
-    "id": "local_administrator_on_default_environment",
-    "cvss_v3": "AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"
-  },
-  {
-    "id": "poorly_configured_operating_system_security",
-    "cvss_v3": "AV:L/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L"
-  },
-  {
-    "id": "recovery_of_disk_contains_sensitive_material",
-    "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
-  },
-  {
-    "id": "failure_to_remove_sensitive_artifacts_from_disk",
-    "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
-  },
-  {
-    "id": "data_not_encrypted_at_rest",
-    "children": [
-      {
-        "id": "non_sensitive",
-        "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
-      },
-      {
-        "id": "sensitive",
-        "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
-      }
-    ]
-  } 
- ]
-},
+        },
+        {
+          "id": "kiosk_escape_or_breakout",
+          "cvss_v3": "AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L"
+        },
+        {
+          "id": "poorly_configured_disk_encryption",
+          "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
+        },
+        {
+          "id": "shared_credentials_on_storage",
+          "cvss_v3": "AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
+        },
+        {
+          "id": "over_permissioned_credentials_on_storage",
+          "cvss_v3": "AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
+        },
+        {
+          "id": "local_administrator_on_default_environment",
+          "cvss_v3": "AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"
+        },
+        {
+          "id": "poorly_configured_operating_system_security",
+          "cvss_v3": "AV:L/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L"
+        },
+        {
+          "id": "recovery_of_disk_contains_sensitive_material",
+          "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
+        },
+        {
+          "id": "failure_to_remove_sensitive_artifacts_from_disk",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+        },
+        {
+          "id": "data_not_encrypted_at_rest",
+          "children": [
+            {
+              "id": "non_sensitive",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "sensitive",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
+            }
+          ]
+        }
+      ]
+    },
     {
       "id": "cryptographic_weakness",
       "children": [
diff --git a/mappings/cwe/cwe.json b/mappings/cwe/cwe.json
index e7b953b6..1866223c 100644
--- a/mappings/cwe/cwe.json
+++ b/mappings/cwe/cwe.json
@@ -751,6 +751,68 @@
     {
       "id": "indicators_of_compromise",
       "cwe": null
+    },
+    {
+      "id": "data_biases",
+      "cwe": null,
+      "children": [
+        {
+          "id": "representation_bias",
+          "cwe": null
+        },
+        {
+          "id": "pre_existing_bias",
+          "cwe": null
+        }
+      ]
+    },
+    {
+      "id": "algorithmic_biases",
+      "cwe": null,
+      "children": [
+        {
+          "id": "processing_bias",
+          "cwe": null
+        },
+        {
+          "id": "aggregation_bias",
+          "cwe": null
+        }
+      ]
+    },
+    {
+      "id": "societal_biases",
+      "cwe": null,
+      "children": [
+        {
+          "id": "confirmation_bias",
+          "cwe": null
+        },
+        {
+          "id": "systemic_bias",
+          "cwe": null
+        }
+      ]
+    },
+    {
+      "id": "misinterpretation_biases",
+      "cwe": null,
+      "children": [
+        {
+          "id": "context_ignorance",
+          "cwe": null
+        }
+      ]
+    },
+    {
+      "id": "developer_biases",
+      "cwe": null,
+      "children": [
+        {
+          "id": "implicit_bias",
+          "cwe": null
+        }
+      ]
     }
   ]
 }
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index 0f45b455..ffe20d61 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -1,7 +1,10 @@
 {
   "metadata": {
     "default": null,
-    "keys": ["remediation_advice", "references"]
+    "keys": [
+      "remediation_advice",
+      "references"
+    ]
   },
   "content": [
     {
@@ -56,7 +59,9 @@
         {
           "id": "same_site_scripting",
           "remediation_advice": "As a best practice, do not resolve targets or hostnames to 127.0.0.1 or similar addresses.",
-          "references": ["http://seclists.org/bugtraq/2008/Jan/270"]
+          "references": [
+            "http://seclists.org/bugtraq/2008/Jan/270"
+          ]
         },
         {
           "id": "ssl_attack_breach_poodle_etc",
@@ -104,7 +109,9 @@
             {
               "id": "missing_caa_record",
               "remediation_advice": "As the domain name holder you can modify the DNS zone file to specify one or more Certification Authorities (CAs) authorized to issue certificates for that domain.",
-              "references": ["https://tools.ietf.org/html/rfc6844"]
+              "references": [
+                "https://tools.ietf.org/html/rfc6844"
+              ]
             }
           ]
         },
@@ -163,7 +170,9 @@
             {
               "id": "excessively_privileged_user_dba",
               "remediation_advice": "Ensure that the current DBMS session user has the least amount of privilege necessary.",
-              "references": ["https://www.owasp.org/index.php/Least_privilege"]
+              "references": [
+                "https://www.owasp.org/index.php/Least_privilege"
+              ]
             }
           ]
         },
@@ -241,7 +250,9 @@
         {
           "id": "cookie_scoped_to_parent_domain",
           "remediation_advice": "If possible do not set the domain for the session cookie. If domain is not set, so by default, the cookie will be a host only cookie, meaning accessible explicitly to the domain from which it was set.",
-          "references": ["https://tools.ietf.org/html/rfc6265"]
+          "references": [
+            "https://tools.ietf.org/html/rfc6265"
+          ]
         },
         {
           "id": "missing_secure_or_httponly_cookie_flag",
@@ -287,7 +298,9 @@
             {
               "id": "account_takeover",
               "remediation_advice": "Ensure correct implementation of OAuth protocol in order to protect client secrets and tokens, and provide secure access controls.",
-              "references": ["https://tools.ietf.org/html/rfc6819"]
+              "references": [
+                "https://tools.ietf.org/html/rfc6819"
+              ]
             },
             {
               "id": "account_squatting",
@@ -525,7 +538,9 @@
         {
           "id": "bitsquatting",
           "remediation_advice": "As a best practice, consider registering any potential bitsquatting domain names.",
-          "references": ["http://dinaburg.org/bitsquatting.html"]
+          "references": [
+            "http://dinaburg.org/bitsquatting.html"
+          ]
         }
       ]
     },
@@ -615,7 +630,9 @@
             {
               "id": "external_authentication_injection",
               "remediation_advice": "Even if unsafe HTML tags like `<script>` or `<iframe>` are filtered out from user input, it is possible to inject `HTTP 401` authentication prompt into a HTML page via tags like `<img>`. In order to prevent this type of injection consider the following solutions:\n\n1. Always treat all user input as untrusted data.\n2. Always input or output encode all data coming into or out of the application.\n3. Always whitelist allowed characters and seldom use blacklisting of characters unless in certain use cases.\n4. Always use a well known and security encoding API for input and output encoding such as the `OWASP ESAPI`.\n5. Never try to write input and output encoders unless absolutely necessary. Chances are that someone has already written a good one.",
-              "references": ["https://www.exploit-db.com/papers/12898/"]
+              "references": [
+                "https://www.exploit-db.com/papers/12898/"
+              ]
             },
             {
               "id": "flash_based_external_authentication_injection",
@@ -839,14 +856,18 @@
             {
               "id": "oauth_secret",
               "remediation_advice": "Consider using OAuth Implicit Grant to avoid hardcoding the OAuth secret key within the application.",
-              "references": ["https://tools.ietf.org/html/rfc6749#section-4.2"]
+              "references": [
+                "https://tools.ietf.org/html/rfc6749#section-4.2"
+              ]
             }
           ]
         },
         {
           "id": "xssi",
           "remediation_advice": "1. Avoid placing sensitive content inside JavaScript files, and also not in `JSONP`.\n2. Consider using a CSRF token.\n3. Sensitive scripts should only respond to POST requests.\n4. Append some non-executable prefix to the response body.\n5. Usage of the response header `X-Content-Type-Options: nosniff` and usage of the correct `Content-Type` is also helpful in reducing the chance of XSSI.",
-          "references": ["https://www.scip.ch/en/?labs.20160414"]
+          "references": [
+            "https://www.scip.ch/en/?labs.20160414"
+          ]
         },
         {
           "id": "json_hijacking",
@@ -878,7 +899,9 @@
         {
           "id": "trace_method",
           "remediation_advice": "As the TRACE method can be utilized to bypass certain protections, consider disabling the HTTP method TRACE.",
-          "references": ["https://www.owasp.org/index.php/Cross_Site_Tracing"]
+          "references": [
+            "https://www.owasp.org/index.php/Cross_Site_Tracing"
+          ]
         }
       ]
     },
@@ -1253,7 +1276,7 @@
               "remediation_advice": "Implementation of encryption for firmware updates allows for the update data to be protected during transit, and increases the time taken to reverse engineer the firmware used, and future security patches."
             }
           ]
-        }                
+        }
       ]
     },
     {
@@ -1363,7 +1386,9 @@
             {
               "id": "use_of_predictable_salt",
               "remediation_advice": "When a hash is computing using a predictable salt, the protections afforded by the salt are diminished, leaving the hash vulnerable to rainbow table attacks.  Always use a unique and randomly-generated value for the salt, and ensure the length of the salt (in terms of bits) is sufficiently large to prevent brute force attacks.  As a general rule, salts used in cryptographic operations should be at least 8 bytes (64 bits) in length.",
-              "references": ["https://www.rfc-editor.org/rfc/rfc2898#page-7"]
+              "references": [
+                "https://www.rfc-editor.org/rfc/rfc2898#page-7"
+              ]
             },
             {
               "id": "predictable_hash_collision",
@@ -1594,7 +1619,9 @@
         {
           "id": "tapjacking",
           "remediation_advice": "Ensure that the setting filterTouchesWhenObscured is set to true, or that the method onFilterTouchEventForSecurity() is implemented in your app.",
-          "references": ["https://blog.devknox.io/tapjacking-android-prevent/"]
+          "references": [
+            "https://blog.devknox.io/tapjacking-android-prevent/"
+          ]
         },
         {
           "id": "clipboard_enabled",
@@ -1885,7 +1912,9 @@
             {
               "id": "sybil_attack",
               "remediation_advice": "Known approaches to Sybil attack prevention include identity validation, social trust graph algorithms, or economic costs, personhood validation, and application-specific defenses.",
-              "references": ["https://en.wikipedia.org/wiki/Sybil_attack"]
+              "references": [
+                "https://en.wikipedia.org/wiki/Sybil_attack"
+              ]
             }
           ]
         }
@@ -1933,6 +1962,87 @@
     {
       "id": "indicators_of_compromise",
       "remediation_advice": ""
+    },
+    {
+      "id": "data_biases",
+      "children": [
+        {
+          "id": "representation_bias",
+          "remediation_advice": "Diversify data sources and ensure the dataset represents all relevant groups proportionally to prevent skewing model outcomes.",
+          "references": [
+            "https://fairmlbook.org"
+          ]
+        },
+        {
+          "id": "pre_existing_bias",
+          "remediation_advice": "Identify and correct biases in the data collection phase, and review historical data for any inherent biases that could affect outcomes.",
+          "references": [
+            "https://ai.google/responsibilities/responsible-ai-practices/"
+          ]
+        }
+      ]
+    },
+    {
+      "id": "algorithmic_biases",
+      "children": [
+        {
+          "id": "processing_bias",
+          "remediation_advice": "Design algorithms to process all data fairly, implementing checks to detect and mitigate biases that arise during data processing.",
+          "references": [
+            "https://paperswithcode.com/task/fairness-in-ml"
+          ]
+        },
+        {
+          "id": "aggregation_bias",
+          "remediation_advice": "Ensure that data aggregation methods maintain the integrity of subgroups, preventing dilution of minority data.",
+          "references": [
+            "https://www.microsoft.com/en-us/ai/responsible-ai-resources"
+          ]
+        }
+      ]
+    },
+    {
+      "id": "societal_biases",
+      "children": [
+        {
+          "id": "confirmation_bias",
+          "remediation_advice": "Promote a culture of critical thinking and questioning in analysis to avoid confirming pre-existing beliefs or hypotheses.",
+          "references": [
+            "https://hbr.org/2019/05/the-problem-with-confirmation-bias"
+          ]
+        },
+        {
+          "id": "systemic_bias",
+          "remediation_advice": "Review and reform policies and practices that lead to unfair advantages or disadvantages for specific groups across systems.",
+          "references": [
+            "https://www.brookings.edu/research/how-to-combat-systemic-bias/"
+          ]
+        }
+      ]
+    },
+    {
+      "id": "misinterpretation_biases",
+      "children": [
+        {
+          "id": "context_ignorance",
+          "remediation_advice": "Include contextual information in the analysis and interpretation phases to avoid misinterpreting data or trends.",
+          "references": [
+            "https://contextualscience.org/contextualism"
+          ]
+        }
+      ]
+    },
+    {
+      "id": "developer_biases",
+      "children": [
+        {
+          "id": "implicit_bias",
+          "remediation_advice": "Implement training programs to raise awareness and reduce the impact of unconscious biases among developers.",
+          "references": [
+            "https://implicit.harvard.edu/implicit/takeatest.html"
+          ]
+        }
+      ]
     }
   ]
 }
diff --git a/third-party-mappings/remediation_training/secure-code-warrior-links.json b/third-party-mappings/remediation_training/secure-code-warrior-links.json
index 35198535..9247bf20 100755
--- a/third-party-mappings/remediation_training/secure-code-warrior-links.json
+++ b/third-party-mappings/remediation_training/secure-code-warrior-links.json
@@ -288,6 +288,19 @@
   "insecure_data_transport.executable_download": null,
   "insecure_data_transport.executable_download.no_secure_integrity_check": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_transport:executable_download:no_secure_integrity_check&redirect=true",
   "insecure_data_transport.executable_download.secure_integrity_check": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_transport:executable_download:secure_integrity_check&redirect=true",
+  "data_biases": null,
+  "data_biases.representation_bias": null,
+  "data_biases.pre_existing_bias": null,
+  "algorithmic_biases": null,
+  "algorithmic_biases.processing_bias": null,
+  "algorithmic_biases.aggregation_bias": null,
+  "societal_biases": null,
+  "societal_biases.confirmation_bias": null,
+  "societal_biases.systemic_bias": null,
+  "misinterpretation_biases": null,
+  "misinterpretation_biases.context_ignorance": null,
+  "developer_biases": null,
+  "developer_biases.implicit_bias": null,
   "physical_security_issues": null,
   "physical_security_issues.bypass_of_physical_access_control": null,
   "physical_security_issues.weakness_in_physical_access_control": null,
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index bed03ede..07aad2cb 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1807,43 +1807,126 @@
       ]
     },
     {
-  "id": "physical_security_issues",
-  "name": "Physical Security Issues",
-  "type": "category",
-  "children": [
+      "id": "data_biases",
+      "name": "Data Biases",
+      "type": "category",
+      "children": [
+        {
+          "id": "representation_bias",
+          "name": "Representation Bias",
+          "type": "subcategory",
+          "priority": null
+        },
+        {
+          "id": "pre_existing_bias",
+          "name": "Pre-existing Bias",
+          "type": "subcategory",
+          "priority": null
+        }
+      ]
+    },
     {
-      "id": "bypass_of_physical_access_control",
-      "name": "Bypass of physical access control",
-      "type": "subcategory",
-      "priority": null
+      "id": "algorithmic_biases",
+      "name": "Algorithmic Biases",
+      "type": "category",
+      "children": [
+        {
+          "id": "processing_bias",
+          "name": "Processing Bias",
+          "type": "subcategory",
+          "priority": null
+        },
+        {
+          "id": "aggregation_bias",
+          "name": "Aggregation Bias",
+          "type": "subcategory",
+          "priority": null
+        }
+      ]
     },
     {
-      "id": "weakness_in_physical_access_control",
-      "name": "Weakness in physical access control",
-      "type": "subcategory",
+      "id": "societal_biases",
+      "name": "Societal Biases",
+      "type": "category",
       "children": [
         {
-          "id": "cloneable_key",
-          "name": "Cloneable Key",
-          "type": "variant",
+          "id": "confirmation_bias",
+          "name": "Confirmation Bias",
+          "type": "subcategory",
           "priority": null
         },
         {
-          "id": "master_key_identification",
-          "name": "Master Key Identification",
-          "type": "variant",
+          "id": "systemic_bias",
+          "name": "Systemic Bias",
+          "type": "subcategory",
+          "priority": null
+        }
+      ]
+    },
+    {
+      "id": "misinterpretation_biases",
+      "name": "Misinterpretation Biases",
+      "type": "category",
+      "children": [
+        {
+          "id": "context_ignorance",
+          "name": "Context Ignorance",
+          "type": "subcategory",
+          "priority": null
+        }
+      ]
+    },
+    {
+      "id": "developer_biases",
+      "name": "Developer Biases",
+      "type": "category",
+      "children": [
+        {
+          "id": "implicit_bias",
+          "name": "Implicit Bias",
+          "type": "subcategory",
+          "priority": null
+        }
+      ]
+    },
+    {
+      "id": "physical_security_issues",
+      "name": "Physical Security Issues",
+      "type": "category",
+      "children": [
+        {
+          "id": "bypass_of_physical_access_control",
+          "name": "Bypass of physical access control",
+          "type": "subcategory",
           "priority": null
         },
         {
-          "id": "commonly_keyed_system",
-          "name": "Commonly Keyed System",
-          "type": "variant",
-          "priority": 2
+          "id": "weakness_in_physical_access_control",
+          "name": "Weakness in physical access control",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "cloneable_key",
+              "name": "Cloneable Key",
+              "type": "variant",
+              "priority": null
+            },
+            {
+              "id": "master_key_identification",
+              "name": "Master Key Identification",
+              "type": "variant",
+              "priority": null
+            },
+            {
+              "id": "commonly_keyed_system",
+              "name": "Commonly Keyed System",
+              "type": "variant",
+              "priority": 2
+            }
+          ]
         }
       ]
-    }
-  ]
-},
+    },
     {
       "id": "insecure_os_firmware",
       "name": "Insecure OS/Firmware",
@@ -1874,7 +1957,7 @@
             }
           ]
         },
-         {
+        {
           "id": "weakness_in_firmware_updates",
           "name": "Weakness in Firmware Updates",
           "type": "subcategory",
@@ -1896,58 +1979,58 @@
               "name": "Firmware is not encrypted",
               "type": "variant",
               "priority": 5
-            }                        
-      ]
-    },
-          {
+            }
+          ]
+        },
+        {
           "id": "kiosk_escape_or_breakout",
           "name": "Kiosk Escape or Breakout",
           "type": "subcategory",
           "priority": null
         },
-          {
+        {
           "id": "poorly_configured_disk_encryption",
           "name": "Poorly Configured Disk Encryption",
           "type": "subcategory",
           "priority": null
         },
-          {
+        {
           "id": "shared_credentials_on_storage",
           "name": "Shared Credentials on Storage",
           "type": "subcategory",
           "priority": 3
         },
-          {
+        {
           "id": "over_permissioned_credentials_on_storage",
           "name": "Over-Permissioned Credentials on Storage",
           "type": "subcategory",
           "priority": 2
-        },       
-          {
+        },
+        {
           "id": "local_administrator_on_default_environment",
           "name": "Local Administrator on default environment",
           "type": "subcategory",
           "priority": 2
         },
-          {
+        {
           "id": "poorly_configured_operating_system_security",
           "name": "Poorly Configured Operating System Security",
           "type": "subcategory",
           "priority": null
         },
-          {
+        {
           "id": "recovery_of_disk_contains_sensitive_material",
           "name": "Recovery of Disk Contains Sensitive Material",
           "type": "subcategory",
           "priority": null
         },
-          {
+        {
           "id": "failure_to_remove_sensitive_artifacts_from_disk",
           "name": "Failure to Remove Sensitive Artifacts from Disk",
           "type": "subcategory",
           "priority": null
         },
-         {
+        {
           "id": "data_not_encrypted_at_rest",
           "name": "Data not encrypted at rest",
           "type": "subcategory",
@@ -1963,9 +2046,9 @@
               "name": "Non sensitive",
               "type": "variant",
               "priority": 5
-            }                       
+            }
           ]
-        }                     
+        }
       ]
     },
     {
@@ -2584,7 +2667,7 @@
           "id": "llm_security",
           "name": "Large Language Model (LLM) Security",
           "type": "subcategory",
-          "children":[
+          "children": [
             {
               "id": "prompt_injection",
               "name": "Prompt Injection",

From 2553222244c2106462050ee375fd060a0618bfac Mon Sep 17 00:00:00 2001
From: Timmy <106584457+TimmyBugcrowd@users.noreply.github.com>
Date: Thu, 4 Jul 2024 18:21:59 +0200
Subject: [PATCH 40/54] VRT-release-changes (#415)

* VRT-release-changes

* Update cvss_v3.json

* Update cwe.json

* Adding SCW

---------

Co-authored-by: Abhinav Nain <abhinav.nain@bugcrowd.com>
---
 mappings/cvss_v3/cvss_v3.json                 | 28 +++++++++++---
 mappings/cwe/cwe.json                         |  8 ++--
 .../remediation_advice.json                   | 32 ++++++++++++++++
 .../secure-code-warrior-links.json            |  6 ++-
 vulnerability-rating-taxonomy.json            | 38 +++++++++++++++----
 5 files changed, 94 insertions(+), 18 deletions(-)

diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index 56e6611f..9e873fe3 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -31,6 +31,18 @@
           "id": "unsafe_cross_origin_resource_sharing",
           "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N"
         },
+        {
+          "id": "software_package_takeover",
+          "cvss_v3": "AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
+        },        
+        {
+          "id": "email_verification_bypass",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "missing_subresource_integrity",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },        
         {
           "id": "request_smuggling",
           "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
@@ -362,10 +374,6 @@
           "id": "two_fa_bypass",
           "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
         },
-        {
-          "id": "privilege_escalation",
-          "cvss_v3": "AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N"
-        },
         {
           "id": "cleartext_transmission_of_session_token",
           "cvss_v3": "AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
@@ -581,7 +589,11 @@
             {
               "id": "over_http",
               "cvss_v3": "AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N"
-            }
+            },
+            {
+              "id": "password_reset_token",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
+            }            
           ]
         },
         {
@@ -715,7 +727,11 @@
         {
           "id": "username_enumeration",
           "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
-        }
+        },
+        {
+          "id": "privilege_escalation",
+          "cvss_v3": "AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N"
+        }        
       ]
     },
     {
diff --git a/mappings/cwe/cwe.json b/mappings/cwe/cwe.json
index 1866223c..36457d1d 100644
--- a/mappings/cwe/cwe.json
+++ b/mappings/cwe/cwe.json
@@ -204,10 +204,6 @@
           "id": "two_fa_bypass",
           "cwe": ["CWE-304"]
         },
-        {
-          "id": "privilege_escalation",
-          "cwe": ["CWE-269"]
-        },
         {
           "id": "cleartext_transmission_of_session_token",
           "cwe": ["CWE-319"]
@@ -306,6 +302,10 @@
           "id": "exposed_sensitive_android_intent",
           "cwe": ["CWE-927"]
         },
+        {
+          "id": "privilege_escalation",
+          "cwe": ["CWE-269"]
+        },        
         {
           "id": "exposed_sensitive_ios_url_scheme",
           "cwe": ["CWE-939"]
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index ffe20d61..ed1f5088 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -33,6 +33,30 @@
             "https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS"
           ]
         },
+        {
+          "id": "email_verification_bypass",
+          "remediation_advice": "1. **Implement Robust Token Validation:** Ensure that any token used for email verification is securely generated and validated. Tokens should be long, random, and use secure hashing algorithms to prevent guessing attacks.\n2. **Secure Transmission:** Use HTTPS to protect the transmission of tokens over the network. Ensure that the tokens are not leaked via URLs in the `Referer` header by instructing users to avoid clicking on links from untrusted sources or by implementing measures to strip sensitive information from URLs.\n3. **Expire Tokens Quickly:** Set a short expiration time for verification tokens to limit the window of opportunity for an attacker. Once a token is used or expires, it should be invalidated immediately to prevent reuse.",
+          "references": [
+             "https://owasp.org/www-community/attacks/Email_Injection",
+             "https://portswigger.net/web-security/email-security"
+          ]
+        },
+        {
+          "id": "missing_subresource_integrity",
+          "remediation_advice": "1. **Implement SRI:** Add an `integrity` attribute with a base64-encoded hash to `<script>` and `<link>` tags for external resources. \n2. **Validate Hashes:** Always check the hashes of resources yourself before implementation to ensure they haven't been altered. \n3. **Update Hashes Regularly:** Monitor and update the hashes to reflect changes in the external libraries or resources you use.",
+          "references": [
+             "https://developer.mozilla.org/en-US/docs/Web/Security/Subresource_Integrity",
+             "https://www.w3.org/TR/SRI/"
+          ]
+        },
+        {
+          "id": "software_package_takeover",
+          "remediation_advice": "1. **Monitor Dependencies:** Regularly review and update the dependencies in your software projects to ensure they are secure and maintained. Use tools that can automatically check for outdated or vulnerable packages. \n2. **Secure Access Rights:** Restrict and monitor access to package management systems and repositories to prevent unauthorized changes. Use two-factor authentication and strong access controls. \n3. **Verify Package Integrity:** Before deployment, verify the integrity and authenticity of packages using signatures or other verification methods.",
+          "references": [
+            "https://owasp.org/www-community/attacks/Subdomain_Takeover",
+            "https://snyk.io/blog/ten-git-hub-security-best-practices/"
+          ]
+        },                        
         {
           "id": "request_smuggling",
           "remediation_advice": "Implement a robust security configuration, including secure parsing and handling of HTTP requests, and consider deploying a Web Application Firewall (WAF) to detect and mitigate potential smuggling attacks.",
@@ -932,6 +956,14 @@
             "https://www.owasp.org/index.php/Mobile_Top_10_2016-M1-Improper_Platform_Usage"
           ]
         },
+        {
+          "id": "privilege_escalation",
+          "remediation_advice": "1. **Least Privilege Principle:** Enforce the least privilege principle by ensuring that users and processes operate using the minimum permissions necessary to perform their tasks. \n2. **Regular Audits:** Conduct regular audits of system permissions and user roles to identify and rectify excessive permissions or misconfigurations. \n3. **Patch Management:** Keep all systems, applications, and services up to date with the latest security patches to close vulnerabilities that could be exploited for privilege escalation.",
+          "references": [
+             "https://owasp.org/www-community/attacks/Privilege_escalation",
+             "https://www.cisa.gov/uscert/bsi/articles/knowledge/principles/least-privilege"
+          ]
+        },        
         {
           "id": "exposed_sensitive_ios_url_scheme",
           "remediation_advice": "Apple does not enforce the unique naming for App schemes, making it possible for a malicious app to use the same URL Scheme as a legitimate app, effectively hijacking the URL Scheme. As a result, it is important to keep the URL Scheme from being exposed.",
diff --git a/third-party-mappings/remediation_training/secure-code-warrior-links.json b/third-party-mappings/remediation_training/secure-code-warrior-links.json
index 9247bf20..3c51fec3 100755
--- a/third-party-mappings/remediation_training/secure-code-warrior-links.json
+++ b/third-party-mappings/remediation_training/secure-code-warrior-links.json
@@ -88,6 +88,9 @@
   "server_security_misconfiguration.waf_bypass": null,
   "server_security_misconfiguration.waf_bypass.direct_server_access": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:waf_bypass:direct_server_access&redirect=true",
   "server_security_misconfiguration.race_condition": null,
+  "server_security_misconfiguration.email_verification_bypass": null,
+  "server_security_misconfiguration.missing_subresource_integrity": null,
+  "server_security_misconfiguration.software_package_takeover": null,
   "server_security_misconfiguration.cache_poisoning": null,
   "server_security_misconfiguration.bitsquatting": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:bitsquatting&redirect=true",
   "server_side_injection": null,
@@ -118,7 +121,6 @@
   "broken_authentication_and_session_management": null,
   "broken_authentication_and_session_management.authentication_bypass": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:authentication_bypass&redirect=true",
   "broken_authentication_and_session_management.two_fa_bypass": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:two_fa_bypass&redirect=true",
-  "broken_authentication_and_session_management.privilege_escalation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:privilege_escalation&redirect=true",
   "broken_authentication_and_session_management.cleartext_transmission_of_session_token": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:cleartext_transmission_of_session_token&redirect=true",
   "broken_authentication_and_session_management.weak_login_function": null,
   "broken_authentication_and_session_management.weak_login_function.not_operational": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:weak_login_function:not_operational&redirect=true",
@@ -160,6 +162,7 @@
   "sensitive_data_exposure.token_leakage_via_referer.trusted_third_party": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:token_leakage_via_referer:trusted_third_party&redirect=true",
   "sensitive_data_exposure.token_leakage_via_referer.untrusted_third_party": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:token_leakage_via_referer:untrusted_third_party&redirect=true",
   "sensitive_data_exposure.token_leakage_via_referer.over_http": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:token_leakage_via_referer:over_http&redirect=true",
+  "sensitive_data_exposure.token_leakage_via_referer.password_reset_token": null,
   "sensitive_data_exposure.sensitive_token_in_url": null,
   "sensitive_data_exposure.sensitive_token_in_url.user_facing": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_token_in_url:user_facing&redirect=true",
   "sensitive_data_exposure.sensitive_token_in_url.in_the_background": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_token_in_url:in_the_background&redirect=true",
@@ -206,6 +209,7 @@
   "broken_access_control.username_enumeration": null,
   "broken_access_control.username_enumeration.non_brute_force": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:username_enumeration:non_brute_force&redirect=true",
   "broken_access_control.exposed_sensitive_android_intent": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:exposed_sensitive_android_intent&redirect=true",
+  "broken_access_control.privilege_escalation": null,
   "broken_access_control.exposed_sensitive_ios_url_scheme": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:exposed_sensitive_ios_url_scheme&redirect=true",
   "cross_site_request_forgery_csrf": null,
   "cross_site_request_forgery_csrf.application_wide": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_request_forgery_csrf:application_wide&redirect=true",
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index 07aad2cb..a5edc2f4 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -554,6 +554,24 @@
           "type": "subcategory",
           "priority": null
         },
+        {
+          "id": "email_verification_bypass",
+          "name": "Email Verification Bypass",
+          "type": "subcategory",
+          "priority": 5
+        },
+        {
+          "id": "missing_subresource_integrity",
+          "name": "Missing Subresource Integrity",
+          "type": "subcategory",
+          "priority": 5
+        },      
+        {
+          "id": "software_package_takeover",
+          "name": "Software Package Takeover",
+          "type": "subcategory",
+          "priority": null
+        },                  
         {
           "id": "cache_poisoning",
           "name": "Cache Poisoning",
@@ -741,12 +759,6 @@
           "type": "subcategory",
           "priority": 3
         },
-        {
-          "id": "privilege_escalation",
-          "name": "Privilege Escalation",
-          "type": "subcategory",
-          "priority": null
-        },
         {
           "id": "cleartext_transmission_of_session_token",
           "name": "Cleartext Transmission of Session Token",
@@ -999,7 +1011,13 @@
               "name": "Over HTTP",
               "type": "variant",
               "priority": 4
-            }
+            },
+            {
+              "id": "password_reset_token",
+              "name": "Password Reset Token",
+              "type": "subcategory",
+              "priority": 5
+            }         
           ]
         },
         {
@@ -1289,6 +1307,12 @@
           "type": "subcategory",
           "priority": null
         },
+        {
+          "id": "privilege_escalation",
+          "name": "Privilege Escalation",
+          "type": "subcategory",
+          "priority": null
+        },        
         {
           "id": "exposed_sensitive_ios_url_scheme",
           "name": "Exposed Sensitive iOS URL Scheme",

From bef50bb65a79ba709182db6453c0aaddbc6998ea Mon Sep 17 00:00:00 2001
From: Abhinav Nain <abhinav.nain@bugcrowd.com>
Date: Mon, 8 Jul 2024 19:02:21 +0530
Subject: [PATCH 41/54] Adding Changelog and release date for v1.14 release
 (#417)

* Adding Changelog and release date for v1.14 release

* Adding Deprecated node mapping and few test refactoring

* Linter Fixes

* Fixing all flake8 errors
---
 CHANGELOG.md                         | 19 ++++++++++++
 deprecated-node-mapping.json         |  3 ++
 lib/artifacts/scw_artifact.py        |  8 +++--
 lib/tests/test_artifact_format.py    | 27 +++++++++--------
 lib/tests/test_deprecated_mapping.py | 34 ++++++++++++++++-----
 lib/tests/test_vrt.py                | 44 +++++++++++++++++++++-------
 lib/utils/utils.py                   | 36 +++++++++++++++++------
 lib/validate_artifacts.py            | 11 +++++--
 vulnerability-rating-taxonomy.json   |  2 +-
 9 files changed, 140 insertions(+), 44 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index d7685c95..ee8cb05a 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -10,6 +10,25 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 
 ### Changed
 
+## [v1.14](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.13...v1.14) - 2024-07-09
+### Added
+- Server Security Misconfiguration - Email verification bypass - P5
+- Server Security Misconfiguration - Missing Subresource Integrity - P5
+- Sensitive Data Exposure - Token Leakage via Referer - Password Reset Token - P5
+- Server Security Misconfiguration - Software Package Takeover - VARIES
+- Broken Access Control (BAC) - Privilege Escalation - VARIES
+- Data Biases - Representation Bias - VARIES
+- Data Biases - Pre-existing Bias - VARIES
+- Algorithmic Biases - Processing Bias - VARIES
+- Algorithmic Biases - Aggregation Bias - VARIES
+- Societal Biases - Confirmation Bias - VARIES
+- Societal Biases - Systemic Bias - VARIES
+- Misinterpretation Biases - Context Ignorance - VARIES
+- Developer Biases - Implicit Bias - VARIES
+
+### Removed
+- Broken Authentication and Session Management - Privilege Escalation - VARIES
+
 ## [v1.13](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.12...v1.13) - 2024-04-02
 ### Added
 - Physical Security Issues - Bypass of physical access control - VARIES
diff --git a/deprecated-node-mapping.json b/deprecated-node-mapping.json
index a39f07c8..0836eb25 100644
--- a/deprecated-node-mapping.json
+++ b/deprecated-node-mapping.json
@@ -232,5 +232,8 @@
   },
   "broken_access_control.server_side_request_forgery_ssrf.external": {
     "1.11": "server_security_misconfiguration.server_side_request_forgery_ssrf.external_low_impact"
+  },
+  "broken_authentication_and_session_management.privilege_escalation": {
+    "1.14": "broken_access_control.privilege_escalation"
   }
 }
diff --git a/lib/artifacts/scw_artifact.py b/lib/artifacts/scw_artifact.py
index e1c7a698..96628dd6 100644
--- a/lib/artifacts/scw_artifact.py
+++ b/lib/artifacts/scw_artifact.py
@@ -1,8 +1,8 @@
 import json
 import requests
-import utils.utils
 
-BASE_SCW_URL = 'https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey='
+BASE_SCW_URL = 'https://integration-api.securecodewarrior.com\
+/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey='
 OUTPUT_FILENAME = 'scw_links.json'
 
 
@@ -23,7 +23,9 @@ def scw_mapping(vrt_id):
 
 
 def join_vrt_id(parent_id, child_id):
-    return '.'.join([parent_id, child_id]) if parent_id is not None else child_id
+    return '.'.join(
+        [parent_id, child_id]
+    ) if parent_id is not None else child_id
 
 
 def generate_urls(vrt, content, parent_id=None):
diff --git a/lib/tests/test_artifact_format.py b/lib/tests/test_artifact_format.py
index 9555f9cb..0615e6bd 100644
--- a/lib/tests/test_artifact_format.py
+++ b/lib/tests/test_artifact_format.py
@@ -2,19 +2,22 @@
 import os
 import unittest
 
+
 class TestArtifactFormat(unittest.TestCase):
-  def setUp(self):
-    self.scw_artifact_path = os.path.join(
-      utils.THIRD_PARTY_MAPPING_DIR,
-      utils.SCW_DIR,
-      utils.SCW_FILENAME
-    )
+    def setUp(self):
+        print("\n`---{}---`".format(self._testMethodName))
+        self.scw_artifact_path = os.path.join(
+          utils.THIRD_PARTY_MAPPING_DIR,
+          utils.SCW_DIR,
+          utils.SCW_FILENAME
+        )
+
+    def test_artifact_loads_valid_json(self):
+        self.assertTrue(
+          utils.get_json(self.scw_artifact_path),
+          self.scw_artifact_path + ' is not valid JSON.'
+        )
 
-  def test_artifact_loads_valid_json(self):
-    self.assertTrue(
-      utils.get_json(self.scw_artifact_path),
-      self.scw_artifact_path + ' is not valid JSON.'
-    )
 
 if __name__ == "__main__":
-    unittest.main()
\ No newline at end of file
+    unittest.main()
diff --git a/lib/tests/test_deprecated_mapping.py b/lib/tests/test_deprecated_mapping.py
index d6e7c904..d501af91 100644
--- a/lib/tests/test_deprecated_mapping.py
+++ b/lib/tests/test_deprecated_mapping.py
@@ -5,9 +5,17 @@
 
 class TestDeprecatedMapping(unittest.TestCase):
     def setUp(self):
+        print("\n`---{}---`".format(self._testMethodName))
         self.vrt_versions = utils.all_versions(utils.VRT_FILENAME)
-        self.last_tagged_version = max([Version.coerce(x) for x in self.vrt_versions.keys() if x != 'current'])
-        self.deprecated_json = utils.get_json(utils.DEPRECATED_MAPPING_FILENAME)
+        self.last_tagged_version = max(
+            [
+                Version.coerce(x) for x in self.vrt_versions.keys()
+                if x != 'current'
+            ]
+        )
+        self.deprecated_json = utils.get_json(
+            utils.DEPRECATED_MAPPING_FILENAME
+        )
 
     def test_old_vrt_ids_have_current_node(self):
         for version, vrt in self.vrt_versions.items():
@@ -16,17 +24,28 @@ def test_old_vrt_ids_have_current_node(self):
             for id_list in utils.all_id_lists(vrt):
                 vrt_id = '.'.join(id_list)
                 if vrt_id in self.deprecated_json:
-                    max_ver = sorted(self.deprecated_json[vrt_id].keys(), key=lambda s: map(int, s.split('.')))[-1]
+                    max_ver = sorted(
+                        self.deprecated_json[vrt_id].keys(),
+                        key=lambda s: map(int, s.split('.'))
+                    )[-1]
                     vrt_id = self.deprecated_json[vrt_id][max_ver]
                     id_list = vrt_id.split('.')
-                self.assertTrue(vrt_id == 'other' or self.check_mapping(id_list),
-                                '%s from v%s has no mapping' % (vrt_id, version))
+                self.assertTrue(
+                    vrt_id == 'other' or self.check_mapping(id_list),
+                    '%s from v%s has no mapping' % (vrt_id, version)
+                )
 
     def test_deprecated_nodes_map_valid_node(self):
         for old_id, mapping in self.deprecated_json.items():
             for new_version, new_id in mapping.items():
-                self.assertTrue(new_id == 'other' or utils.id_valid(self.vrt_version(new_version), new_id.split('.')),
-                                new_id + ' is not valid')
+                self.assertTrue(
+                    new_id == 'other' or utils.id_valid(
+                        self.vrt_version(
+                            new_version
+                        ), new_id.split('.')
+                    ),
+                    new_id + ' is not valid'
+                )
 
     def check_mapping(self, id_list):
         if utils.id_valid(self.vrt_versions['current'], id_list):
@@ -44,5 +63,6 @@ def vrt_version(self, version):
         else:
             self.fail('Unknown version: %s' % version)
 
+
 if __name__ == "__main__":
     unittest.main()
diff --git a/lib/tests/test_vrt.py b/lib/tests/test_vrt.py
index 66976d16..97e0240a 100644
--- a/lib/tests/test_vrt.py
+++ b/lib/tests/test_vrt.py
@@ -5,13 +5,17 @@
 import glob
 import os
 
+
 class TestVrt(unittest.TestCase):
     def setUp(self):
         print("\n`---{}---`".format(self._testMethodName))
         self.vrt = utils.get_json(utils.VRT_FILENAME)
         self.mappings = [
-            { 'filename': f, 'name': os.path.splitext(os.path.basename(f))[0] }
-            for f in glob.glob(utils.MAPPING_DIR + '/**/*.json', recursive=True) if 'schema' not in f
+            {'filename': f, 'name': os.path.splitext(os.path.basename(f))[0]}
+            for f in glob.glob(
+                utils.MAPPING_DIR + '/**/*.json', recursive=True
+            )
+            if 'schema' not in f
         ]
 
     @unittest.skip('need to decide the best way to handle this')
@@ -20,7 +24,10 @@ def test_changelog_updated(self):
         Checks if CHANGELOG.md is being updated with the current commit
         and prompts the user if it isn't
         """
-        p = subprocess.Popen('git diff HEAD --stat --staged CHANGELOG.md | wc -l', shell=True, stdout=subprocess.PIPE)
+        p = subprocess.Popen(
+            'git diff HEAD --stat --staged CHANGELOG.md | wc -l',
+            shell=True, stdout=subprocess.PIPE
+        )
         out, _err = p.communicate()
         self.assertGreater(int(out), 0, 'CHANGELOG.md not updated')
 
@@ -28,7 +35,9 @@ def validate_schema(self, schema_file, data_file):
         schema = utils.get_json(schema_file)
         data = utils.get_json(data_file)
         jsonschema.Draft4Validator.check_schema(schema)
-        error = jsonschema.exceptions.best_match(jsonschema.Draft4Validator(schema).iter_errors(data))
+        error = jsonschema.exceptions.best_match(
+            jsonschema.Draft4Validator(schema).iter_errors(data)
+        )
         if error:
             raise error
 
@@ -41,19 +50,30 @@ def test_mapping_schemas(self):
                 f'{utils.MAPPING_DIR}/**/{mapping["name"]}.schema.json',
                 recursive=True
             )[0]
-            self.assertTrue(os.path.isfile(schema_file), 'Missing schema file for %s mapping' % mapping['name'])
+            self.assertTrue(
+                os.path.isfile(schema_file),
+                'Missing schema file for %s mapping' % mapping['name']
+            )
             self.validate_schema(schema_file, mapping['filename'])
 
     def all_vrt_ids_have_mapping(self, mappping_filename, key):
         mapping = utils.get_json(mappping_filename)
         keyed_mapping = utils.key_by_id(mapping['content'])
-        for vrt_id_list in utils.all_id_lists(self.vrt, include_internal=False):
+        for vrt_id_list in utils.all_id_lists(
+            self.vrt, include_internal=False
+        ):
             result = utils.has_mapping(keyed_mapping, vrt_id_list, key)
             if key == 'cwe' and not result:
-                print('WARNING: no ' + key + ' mapping for ' + '.'.join(vrt_id_list))
+                print('WARNING: no ' + key + ' mapping for ' + '.'.join(
+                    vrt_id_list
+                ))
             else:
-                self.assertTrue(utils.has_mapping(keyed_mapping, vrt_id_list, key),
-                                    'no ' + key + ' mapping for ' + '.'.join(vrt_id_list))
+                self.assertTrue(
+                    utils.has_mapping(
+                        keyed_mapping, vrt_id_list, key
+                    ),
+                    'no ' + key + ' mapping for ' + '.'.join(vrt_id_list)
+                )
 
     def test_all_vrt_ids_have_all_mappings(self):
         for mapping in self.mappings:
@@ -63,7 +83,11 @@ def only_map_valid_ids(self, mapping_filename):
         vrt_ids = utils.all_id_lists(self.vrt)
         mapping_ids = utils.all_id_lists(utils.get_json(mapping_filename))
         for id_list in mapping_ids:
-            self.assertIn(id_list, vrt_ids, 'invalid id in ' + mapping_filename + ' - ' + '.'.join(id_list))
+            self.assertIn(
+                id_list,
+                vrt_ids,
+                'invalid id in ' + mapping_filename + ' - ' + '.'.join(id_list)
+            )
 
     def test_only_map_valid_ids(self):
         for mapping in self.mappings:
diff --git a/lib/utils/utils.py b/lib/utils/utils.py
index 70497821..f56e3df4 100644
--- a/lib/utils/utils.py
+++ b/lib/utils/utils.py
@@ -10,13 +10,16 @@
 SCW_DIR = 'remediation_training'
 THIRD_PARTY_MAPPING_DIR = 'third-party-mappings'
 
+
 def get_json(filename):
     with open(filename) as f:
         return json.loads(f.read())
 
+
 def all_versions(filename):
     """
-    Find, open and parse all tagged versions of a json file, including the current version
+    Find, open and parse all tagged versions of a json file,
+    including the current version
 
     :param filename: The filename to find
     :return: a dictionary of all the versions, in the form
@@ -41,10 +44,12 @@ def id_valid(vrt, id_list):
     Check if a vrt id is valid
 
     :param vrt: The vrt object
-    :param id_list: The vrt id, split into components, eg ['category', 'subcategory', 'variant']
+    :param id_list: The vrt id, split into components,
+        eg ['category', 'subcategory', 'variant']
     :return: True/False
     """
-    # this is not particularly efficient, but it's more readable than other options so until we need to care...
+    # this is not particularly efficient, but it's more readable than other
+    # options so until we need to care...
     return id_list in all_id_lists(vrt)
 
 
@@ -53,7 +58,8 @@ def has_mapping(mapping, id_list, key):
     Check if a vrt id has a mapping
 
     :param mapping: The mapping object, keyed by id
-    :param id_list: The vrt id, split into components, eg ['category', 'subcategory', 'variant']
+    :param id_list: The vrt id, split into components,
+        eg ['category', 'subcategory', 'variant']
     :param key: The mapping key to look for, eg 'cvss_v3'
     :return: True/False
     """
@@ -72,9 +78,16 @@ def key_by_id(mapping):
     Converts arrays to hashes keyed by the id attribute for easier lookup. So
         [{'id': 'one', 'foo': 'bar'}, {'id': 'two', 'foo': 'baz'}]
     becomes
-        {'one': {'id': 'one', 'foo': 'bar'}, 'two': {'id': 'two', 'foo': 'baz'}}
+        {
+            'one': {'id': 'one', 'foo': 'bar'},
+            'two': {'id': 'two', 'foo': 'baz'}
+        }
     """
-    if isinstance(mapping, list) and isinstance(mapping[0], dict) and 'id' in mapping[0]:
+    if isinstance(
+        mapping, list
+    ) and isinstance(
+        mapping[0], dict
+    ) and 'id' in mapping[0]:
         return {x['id']: key_by_id(x) for x in mapping}
     elif isinstance(mapping, dict):
         return {k: key_by_id(v) for k, v in mapping.items()}
@@ -84,10 +97,12 @@ def key_by_id(mapping):
 
 def all_id_lists(vrt, include_internal=True):
     """
-    Get all valid vrt ids for a given vrt object, including internal nodes by default
+    Get all valid vrt ids for a given vrt object, including internal nodes
+    by default
 
     :param vrt: The vrt object
-    :param include_internal: Whether to include internal nodes or only leaf nodes
+    :param include_internal: Whether to include internal nodes or only
+    leaf nodes
     :return: ids in the form
         [
             ['category'],
@@ -98,7 +113,10 @@ def all_id_lists(vrt, include_internal=True):
     """
     def _all_id_lists(sub_vrt, prefix):
         if isinstance(sub_vrt, list):
-            return [vrt_id for entry in sub_vrt for vrt_id in _all_id_lists(entry, prefix)]
+            return [
+                vrt_id for entry in sub_vrt
+                for vrt_id in _all_id_lists(entry, prefix)
+            ]
         elif isinstance(sub_vrt, dict):
             if 'children' in sub_vrt:
                 new_prefix = prefix + [sub_vrt['id']]
diff --git a/lib/validate_artifacts.py b/lib/validate_artifacts.py
index 355a5784..8259778c 100644
--- a/lib/validate_artifacts.py
+++ b/lib/validate_artifacts.py
@@ -5,7 +5,11 @@
 from artifacts import scw_artifact
 
 artifact_json = utils.get_json(scw_artifact.OUTPUT_FILENAME)
-repo_path = os.path.join(utils.THIRD_PARTY_MAPPING_DIR, utils.SCW_DIR, utils.SCW_FILENAME)
+repo_path = os.path.join(
+    utils.THIRD_PARTY_MAPPING_DIR,
+    utils.SCW_DIR,
+    utils.SCW_FILENAME
+)
 print(os.path.abspath(repo_path))
 repo_json = utils.get_json(repo_path)
 
@@ -16,5 +20,8 @@
     print('SCW Document is valid!')
     sys.exit(0)
 else:
-    print('SCW Document is invalid, copy the artifact to the remediation training')
+    print(
+        'SCW Document is invalid, copy the artifact to the remediation\
+ training'
+    )
     sys.exit(1)
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index a5edc2f4..4679fd61 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1,6 +1,6 @@
 {
   "metadata": {
-    "release_date": "2024-04-02T00:00:00+00:00"
+    "release_date": "2024-07-09T00:00:00+00:00"
   },
   "content": [
     {

From 9ba9fcbce95d35602447dfacb7976e2e68e07bd0 Mon Sep 17 00:00:00 2001
From: Timmy <106584457+TimmyBugcrowd@users.noreply.github.com>
Date: Tue, 16 Jul 2024 10:06:18 +0200
Subject: [PATCH 42/54] Update vulnerability-rating-taxonomy.json (#418)

---
 vulnerability-rating-taxonomy.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index 4679fd61..64bfb7ad 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1015,7 +1015,7 @@
             {
               "id": "password_reset_token",
               "name": "Password Reset Token",
-              "type": "subcategory",
+              "type": "variant",
               "priority": 5
             }         
           ]

From e8949bc748a186d47c580efd4cc4b93b5e513bda Mon Sep 17 00:00:00 2001
From: rohit-bugcrowd <155043406+rohit-bugcrowd@users.noreply.github.com>
Date: Wed, 17 Jul 2024 14:17:58 +0530
Subject: [PATCH 43/54] adding changelog and release date for v1.14.1 release
 (#419)

* adding changelog and release date for v1.14.1 release

* fixed version

* release date update in vrt json
---
 CHANGELOG.md                       | 4 ++++
 vulnerability-rating-taxonomy.json | 2 +-
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index ee8cb05a..24ca7d92 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -10,6 +10,10 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 
 ### Changed
 
+## [v1.14.1](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.14...v1.14.1) - 2024-07-18
+### Changed
+- `vulnerability-rating-taxononomy.json` correction
+
 ## [v1.14](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.13...v1.14) - 2024-07-09
 ### Added
 - Server Security Misconfiguration - Email verification bypass - P5
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index 64bfb7ad..0b7e8b3e 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1,6 +1,6 @@
 {
   "metadata": {
-    "release_date": "2024-07-09T00:00:00+00:00"
+    "release_date": "2024-07-18T00:00:00+00:00"
   },
   "content": [
     {

From 5c0a02156d939db522aac1d4bcb408cb7734f31b Mon Sep 17 00:00:00 2001
From: Abhinav Nain <abhinav.nain@bugcrowd.com>
Date: Fri, 25 Oct 2024 13:27:08 +0530
Subject: [PATCH 44/54] 1.14.2 Release Q3 2024 (#424)

* 1.14.2 Release Q3

* Fixing deprecated mapping json
---
 CHANGELOG.md                                  | 103 ++++++++++++++++--
 deprecated-node-mapping.json                  |   9 +-
 mappings/cvss_v3/cvss_v3.json                 |   6 +-
 .../remediation_advice.json                   |   9 +-
 .../secure-code-warrior-links.json            |   5 +-
 vulnerability-rating-taxonomy.json            |  12 +-
 6 files changed, 105 insertions(+), 39 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 24ca7d92..0cb541b5 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,21 +1,43 @@
 # Change Log
+
 All notable changes to this project will be documented in this file.
 
 The format is based on [Keep a Changelog](http://keepachangelog.com/) and this project adheres to [Semantic Versioning](http://semver.org/)
 
 ## [Unreleased]
+
 ### Added
 
 ### Removed
 
 ### Changed
 
+## [v1.14.2](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.14.1...v1.14.2) - 2024-10-25
+
+### Removed
+
+- Server Security Misconfiguration - Misconfigured DNS - High Impact Subdomain Takeover - P2
+
+### Changed
+
+FROM:
+
+- Server Security Misconfiguration - Misconfigured DNS - Basic Subdomain Takeover - P3
+
+TO:
+
+- Server Security Misconfiguration - Misconfigured DNS - Subdomain Takeover - P3
+
 ## [v1.14.1](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.14...v1.14.1) - 2024-07-18
+
 ### Changed
+
 - `vulnerability-rating-taxononomy.json` correction
 
 ## [v1.14](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.13...v1.14) - 2024-07-09
+
 ### Added
+
 - Server Security Misconfiguration - Email verification bypass - P5
 - Server Security Misconfiguration - Missing Subresource Integrity - P5
 - Sensitive Data Exposure - Token Leakage via Referer - Password Reset Token - P5
@@ -31,10 +53,13 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - Developer Biases - Implicit Bias - VARIES
 
 ### Removed
+
 - Broken Authentication and Session Management - Privilege Escalation - VARIES
 
 ## [v1.13](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.12...v1.13) - 2024-04-02
+
 ### Added
+
 - Physical Security Issues - Bypass of physical access control - VARIES
 - Physical Security Issues - Weakness in physical access control - Clonable Key - VARIES
 - Physical Security Issues - Weakness in physical access control - Master Key Identification - VARIES
@@ -54,7 +79,9 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - Insecure OS/Firmware - Data not encrypted at rest - Non sensitive - P5
 
 ## [v1.12](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.11...v1.12) - 2023-12-18
+
 ### Added
+
 - Application Level DoS - Excessive Resource Consumption - Injection (Prompt) - VARIES
 - AI Application Security - Large Language Model (LLM) Security - Prompt Injection - P1
 - AI Application Security - Large Language Model (LLM) Security - LLM Output Handling - P1
@@ -62,7 +89,9 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - AI Application Security - Large Language Model (LLM) Security - Excessive Agency/Permission Manipulation - P2
 
 ## [v1.11](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.10...v1.11) - 2023-11-20
+
 ### Added
+
 - Sensitive Data Exposure - Disclosure of Secrets - PII Leakage/Exposure: VARIES
 - Server-Side Injection - Content Spoofing - HTML Content Injection: P5
 - Broken Authentication and Session Management - Failure to invalidate session - Permission change: VARIES
@@ -71,7 +100,7 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - Cryptographic Weakness - Insufficient Entropy - Limited Random Number Generator (RNG) Entropy Source: P4
 - Cryptographic Weakness - Insufficient_Entropy - Use of True Random Number Generator (TRNG) for Non-Security Purpose: P5
 - Cryptographic Weakness - Insufficient_Entropy - Pseudo-Random Number Generator (PRNG) Seed Reuse: P5
-- Cryptographic Weakness - Insufficient_Entropy - Predictable Pseudo-Random Number Generator (PRNG) Seed: P4 
+- Cryptographic Weakness - Insufficient_Entropy - Predictable Pseudo-Random Number Generator (PRNG) Seed: P4
 - Cryptographic Weakness - Insufficient_Entropy - Small Seed Space in Pseudo-Random Number Generator (PRNG): P4
 - Cryptographic Weakness - Insufficient_Entropy - Initialization Vector (IV) Reuse: P5
 - Cryptographic Weakness - Insufficient_Entropy - Predictable Initialization Vector (IV): P4
@@ -106,40 +135,53 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 - Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Read/Edit/Delete Sensitive Information (PII)/Iterable Object Identifier: P1
 
 ### Changed
-FROM: 
+
+FROM:
+
 - Cross-Site Scripting (XSS) - IE-Only - Older Version (< IE11): P5
 
-TO: 
+TO:
+
 - Cross-Site Scripting (XSS) - IE-Only: P5
 
 FROM:
+
 - Broken Access Control (BAC) - Server-Side Request Forgery (SSRF) - Internal High Impact: P2
 - Broken Access Control (BAC) - Server-Side Request Forgery (SSRF) - Internal Scan and/or Medium Impact: P3
 - Broken Access Control (BAC) - Server-Side Request Forgery (SSRF) - External: P4
 - Broken Access Control (BAC) - Server-Side Request Forgery (SSRF) - DNS Query Only : P5
 
 TO:
+
 - Server Security Misconfiguration - Server-Side Request Forgery (SSRF) - Internal High Impact: P2
 - Server Security Misconfiguration - Server-Side Request Forgery (SSRF) - Internal Scan and/or Medium Impact: P3
 - Server Security Misconfiguration - Server-Side Request Forgery (SSRF) - External - Low impact: P5
 - Server Security Misconfiguration - Server-Side Request Forgery (SSRF) - External - DNS Query Only: P5
 
 FROM:
+
 - Automotive Security Misconfiguration - Infotainment, Radio Head Unit - PII Leakage: P1
 
 TO:
+
 - Automotive Security Misconfiguration - Infotainment, Radio Head Unit - Sensitive data Leakage/Exposure: P1
+
 ### Removed
+
 - Cross-Site Scripting (XSS) - IE-Only - IE11: P4
 - Cross-Site Scripting (XSS) - XSS Filter Disabled: P5
 - Broken Cryptography - Cryptographic Flaw - Incorrect Usage: P1
 
 ## [v1.10.1](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.10...v1.10.1) - 2021-03-29
+
 ### Changed
+
 - renamed `secure code warriors` mapping to `secure code warrior`
 
 ## [v1.10](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.9...v1.10) - 2021-03-18
+
 ### Added
+
 - insufficient_security_configurability.verification_of_contact_method_not_required
 - insufficient_security_configurability.weak_two_fa_implementation.two_fa_code_is_not_updated_after_new_code_is_requested
 - insufficient_security_configurability.weak_two_fa_implementation.old_two_fa_code_is_not_invalidated_after_new_code_is_generated
@@ -176,6 +218,7 @@ TO:
 - automotive_security_misconfiguration.infotainment_radio_head_unit.default_credentials
 
 ### Removed
+
 - insufficient_security_configurability.lack_of_verification_email
 - broken_authentication_and_session_management.weak_login_function.https_not_available_or_http_by_default
 - broken_authentication_and_session_management.weak_login_function.http_and_https_available
@@ -192,14 +235,17 @@ TO:
 - automotive_security_misconfiguration.infotainment.default_credentials
 
 ### Changed
- - server_security_misconfiguration.lack_of_security_headers.cache_control_for_a_non_sensitive_page updated remediation advice
- - server_security_misconfiguration.lack_of_security_headers.cache_control_for_a_sensitive_page updated remediation advice
- - cross_site_scripting_xss.flash_based priority changed from P4 to P5
- - cross_site_request_forgery_csrf.flash_based priority changed from null to P5 (due to children removal)
- - using_components_with_known_vulnerabilities.rosetta_flash priority changed from P4 to P5
+
+- server_security_misconfiguration.lack_of_security_headers.cache_control_for_a_non_sensitive_page updated remediation advice
+- server_security_misconfiguration.lack_of_security_headers.cache_control_for_a_sensitive_page updated remediation advice
+- cross_site_scripting_xss.flash_based priority changed from P4 to P5
+- cross_site_request_forgery_csrf.flash_based priority changed from null to P5 (due to children removal)
+- using_components_with_known_vulnerabilities.rosetta_flash priority changed from P4 to P5
 
 ## [v1.9](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.8...v1.9) - 2020-05-22
+
 ### Added
+
 - sensitive_data_exposure.disclosure_of_secrets.for_publicly_accessible_asset
 - sensitive_data_exposure.disclosure_of_secrets.for_internal_asset
 - sensitive_data_exposure.disclosure_of_secrets.pay_per_use_abuse
@@ -218,32 +264,40 @@ TO:
 - insufficient_security_configurability.password_policy_bypass
 
 ### Removed
+
 - sensitive_data_exposure.critically_sensitive_data.password_disclosure
 - sensitive_data_exposure.critically_sensitive_data.private_api_keys
 - sensitive_data_exposure.critically_sensitive_data
 
-
 ## [v1.8](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.7.1...v1.8) - 2019-09-25
+
 ### Added
+
 - server_security_misconfiguration.race_condition
 - server_security_misconfiguration.cache_poisoning
 - indicators_of_compromise
 - broken_authentication_and_session_management.failure_to_invalidate_session.on_two_fa_activation_change
 
 ### Removed
+
 - mobile_security_misconfiguration.clipboard_enabled.on_sensitive_content
 - mobile_security_misconfiguration.clipboard_enabled.on_non_sensitive_content
 
 ### Changed
+
 - server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_on_non_email_domain name changed from "Email Spoofing on non-email domain" to "Email Spoofing on Non-Email Domain"
 - mobile_security_misconfiguration.clipboard_enabled priority changed from null to P5 (due to children removal)
 
-##  [v1.7.1](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.7...v1.7.1) - 2019-04-15
+## [v1.7.1](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.7...v1.7.1) - 2019-04-15
+
 ### Added
+
 - Remediation Advice and CVSS mappings for automotive_security_misconfiguration
 
-##  [v1.7](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.6...v1.7) - 2019-03-13
+## [v1.7](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.6...v1.7) - 2019-03-13
+
 ### Added
+
 - sensitive_data_exposure.weak_password_reset_implementation.token_leakage_via_host_header_poisoning
 - server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_on_non_email_domain
 - broken_access_control.username_enumeration.non_brute_force
@@ -277,6 +331,7 @@ TO:
 - server_side_injection.content_spoofing.email_hyperlink_injection_based_on_email_provider
 
 ### Removed
+
 - broken_access_control.username_enumeration.data_leak
 - insufficient_security_configurability.weak_2fa_implementation
 - sensitive_data_exposure.token_leakage_via_referer.trusted_3rd_party
@@ -285,12 +340,15 @@ TO:
 - cross_site_scripting_xss.ie_only.older_version_ie11
 
 ### Changed
+
 - server_security_misconfiguration.username_enumeration name changed from "Username Enumeration" to "Username/Email Enumeration"
 - broken_access_control.username_enumeration name changed from "Username Enumeration" to "Username/Email Enumeration"
 - updated Remediation Advice reference URLs for OWASP
 
 ## [v1.6](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.5...v1.6) - 2018-09-13
+
 ### Added
+
 - broken_access_control.server_side_request_forgery_ssrf.internal_high_impact
 - broken_access_control.server_side_request_forgery_ssrf.internal_scan_and_or_medium_impact
 - server_security_misconfiguration.mail_server_misconfiguration.no_spoofing_protection_on_email_domain
@@ -299,6 +357,7 @@ TO:
 - server_security_misconfiguration.mail_server_misconfiguration.missing_or_misconfigured_spf_and_or_dkim
 
 ### Removed
+
 - broken_access_control.server_side_request_forgery_ssrf.internal
 - server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_on_email_domain
 - server_security_misconfiguration.mail_server_misconfiguration.missing_spf_on_non_email_domain
@@ -307,7 +366,9 @@ TO:
 - server_security_misconfiguration.mail_server_misconfiguration.missing_dmarc
 
 ## [v1.5](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.4...v1.5) - 2018-09-13
+
 ### Added
+
 - unvalidated_redirects_and_forwards.open_redirect.flash_based
 - cross_site_scripting_xss.flash_based
 - server_side_injection.content_spoofing.flash_based_external_authentication_injection
@@ -333,6 +394,7 @@ TO:
 - cross_site_request_forgery_csrf.csrf_token_not_unique_per_request
 
 ### Removed
+
 - server_security_misconfiguration.mail_server_misconfiguration.missing_spf_on_email_domain
 - server_security_misconfiguration.mail_server_misconfiguration.email_spoofable_via_third_party_api_misconfiguration
 - cross_site_scripting_xss.stored.admin_to_anyone
@@ -340,6 +402,7 @@ TO:
 - server_security_misconfiguration.captcha_bypass
 
 ### Changed
+
 - broken_authentication_and_session_management.failure_to_invalidate_session.on_password_change updated remediation advice
 - CWE mapping default changed from `[CWE-2000]` to `null`
 - Updated python version to 3.6
@@ -349,7 +412,9 @@ TO:
 - server_security_misconfiguration.captcha_bypass.brute_force moved via subcategory change to server_security_misconfiguration.captcha.brute_force
 
 ## [v1.4](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.3.1...v1.4) - 2018-04-13
+
 ### Added
+
 - insufficient_security_configurability.weak_password_reset_implementation.token_is_not_invalidated_after_login
 - server_side_injection.content_spoofing.rtlo
 - mapping of VRT to CWE
@@ -372,6 +437,7 @@ TO:
 - mapping of VRT to Remediation Advice
 
 ### Removed
+
 - server_side_injection.sql_injection.error_based
 - server_side_injection.sql_injection.blind
 - broken_authentication_and_session_management.weak_login_function.over_http
@@ -383,6 +449,7 @@ TO:
 - server_security_misconfiguration.using_default_credentials.staging_development_server
 
 ### Changed
+
 - Use unittest for vrt validations
 - broken_authentication_and_session_management.failure_to_invalidate_session.all_sessions name changed from "All Sessions" to "Concurrent Sessions On Logout"
 - server_security_misconfiguration.oauth_misconfiguration.missing_state_parameter name changed from "Missing State Parameter" to "Missing/Broken State Parameter"
@@ -399,11 +466,15 @@ TO:
 - server_security_misconfiguration.using_default_credentials priority changed from null to P1 (due to children removal)
 
 ## [v1.3.1](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.3...v1.3.1) - 2017-10-31
+
 ### Changed
+
 - references to the invalid insufficient_security_configurability.weak_password_policy.no_password_policy updated to insufficient_security_configurability.no_password_policy
 
 ## [v1.3.0](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.2...v1.3) - 2017-09-22
+
 ### Added
+
 - insecure_data_transport.cleartext_transmission_of_sensitive_data
 - broken_access_control
 - broken_access_control.idor
@@ -413,10 +484,12 @@ TO:
 - server_security_misconfiguration.bitsquatting
 
 ### Removed
+
 - missing_function_level_access_control
 - insecure_direct_object_references_idor
 
 ### Changed
+
 - missing_function_level_access_control.server_side_request_forgery_ssrf moved via category change to broken_access_control.server_side_request_forgery_ssrf
 - missing_function_level_access_control.server_side_request_forgery_ssrf.internal moved via category change to broken_access_control.server_side_request_forgery_ssrf.internal
 - missing_function_level_access_control.server_side_request_forgery_ssrf.external moved via category change to broken_access_control.server_side_request_forgery_ssrf.external
@@ -427,7 +500,9 @@ TO:
 - cross_site_request_forgery_csrf.application_wide name changed from Applicaton-Wide to Application-Wide
 
 ## [v1.2.0](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.1...v1.2) - 2017-08-04
+
 ### Added
+
 - sensitive_data_exposure.visible_detailed_error_page.descriptive_stack_trace
 - sensitive_data_exposure.visible_detailed_error_page.detailed_server_configuration
 - unvalidated_redirects_and_forwards.open_redirect.get_based
@@ -455,6 +530,7 @@ TO:
 - insecure_data_storage.server_side_credentials_storage.plaintext
 
 ### Removed
+
 - unvalidated_redirects_and_forwards.open_redirect.get_based_all_users
 - unvalidated_redirects_and_forwards.open_redirect.get_based_authenticated
 - unvalidated_redirects_and_forwards.open_redirect.get_based_unauthenticated
@@ -478,6 +554,7 @@ TO:
 - insufficient_security_configurability.weak_password_policy.allows_password_to_be_same_as_email_username
 
 ### Changed
+
 - sensitive_data_exposure.visible_detailed_error_page name changed from 'Visible Detailed Error Page' to 'Visible Detailed Error/Debug Page'
 - server_security_misconfiguration.mail_server_misconfiguration.missing_dmarc name changed from 'Missing DMARC' to 'Missing DKIM/DMARC'
 - insecure_data_transport.ssl_certificate_pinning moved via category change to mobile_security_misconfiguration.ssl_certificate_pinning
@@ -489,7 +566,9 @@ TO:
 - insufficient_security_configurability.weak_password_policy priority changed from null to P5 (due to children removal)
 
 ## [v1.1.0](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.0...v1.1) - 2017-04-13
+
 ### Added
+
 - directory_listing_enabled
 - directory_listing_enabled.sensitive_data_exposure
 - directory_listing_enabled.non_sensitive_data_exposure
@@ -502,10 +581,12 @@ TO:
 - cross_site_request_forgery_csrf.unauthenticated_action
 
 ### Removed
+
 - poor_physical_security
 - social_engineering
 
 ### Changed
+
 - cross_site_scripting_xss.cookie_based priority changed from P4 to P5
 
 ## [1.0.0] - 2017-03-06
diff --git a/deprecated-node-mapping.json b/deprecated-node-mapping.json
index 0836eb25..e43f6f39 100644
--- a/deprecated-node-mapping.json
+++ b/deprecated-node-mapping.json
@@ -98,9 +98,6 @@
   "cross_site_scripting_xss.stored.admin_to_anyone": {
     "1.5": "cross_site_scripting_xss.stored.privileged_user_to_privilege_elevation"
   },
-  "server_security_misconfiguration.misconfigured_dns.subdomain_takeover": {
-    "1.5": "server_security_misconfiguration.misconfigured_dns.basic_subdomain_takeover"
-  },
   "server_security_misconfiguration.captcha_bypass": {
     "1.5": "server_security_misconfiguration.captcha"
   },
@@ -235,5 +232,11 @@
   },
   "broken_authentication_and_session_management.privilege_escalation": {
     "1.14": "broken_access_control.privilege_escalation"
+  },
+  "server_security_misconfiguration.misconfigured_dns.high_impact_subdomain_takeover": {
+    "1.14.1": "other"
+  },
+  "server_security_misconfiguration.misconfigured_dns.subdomain_takeover": {
+    "1.14.1": "server_security_misconfiguration.misconfigured_dns.basic_subdomain_takeover"
   }
 }
diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index 9e873fe3..de48c505 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -80,13 +80,9 @@
           "id": "misconfigured_dns",
           "children": [
             {
-              "id": "basic_subdomain_takeover",
+              "id": "subdomain_takeover",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
             },
-            {
-              "id": "high_impact_subdomain_takeover",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N"
-            },
             {
               "id": "zone_transfer",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index ed1f5088..4717943f 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -109,14 +109,7 @@
           "id": "misconfigured_dns",
           "children": [
             {
-              "id": "basic_subdomain_takeover",
-              "remediation_advice": "1. Set up your external service so it fully listens to your wildcard DNS.\n2. Keep your DNS-entries constantly vetted and restricted.",
-              "references": [
-                "https://labs.detectify.com/2014/10/21/hostile-subdomain-takeover-using-herokugithubdesk-more/"
-              ]
-            },
-            {
-              "id": "high_impact_subdomain_takeover",
+              "id": "subdomain_takeover",
               "remediation_advice": "1. Set up your external service so it fully listens to your wildcard DNS.\n2. Keep your DNS-entries constantly vetted and restricted.",
               "references": [
                 "https://labs.detectify.com/2014/10/21/hostile-subdomain-takeover-using-herokugithubdesk-more/"
diff --git a/third-party-mappings/remediation_training/secure-code-warrior-links.json b/third-party-mappings/remediation_training/secure-code-warrior-links.json
index 3c51fec3..1a4b1eb7 100755
--- a/third-party-mappings/remediation_training/secure-code-warrior-links.json
+++ b/third-party-mappings/remediation_training/secure-code-warrior-links.json
@@ -15,8 +15,7 @@
   "server_security_misconfiguration.ssl_attack_breach_poodle_etc": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:ssl_attack_breach_poodle_etc&redirect=true",
   "server_security_misconfiguration.using_default_credentials": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:using_default_credentials&redirect=true",
   "server_security_misconfiguration.misconfigured_dns": null,
-  "server_security_misconfiguration.misconfigured_dns.basic_subdomain_takeover": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:misconfigured_dns:basic_subdomain_takeover&redirect=true",
-  "server_security_misconfiguration.misconfigured_dns.high_impact_subdomain_takeover": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:misconfigured_dns:high_impact_subdomain_takeover&redirect=true",
+  "server_security_misconfiguration.misconfigured_dns.subdomain_takeover": null,
   "server_security_misconfiguration.misconfigured_dns.zone_transfer": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:misconfigured_dns:zone_transfer&redirect=true",
   "server_security_misconfiguration.misconfigured_dns.missing_caa_record": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:misconfigured_dns:missing_caa_record&redirect=true",
   "server_security_misconfiguration.mail_server_misconfiguration": null,
@@ -165,7 +164,7 @@
   "sensitive_data_exposure.token_leakage_via_referer.password_reset_token": null,
   "sensitive_data_exposure.sensitive_token_in_url": null,
   "sensitive_data_exposure.sensitive_token_in_url.user_facing": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_token_in_url:user_facing&redirect=true",
-  "sensitive_data_exposure.sensitive_token_in_url.in_the_background": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_token_in_url:in_the_background&redirect=true",
+  "sensitive_data_exposure.sensitive_token_in_url.in_the_background": null,
   "sensitive_data_exposure.sensitive_token_in_url.on_password_reset": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_token_in_url:on_password_reset&redirect=true",
   "sensitive_data_exposure.non_sensitive_token_in_url": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:non_sensitive_token_in_url&redirect=true",
   "sensitive_data_exposure.weak_password_reset_implementation": null,
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index 0b7e8b3e..ed39afe3 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1,6 +1,6 @@
 {
   "metadata": {
-    "release_date": "2024-07-18T00:00:00+00:00"
+    "release_date": "2024-10-25T00:00:00+00:00"
   },
   "content": [
     {
@@ -100,17 +100,11 @@
           "type": "subcategory",
           "children": [
             {
-              "id": "basic_subdomain_takeover",
-              "name": "Basic Subdomain Takeover",
+              "id": "subdomain_takeover",
+              "name": "Subdomain Takeover",
               "type": "variant",
               "priority": 3
             },
-            {
-              "id": "high_impact_subdomain_takeover",
-              "name": "High Impact Subdomain Takeover",
-              "type": "variant",
-              "priority": 2
-            },
             {
               "id": "zone_transfer",
               "name": "Zone Transfer",

From 23b179a6349ea9fec5c5de8531f28f4372e5cab5 Mon Sep 17 00:00:00 2001
From: Timmy <106584457+TimmyBugcrowd@users.noreply.github.com>
Date: Wed, 15 Jan 2025 11:45:31 +0100
Subject: [PATCH 45/54] Blockchain Security (#434)

* Blockchain Security

P1 - Decentralized Application Misconfiguration - Insecure Data Storage - Plaintext Private Key
Varies - Decentralized Application Misconfiguration - Insecure Data Storage - Sensitive Information Exposure
Varies - Decentralized Application Misconfiguration - Improper Authorization - Insufficient Signature Validation
Varies - Decentralized Application Misconfiguration - DeFi Security - Flash Loan Attack
Varies - Decentralized Application Misconfiguration - DeFi Security - Pricing Oracle Manipulation
Varies - Decentralized Application Misconfiguration - DeFi Security - Function-Level Accounting Error
Varies - Decentralized Application Misconfiguration - DeFi Security - Improper Implementation of Governance
P1 - Decentralized Application Misconfiguration - Marketplace Security - Signer Account Takeover
P1 - Decentralized Application Misconfiguration - Marketplace Security - Unauthorized Asset Transfer
P1 - Decentralized Application Misconfiguration - Marketplace Security - Orderbook Manipulation
P2 - Decentralized Application Misconfiguration - Marketplace Security - Malicious Order Offer
P2 - Decentralized Application Misconfiguration - Marketplace Security - Price or Fee Manipulation
P3 - Decentralized Application Misconfiguration - Marketplace Security - OFAC Bypass
Varies - Decentralized Application Misconfiguration - Marketplace Security - Improper Validation and Checks For Deposits and Withdrawals
Varies - Decentralized Application Misconfiguration - Marketplace Security - Miscalculated Accounting Logic
Varies - Decentralized Application Misconfiguration - Marketplace Security - Denial of Service
P1 - Decentralized Application Misconfiguration - Protocol Security Misconfiguration - Node-level Denial of Service
P2 - Protocol Specific Misconfiguration - Frontrunning-Enabled Attack
P2 - Protocol Specific Misconfiguration - Sandwich-Enabled Attack
Varies - Protocol Specific Misconfiguration - Misconfigured Staking Logic
Varies - Protocol Specific Misconfiguration - Improper Validation and Finalization Logic
P1 - Smart Contract Misconfiguration - Reentrancy Attack
P1 - Smart Contract Misconfiguration - Smart Contract Owner Takeover
P1 - Smart Contract Misconfiguration - Uninitialized Variables
P1 - Smart Contract Misconfiguration - Unauthorized Transfer of Funds
P2 - Smart Contract Misconfiguration - Integer Overflow / Underflow
P2 - Smart Contract Misconfiguration - Unauthorized Smart Contract Approval
P3 - Smart Contract Misconfiguration - Irreversible Function Call
P3 - Smart Contract Misconfiguration - Function-level Denial of Service
P3 - Smart Contract Misconfiguration - Malicious Superuser Risk
P3 - Smart Contract Misconfiguration - Improper Fee Implementation
P4 - Smart Contract Misconfiguration - Improper Use of Modifier
P4 - Smart Contract Misconfiguration - Improper Decimals Implementation
Varies - Smart Contract Misconfiguration - Inaccurate Rounding Calculation
Varies - Smart Contract Misconfiguration - Bypass of Function Modifiers & Checks
Varies - Zero Knowledge Security Misconfiguration - Missing Constraint
Varies - Zero Knowledge Security Misconfiguration - Mismatching Bit Lengths
Varies - Zero Knowledge Security Misconfiguration - Misconfigured Trusted Setup
Varies - Zero Knowledge Security Misconfiguration - Missing Range Check
P1 - Zero Knowledge Security Misconfiguration - Improper Proof Validation and Finalization Logic
P1 - Zero Knowledge Security Misconfiguration - Deanonymization of Data
Varies - Blockchain Infrastructure Misconfiguration - Improper Bridge Validation and Verification Logic

* Fixing syntax errors

* Update vulnerability-rating-taxonomy.json

* Fixing errors

* Fixing errors

* Fixing errors

* SAML Replay - P5

Adding:
P5 - Broken Authentication and Session Management - SAML Replay

* Revert "SAML Replay - P5"

This reverts commit 04c8503179a4de682b6d291342a7485a258aad77.

* Update vulnerability-rating-taxonomy.json

* Sorted JSONs + Helper Script (#436)

* Additional Files

---------

Co-authored-by: Abhinav Nain <abhinav.nain@bugcrowd.com>
---
 lib/utils/utils.py                            |   35 +-
 mappings/cvss_v3/cvss_v3.json                 | 1714 +++++----
 mappings/cwe/cwe.json                         | 1367 ++++---
 .../remediation_advice.json                   | 2705 ++++++-------
 sort_all_jsons.py                             |    4 +
 .../secure-code-warrior-links.json            |  820 ++--
 vulnerability-rating-taxonomy.json            | 3404 +++++++++--------
 7 files changed, 5427 insertions(+), 4622 deletions(-)
 create mode 100644 sort_all_jsons.py

diff --git a/lib/utils/utils.py b/lib/utils/utils.py
index f56e3df4..7f0685ef 100644
--- a/lib/utils/utils.py
+++ b/lib/utils/utils.py
@@ -1,5 +1,4 @@
-import json
-import git
+import json, git, os
 
 VRT_FILENAME = 'vulnerability-rating-taxonomy.json'
 DEPRECATED_MAPPING_FILENAME = 'deprecated-node-mapping.json'
@@ -9,7 +8,9 @@
 SCW_FILENAME = 'secure-code-warrior-links.json'
 SCW_DIR = 'remediation_training'
 THIRD_PARTY_MAPPING_DIR = 'third-party-mappings'
-
+CVSS_FILE = "cvss_v3/cvss_v3.json"
+CWE_FILE = "cwe/cwe.json"
+REMEDIATION_ADVICE_FILE = "remediation_advice/remediation_advice.json"
 
 def get_json(filename):
     with open(filename) as f:
@@ -130,3 +131,31 @@ def _all_id_lists(sub_vrt, prefix):
             print(sub_vrt)
             raise Exception('unexpected entry found')
     return _all_id_lists(vrt['content'], [])
+
+def sort_jsons():
+    '''
+    Sort all corresponding JSONs for this project for better readability and
+    maintaining properly formatted JSON files. 
+    '''
+    def sort_json(json_data):
+        def sort_json_blocks(block_data):
+            sorted_blocks = list(sorted(block_data, key = lambda a: a['id']))
+            for idx, block in enumerate(sorted_blocks):
+                if 'children' in block and block['children']!=[]:
+                    sorted_children = sort_json_blocks(block['children'])
+                    sorted_blocks[idx]['children'] = sorted_children
+            return sorted_blocks
+        json_data['content'] = sort_json_blocks(json_data['content'])
+        return json_data
+    
+    for json_path in [
+        VRT_FILENAME, 
+        os.path.join(MAPPING_DIR, CVSS_FILE), 
+        os.path.join(MAPPING_DIR, CWE_FILE), 
+        os.path.join(MAPPING_DIR, REMEDIATION_ADVICE_FILE)
+        ]:
+        data = sort_json(get_json(json_path))
+        print("`{}` JSON data sorted!".format(json_path))
+        output = json.dumps(data, indent=2)
+        open(json_path, "w").write(output)
+        print("- Writing {} bytes.\n".format(len(output)))
diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index de48c505..439a609b 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -4,376 +4,321 @@
   },
   "content": [
     {
-      "id": "server_security_misconfiguration",
+      "id": "ai_application_security",
       "children": [
         {
-          "id": "server_side_request_forgery_ssrf",
+          "id": "llm_security",
           "children": [
             {
-              "id": "internal_high_impact",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N"
+              "id": "excessive_agency_permission_manipulation",
+              "cvss_v3": "AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"
             },
             {
-              "id": "internal_scan_and_or_medium_impact",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N"
+              "id": "llm_output_handling",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L"
             },
             {
-              "id": "external_low_impact",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
+              "id": "prompt_injection",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L"
             },
             {
-              "id": "external_dns_query_only",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
+              "id": "training_data_poisoning",
+              "cvss_v3": "AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H"
             }
           ]
-        },
+        }
+      ]
+    },
+    {
+      "id": "algorithmic_biases",
+      "children": [
         {
-          "id": "unsafe_cross_origin_resource_sharing",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N"
+          "id": "aggregation_bias",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
         },
         {
-          "id": "software_package_takeover",
-          "cvss_v3": "AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
-        },        
+          "id": "processing_bias",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
+        }
+      ]
+    },
+    {
+      "id": "application_level_denial_of_service_dos",
+      "children": [
         {
-          "id": "email_verification_bypass",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
+          "id": "app_crash",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
         },
         {
-          "id": "missing_subresource_integrity",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },        
-        {
-          "id": "request_smuggling",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+          "id": "critical_impact_and_or_easy_difficulty",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
         },
         {
-          "id": "path_traversal",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+          "id": "excessive_resource_consumption",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H"
         },
         {
-          "id": "directory_listing_enabled",
+          "id": "high_impact_and_or_medium_difficulty",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"
+        }
+      ]
+    },
+    {
+      "id": "automotive_security_misconfiguration",
+      "children": [
+        {
+          "id": "abs",
           "children": [
             {
-              "id": "sensitive_data_exposure",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
-            },
-            {
-              "id": "non_sensitive_data_exposure",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+              "id": "unintended_acceleration_brake",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
             }
           ]
         },
         {
-          "id": "same_site_scripting",
-          "cvss_v3": "AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N"
-        },
-        {
-          "id": "ssl_attack_breach_poodle_etc",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N"
-        },
-        {
-          "id": "using_default_credentials",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"
-        },
-        {
-          "id": "misconfigured_dns",
+          "id": "battery_management_system",
           "children": [
             {
-              "id": "subdomain_takeover",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
-            },
-            {
-              "id": "zone_transfer",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"
+              "id": "firmware_dump",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"
             },
             {
-              "id": "missing_caa_record",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"
+              "id": "fraudulent_interface",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H"
             }
           ]
         },
         {
-          "id": "mail_server_misconfiguration",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
+          "id": "can",
           "children": [
             {
-              "id": "no_spoofing_protection_on_email_domain",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"
+              "id": "injection_basic_safety_message",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
             },
             {
-              "id": "email_spoofing_to_inbox_due_to_missing_or_misconfigured_dmarc_on_email_domain",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N"
+              "id": "injection_battery_management_system",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+            },
+            {
+              "id": "injection_disallowed_messages",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"
+            },
+            {
+              "id": "injection_dos",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"
+            },
+            {
+              "id": "injection_headlights",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+            },
+            {
+              "id": "injection_powertrain",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+            },
+            {
+              "id": "injection_pyrotechnical_device_deployment_tool",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+            },
+            {
+              "id": "injection_sensors",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+            },
+            {
+              "id": "injection_steering_control",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+            },
+            {
+              "id": "injection_vehicle_anti_theft_systems",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
             }
           ]
         },
         {
-          "id": "dbms_misconfiguration",
+          "id": "gnss_gps",
           "children": [
             {
-              "id": "excessively_privileged_user_dba",
-              "cvss_v3": "AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:N"
+              "id": "spoofing",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
             }
           ]
         },
         {
-          "id": "lack_of_password_confirmation",
-          "cvss_v3": "AV:P/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L",
+          "id": "immobilizer",
           "children": [
             {
-              "id": "manage_two_fa",
-              "cvss_v3": "AV:P/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L"
+              "id": "engine_start",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
             }
           ]
         },
         {
-          "id": "no_rate_limiting_on_form",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
+          "id": "infotainment_radio_head_unit",
           "children": [
             {
-              "id": "login",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
+              "id": "code_execution_can_bus_pivot",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"
             },
             {
-              "id": "change_password",
-              "cvss_v3": "AV:P/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L"
-            }
-          ]
-        },
-        {
-          "id": "unsafe_file_upload",
-          "children": [
+              "id": "code_execution_no_can_bus_pivot",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L"
+            },
             {
-              "id": "no_antivirus",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N"
+              "id": "default_credentials",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
             },
             {
-              "id": "no_size_limit",
+              "id": "dos_brick",
               "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"
             },
             {
-              "id": "file_extension_filter_bypass",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-            }
-          ]
-        },
-        {
-          "id": "cookie_scoped_to_parent_domain",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
-        {
-          "id": "missing_secure_or_httponly_cookie_flag",
-          "children": [
+              "id": "ota_firmware_manipulation",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"
+            },
             {
-              "id": "session_token",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
+              "id": "sensitive_data_leakage_exposure",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"
             },
             {
-              "id": "non_session_cookie",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+              "id": "source_code_dump",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L"
+            },
+            {
+              "id": "unauthorized_access_to_services",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L"
             }
           ]
         },
         {
-          "id": "clickjacking",
+          "id": "rf_hub",
           "children": [
             {
-              "id": "sensitive_action",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"
+              "id": "can_injection_interaction",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
             },
             {
-              "id": "form_input",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"
+              "id": "data_leakage_pull_encryption_mechanism",
+              "cvss_v3": "AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L"
             },
             {
-              "id": "non_sensitive_action",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:N"
-            }
-          ]
-        },
-        {
-          "id": "oauth_misconfiguration",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
-          "children": [
-            {
-              "id": "account_takeover",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
+              "id": "key_fob_cloning",
+              "cvss_v3": "AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"
             },
             {
-              "id": "account_squatting",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"
-            }
-          ]
-        },
-        {
-          "id": "captcha",
-          "children": [
+              "id": "relay",
+              "cvss_v3": "AV:A/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
+            },
             {
-              "id": "implementation_vulnerability",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"
+              "id": "replay",
+              "cvss_v3": "AV:A/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "brute_force",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"
+              "id": "roll_jam",
+              "cvss_v3": "AV:A/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "missing",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+              "id": "unauthorized_access_turn_on",
+              "cvss_v3": "AV:A/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L"
             }
           ]
         },
         {
-          "id": "exposed_admin_portal",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
-        {
-          "id": "missing_dnssec",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
-        {
-          "id": "fingerprinting_banner_disclosure",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
-        {
-          "id": "username_enumeration",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
-        {
-          "id": "potentially_unsafe_http_method_enabled",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
-        {
-          "id": "insecure_ssl",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
-        {
-          "id": "rfd",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N"
-        },
-        {
-          "id": "lack_of_security_headers",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N",
-          "children": [
-            {
-              "id": "cache_control_for_a_sensitive_page",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
-            }
-          ]
-        },
-        {
-          "id": "waf_bypass",
+          "id": "rsu",
           "children": [
             {
-              "id": "direct_server_access",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"
+              "id": "sybil_attack",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
             }
           ]
-        },
-        {
-          "id": "race_condition",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
+        }
+      ]
+    },
+    {
+      "id": "blockchain_infrastructure_misconfiguration",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+    },
+    {
+      "id": "broken_access_control",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
+      "children": [
         {
-          "id": "cache_poisoning",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+          "id": "privilege_escalation",
+          "cvss_v3": "AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N"
         },
         {
-          "id": "bitsquatting",
+          "id": "username_enumeration",
           "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
         }
       ]
     },
     {
-      "id": "server_side_injection",
+      "id": "broken_authentication_and_session_management",
       "children": [
         {
-          "id": "file_inclusion",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N"
-        },
-        {
-          "id": "parameter_pollution",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
-        {
-          "id": "remote_code_execution_rce",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
-        },
-        {
-          "id": "ldap_injection",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
-        },
-        {
-          "id": "sql_injection",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N"
+          "id": "authentication_bypass",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"
         },
         {
-          "id": "xml_external_entity_injection_xxe",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L"
+          "id": "cleartext_transmission_of_session_token",
+          "cvss_v3": "AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
         },
         {
-          "id": "http_response_manipulation",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"
+          "id": "concurrent_logins",
+          "cvss_v3": "AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:N"
         },
         {
-          "id": "content_spoofing",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N",
+          "id": "failure_to_invalidate_session",
           "children": [
             {
-              "id": "iframe_injection",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N"
+              "id": "all_sessions",
+              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "impersonation_via_broken_link_hijacking",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"
+              "id": "long_timeout",
+              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "external_authentication_injection",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"
+              "id": "on_email_change",
+              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "flash_based_external_authentication_injection",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
+              "id": "on_logout",
+              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N"
             },
             {
-              "id": "html_content_injection",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+              "id": "on_logout_server_side_only",
+              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "email_html_injection",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"
+              "id": "on_password_change",
+              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "on_two_fa_activation_change",
+              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N"
+            },
+            {
+              "id": "permission_change",
+              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N"
             }
           ]
         },
         {
-          "id": "ssti",
+          "id": "session_fixation",
           "children": [
             {
-              "id": "basic",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
+              "id": "local_attack_vector",
+              "cvss_v3": "AV:P/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N"
             },
             {
-              "id": "custom",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
+              "id": "remote_attack_vector",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N"
             }
           ]
-        }
-      ]
-    },
-    {
-      "id": "broken_authentication_and_session_management",
-      "children": [
-        {
-          "id": "authentication_bypass",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"
         },
         {
           "id": "two_fa_bypass",
           "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
         },
-        {
-          "id": "cleartext_transmission_of_session_token",
-          "cvss_v3": "AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
-        },
         {
           "id": "weak_login_function",
           "children": [
@@ -392,411 +337,330 @@
           ]
         },
         {
-          "id": "session_fixation",
+          "id": "weak_registration_implementation",
+          "cvss_v3": "AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N"
+        }
+      ]
+    },
+    {
+      "id": "client_side_injection",
+      "children": [
+        {
+          "id": "binary_planting",
           "children": [
             {
-              "id": "remote_attack_vector",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N"
+              "id": "no_privilege_escalation",
+              "cvss_v3": "AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "local_attack_vector",
-              "cvss_v3": "AV:P/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N"
+              "id": "non_default_folder_privilege_escalation",
+              "cvss_v3": "AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "privilege_escalation",
+              "cvss_v3": "AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
             }
           ]
-        },
+        }
+      ]
+    },
+    {
+      "id": "cross_site_request_forgery_csrf",
+      "children": [
         {
-          "id": "failure_to_invalidate_session",
+          "id": "action_specific",
           "children": [
             {
-              "id": "on_logout",
-              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N"
-            },
-            {
-              "id": "permission_change",
-              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N"
-            },
-            {
-              "id": "on_logout_server_side_only",
-              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N"
-            },
-            {
-              "id": "on_password_change",
-              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N"
-            },
-            {
-              "id": "all_sessions",
-              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N"
-            },
-            {
-              "id": "on_email_change",
-              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N"
+              "id": "authenticated_action",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N"
             },
             {
-              "id": "on_two_fa_activation_change",
-              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N"
+              "id": "logout",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "long_timeout",
-              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N"
+              "id": "unauthenticated_action",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"
             }
           ]
         },
         {
-          "id": "concurrent_logins",
-          "cvss_v3": "AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:N"
+          "id": "application_wide",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L"
         },
         {
-          "id": "weak_registration_implementation",
-          "cvss_v3": "AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N"
-        }
-      ]
-    },
-    {
-      "id": "data_biases",
-      "children": [
-        {
-          "id": "representation_bias",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
+          "id": "csrf_token_not_unique_per_request",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
         },
         {
-          "id": "pre_existing_bias",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
+          "id": "flash_based",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
         }
       ]
     },
     {
-      "id": "algorithmic_biases",
+      "id": "cross_site_scripting_xss",
       "children": [
         {
-          "id": "processing_bias",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
+          "id": "cookie_based",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:N/A:N"
         },
         {
-          "id": "aggregation_bias",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
-        }
-      ]
-    },
-    {
-      "id": "societal_biases",
-      "children": [
-        {
-          "id": "confirmation_bias",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"
+          "id": "flash_based",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:N/A:N"
         },
         {
-          "id": "systemic_bias",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
-        }
-      ]
-    },
-    {
-      "id": "misinterpretation_biases",
-      "children": [
+          "id": "ie_only",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N"
+        },
         {
-          "id": "context_ignorance",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"
-        }
-      ]
-    },
-    {
-      "id": "developer_biases",
-      "children": [
+          "id": "off_domain",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N"
+        },
         {
-          "id": "implicit_bias",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:N"
-        }
-      ]
-    },
-    {
-      "id": "sensitive_data_exposure",
-      "children": [
+          "id": "referer",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N"
+        },
         {
-          "id": "disclosure_of_secrets",
+          "id": "reflected",
           "children": [
             {
-              "id": "for_publicly_accessible_asset",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"
+              "id": "non_self",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
             },
             {
-              "id": "pii_leakage_exposure",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"
-            },
+              "id": "self",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+            }
+          ]
+        },
+        {
+          "id": "stored",
+          "children": [
             {
-              "id": "for_internal_asset",
-              "cvss_v3": "AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L"
+              "id": "non_admin_to_anyone",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N"
             },
             {
-              "id": "pay_per_use_abuse",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"
+              "id": "privileged_user_to_no_privilege_elevation",
+              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N"
             },
             {
-              "id": "intentionally_public_sample_or_invalid",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+              "id": "privileged_user_to_privilege_elevation",
+              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N"
             },
             {
-              "id": "data_traffic_spam",
+              "id": "self",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "non_corporate_user",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+              "id": "url_based",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
             }
           ]
         },
         {
-          "id": "exif_geolocation_data_not_stripped_from_uploaded_images",
+          "id": "trace_method",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "universal_uxss",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N"
+        }
+      ]
+    },
+    {
+      "id": "cryptographic_weakness",
+      "children": [
+        {
+          "id": "broken_cryptography",
           "children": [
             {
-              "id": "automatic_user_enumeration",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"
+              "id": "use_of_broken_cryptographic_primitive",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"
             },
             {
-              "id": "manual_user_enumeration",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
+              "id": "use_of_vulnerable_cryptographic_library",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"
             }
           ]
         },
         {
-          "id": "visible_detailed_error_page",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
+          "id": "incomplete_cleanup_of_keying_material",
+          "cvss_v3": "AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L"
+        },
+        {
+          "id": "insecure_implementation",
           "children": [
             {
-              "id": "detailed_server_configuration",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"
+              "id": "improper_following_of_specification",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L"
+            },
+            {
+              "id": "missing_cryptographic_step",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L"
             }
           ]
         },
         {
-          "id": "disclosure_of_known_public_information",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
-        {
-          "id": "token_leakage_via_referer",
+          "id": "insecure_key_generation",
           "children": [
             {
-              "id": "trusted_third_party",
-              "cvss_v3": "AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:N"
+              "id": "improper_asymmetric_exponent_selection",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L"
             },
             {
-              "id": "untrusted_third_party",
-              "cvss_v3": "AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N"
+              "id": "improper_asymmetric_prime_selection",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L"
             },
             {
-              "id": "over_http",
-              "cvss_v3": "AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N"
+              "id": "insufficient_key_space",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"
             },
             {
-              "id": "password_reset_token",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
-            }            
+              "id": "insufficient_key_stretching",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"
+            },
+            {
+              "id": "key_exchange_without_entity_authentication",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"
+            }
           ]
         },
         {
-          "id": "sensitive_token_in_url",
-          "cvss_v3": "AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
-        },
-        {
-          "id": "non_sensitive_token_in_url",
-          "cvss_v3": "AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
-        {
-          "id": "weak_password_reset_implementation",
-          "cvss_v3": "AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N",
+          "id": "insufficient_entropy",
           "children": [
             {
-              "id": "token_leakage_via_host_header_poisoning",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L"
+              "id": "initialization_vector_reuse",
+              "cvss_v3": "AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "limited_rng_entropy_source",
+              "cvss_v3": "AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "predictable_initialization_vector",
+              "cvss_v3": "AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "predictable_prng_seed",
+              "cvss_v3": "AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "prng_seed_reuse",
+              "cvss_v3": "AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "small_seed_space_in_prng",
+              "cvss_v3": "AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "use_of_trng_for_nonsecurity_purpose",
+              "cvss_v3": "AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"
             }
           ]
         },
         {
-          "id": "mixed_content",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:N"
-        },
-        {
-          "id": "sensitive_data_hardcoded",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
-        {
-          "id": "internal_ip_disclosure",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
-        {
-          "id": "xssi",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N"
-        },
-        {
-          "id": "json_hijacking",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:N"
+          "id": "insufficient_verification_of_data_authenticity",
+          "children": [
+            {
+              "id": "cryptographic_signature",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"
+            },
+            {
+              "id": "identity_check_value",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"
+            }
+          ]
         },
         {
-          "id": "via_localstorage_sessionstorage",
+          "id": "key_reuse",
           "children": [
             {
-              "id": "sensitive_token",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
+              "id": "inter_environment",
+              "cvss_v3": "AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"
             },
             {
-              "id": "non_sensitive_token",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"
+              "id": "intra_environment",
+              "cvss_v3": "AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L"
+            },
+            {
+              "id": "lack_of_perfect_forward_secrecy",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"
             }
           ]
-        }
-      ]
-    },
-    {
-      "id": "cross_site_scripting_xss",
-      "children": [
+        },
         {
-          "id": "stored",
+          "id": "side_channel_attack",
           "children": [
             {
-              "id": "non_admin_to_anyone",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N"
+              "id": "differential_fault_analysis",
+              "cvss_v3": "AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
             },
             {
-              "id": "privileged_user_to_privilege_elevation",
-              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N"
+              "id": "emanations_attack",
+              "cvss_v3": "AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
             },
             {
-              "id": "privileged_user_to_no_privilege_elevation",
-              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N"
+              "id": "padding_oracle_attack",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
             },
             {
-              "id": "url_based",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
+              "id": "power_analysis_attack",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
             },
             {
-              "id": "self",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+              "id": "timing_attack",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
             }
           ]
         },
         {
-          "id": "reflected",
+          "id": "use_of_expired_cryptographic_key_or_cert",
+          "cvss_v3": "AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L"
+        },
+        {
+          "id": "weak_hash",
           "children": [
             {
-              "id": "non_self",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
+              "id": "lack_of_salt",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N"
             },
             {
-              "id": "self",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-            }
-          ]
-        },
-        {
-          "id": "flash_based",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:N/A:N"
-        },
-        {
-          "id": "cookie_based",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:N/A:N"
-        },
-        {
-          "id": "ie_only",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N"
-        },
-        {
-          "id": "referer",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N"
-        },
-        {
-          "id": "trace_method",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
-        {
-          "id": "universal_uxss",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N"
-        },
-        {
-          "id": "off_domain",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N"
-        }
-      ]
-    },
-    {
-      "id": "broken_access_control",
-      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
-      "children": [
-        {
-          "id": "username_enumeration",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
-        },
-        {
-          "id": "privilege_escalation",
-          "cvss_v3": "AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N"
-        }        
-      ]
-    },
-    {
-      "id": "cross_site_request_forgery_csrf",
-      "children": [
-        {
-          "id": "application_wide",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L"
-        },
-        {
-          "id": "action_specific",
-          "children": [
-            {
-              "id": "authenticated_action",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N"
-            },
-            {
-              "id": "unauthenticated_action",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"
+              "id": "predictable_hash_collision",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N"
             },
             {
-              "id": "logout",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:N"
+              "id": "use_of_predictable_salt",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N"
             }
           ]
-        },
-        {
-          "id": "csrf_token_not_unique_per_request",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
-        },
-        {
-          "id": "flash_based",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
         }
       ]
     },
     {
-      "id": "application_level_denial_of_service_dos",
+      "id": "data_biases",
       "children": [
         {
-          "id": "critical_impact_and_or_easy_difficulty",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
-        },
-        {
-          "id": "high_impact_and_or_medium_difficulty",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"
-        },
-        {
-          "id": "app_crash",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+          "id": "pre_existing_bias",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
         },
         {
-          "id": "excessive_resource_consumption",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H"
+          "id": "representation_bias",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
         }
       ]
     },
     {
-      "id": "unvalidated_redirects_and_forwards",
-      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
+      "id": "decentralized_application_misconfiguration",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+    },
+    {
+      "id": "developer_biases",
       "children": [
         {
-          "id": "open_redirect",
-          "children": [
-            {
-              "id": "get_based",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"
-            }
-          ]
+          "id": "implicit_bias",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:N"
         }
       ]
     },
@@ -805,46 +669,8 @@
       "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
     },
     {
-      "id": "insufficient_security_configurability",
-      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
-      "children": [
-        {
-          "id": "no_password_policy",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N"
-        },
-        {
-          "id": "weak_password_reset_implementation",
-          "children": [
-            {
-              "id": "token_is_not_invalidated_after_use",
-              "cvss_v3": "AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
-            }
-          ]
-        },
-        {
-          "id": "weak_two_fa_implementation",
-          "children": [
-            {
-              "id": "two_fa_secret_cannot_be_rotated",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
-            },
-            {
-              "id": "two_fa_secret_remains_obtainable_after_two_fa_is_enabled",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
-            }
-          ]
-        }
-      ]
-    },
-    {
-      "id": "using_components_with_known_vulnerabilities",
-      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
-      "children": [
-        {
-          "id": "rosetta_flash",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
-        }
-      ]
+      "id": "indicators_of_compromise",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
     },
     {
       "id": "insecure_data_storage",
@@ -870,10 +696,6 @@
         }
       ]
     },
-    {
-      "id": "lack_of_binary_hardening",
-      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-    },
     {
       "id": "insecure_data_transport",
       "children": [
@@ -897,65 +719,39 @@
       ]
     },
     {
-      "id": "physical_security_issues",
+      "id": "insecure_os_firmware",
       "children": [
         {
-          "id": "bypass_of_physical_access_control",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
+          "id": "command_injection",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"
         },
         {
-          "id": "weakness_in_physical_access_control",
+          "id": "data_not_encrypted_at_rest",
           "children": [
             {
-              "id": "cloneable_key",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N"
-            },
-            {
-              "id": "master_key_identification",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
+              "id": "non_sensitive",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
             },
             {
-              "id": "commonly_keyed_system",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N"
+              "id": "sensitive",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
             }
           ]
-        }
-      ]
-    },
-    {
-      "id": "insecure_os_firmware",
-      "children": [
+        },
         {
-          "id": "command_injection",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"
+          "id": "failure_to_remove_sensitive_artifacts_from_disk",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
         },
         {
           "id": "hardcoded_password",
           "children": [
-            {
-              "id": "privileged_user",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"
-            },
             {
               "id": "non_privileged_user",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
-            }
-          ]
-        },
-        {
-          "id": "weakness_in_firmware_updates",
-          "children": [
-            {
-              "id": "firmware_cannot_be_updated",
-              "cvss_v3": "AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"
             },
             {
-              "id": "firmware_does_not_validate_update_integrity",
-              "cvss_v3": "AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H"
-            },
-            {
-              "id": "firmware_is_not_encrypted",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+              "id": "privileged_user",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"
             }
           ]
         },
@@ -964,20 +760,16 @@
           "cvss_v3": "AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L"
         },
         {
-          "id": "poorly_configured_disk_encryption",
-          "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
-        },
-        {
-          "id": "shared_credentials_on_storage",
-          "cvss_v3": "AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
+          "id": "local_administrator_on_default_environment",
+          "cvss_v3": "AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"
         },
         {
           "id": "over_permissioned_credentials_on_storage",
           "cvss_v3": "AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
         },
         {
-          "id": "local_administrator_on_default_environment",
-          "cvss_v3": "AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"
+          "id": "poorly_configured_disk_encryption",
+          "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
         },
         {
           "id": "poorly_configured_operating_system_security",
@@ -988,450 +780,678 @@
           "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
         },
         {
-          "id": "failure_to_remove_sensitive_artifacts_from_disk",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+          "id": "shared_credentials_on_storage",
+          "cvss_v3": "AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
         },
         {
-          "id": "data_not_encrypted_at_rest",
+          "id": "weakness_in_firmware_updates",
           "children": [
             {
-              "id": "non_sensitive",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
+              "id": "firmware_cannot_be_updated",
+              "cvss_v3": "AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"
             },
             {
-              "id": "sensitive",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
+              "id": "firmware_does_not_validate_update_integrity",
+              "cvss_v3": "AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H"
+            },
+            {
+              "id": "firmware_is_not_encrypted",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
             }
           ]
         }
       ]
     },
     {
-      "id": "cryptographic_weakness",
+      "id": "insufficient_security_configurability",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
       "children": [
         {
-          "id": "insufficient_entropy",
+          "id": "no_password_policy",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N"
+        },
+        {
+          "id": "weak_password_reset_implementation",
           "children": [
             {
-              "id": "limited_rng_entropy_source",
-              "cvss_v3": "AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
-            },
-            {
-              "id": "use_of_trng_for_nonsecurity_purpose",
-              "cvss_v3": "AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"
-            },
-            {
-              "id": "prng_seed_reuse",
-              "cvss_v3": "AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
-            },
-            {
-              "id": "predictable_prng_seed",
-              "cvss_v3": "AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
-            },
-            {
-              "id": "small_seed_space_in_prng",
-              "cvss_v3": "AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
-            },
-            {
-              "id": "initialization_vector_reuse",
-              "cvss_v3": "AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
-            },
-            {
-              "id": "predictable_initialization_vector",
+              "id": "token_is_not_invalidated_after_use",
               "cvss_v3": "AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
             }
           ]
         },
         {
-          "id": "insecure_implementation",
+          "id": "weak_two_fa_implementation",
           "children": [
             {
-              "id": "missing_cryptographic_step",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L"
+              "id": "two_fa_secret_cannot_be_rotated",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
             },
             {
-              "id": "improper_following_of_specification",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L"
+              "id": "two_fa_secret_remains_obtainable_after_two_fa_is_enabled",
+              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
             }
           ]
+        }
+      ]
+    },
+    {
+      "id": "lack_of_binary_hardening",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+    },
+    {
+      "id": "misinterpretation_biases",
+      "children": [
+        {
+          "id": "context_ignorance",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"
+        }
+      ]
+    },
+    {
+      "id": "mobile_security_misconfiguration",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
+      "children": [
+        {
+          "id": "auto_backup_allowed_by_default",
+          "cvss_v3": "AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N"
         },
         {
-          "id": "weak_hash",
+          "id": "clipboard_enabled",
+          "cvss_v3": "AV:L/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N"
+        }
+      ]
+    },
+    {
+      "id": "network_security_misconfiguration",
+      "children": [
+        {
+          "id": "telnet_enabled",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        }
+      ]
+    },
+    {
+      "id": "physical_security_issues",
+      "children": [
+        {
+          "id": "bypass_of_physical_access_control",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
+        },
+        {
+          "id": "weakness_in_physical_access_control",
           "children": [
             {
-              "id": "lack_of_salt",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N"
+              "id": "cloneable_key",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N"
             },
             {
-              "id": "use_of_predictable_salt",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N"
+              "id": "commonly_keyed_system",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N"
             },
             {
-              "id": "predictable_hash_collision",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N"
+              "id": "master_key_identification",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
             }
           ]
-        },
+        }
+      ]
+    },
+    {
+      "id": "privacy_concerns",
+      "children": [
         {
-          "id": "insufficient_verification_of_data_authenticity",
+          "id": "unnecessary_data_collection",
           "children": [
             {
-              "id": "identity_check_value",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"
-            },
-            {
-              "id": "cryptographic_signature",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"
+              "id": "wifi_ssid_password",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
             }
           ]
+        }
+      ]
+    },
+    {
+      "id": "protocol_specific_misconfiguration",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+    },
+    {
+      "id": "sensitive_data_exposure",
+      "children": [
+        {
+          "id": "disclosure_of_known_public_information",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
         },
         {
-          "id": "insecure_key_generation",
+          "id": "disclosure_of_secrets",
           "children": [
             {
-              "id": "improper_asymmetric_prime_selection",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L"
+              "id": "data_traffic_spam",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "improper_asymmetric_exponent_selection",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L"
+              "id": "for_internal_asset",
+              "cvss_v3": "AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L"
             },
             {
-              "id": "insufficient_key_stretching",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"
+              "id": "for_publicly_accessible_asset",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"
             },
             {
-              "id": "insufficient_key_space",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"
+              "id": "intentionally_public_sample_or_invalid",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "key_exchange_without_entity_authentication",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"
-            }
-          ]
-        },
-        {
-          "id": "key_reuse",
-          "children": [
-            {
-              "id": "lack_of_perfect_forward_secrecy",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"
+              "id": "non_corporate_user",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "intra_environment",
-              "cvss_v3": "AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L"
+              "id": "pay_per_use_abuse",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"
             },
             {
-              "id": "inter_environment",
-              "cvss_v3": "AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"
+              "id": "pii_leakage_exposure",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"
             }
           ]
         },
         {
-          "id": "broken_cryptography",
+          "id": "exif_geolocation_data_not_stripped_from_uploaded_images",
           "children": [
             {
-              "id": "use_of_broken_cryptographic_primitive",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"
+              "id": "automatic_user_enumeration",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"
             },
             {
-              "id": "use_of_vulnerable_cryptographic_library",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"
+              "id": "manual_user_enumeration",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
             }
           ]
         },
         {
-          "id": "side_channel_attack",
+          "id": "internal_ip_disclosure",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "json_hijacking",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "mixed_content",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:N"
+        },
+        {
+          "id": "non_sensitive_token_in_url",
+          "cvss_v3": "AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "sensitive_data_hardcoded",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "sensitive_token_in_url",
+          "cvss_v3": "AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
+        },
+        {
+          "id": "token_leakage_via_referer",
           "children": [
             {
-              "id": "padding_oracle_attack",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
+              "id": "over_http",
+              "cvss_v3": "AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N"
             },
             {
-              "id": "timing_attack",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
+              "id": "password_reset_token",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
             },
             {
-              "id": "power_analysis_attack",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
+              "id": "trusted_third_party",
+              "cvss_v3": "AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "emanations_attack",
-              "cvss_v3": "AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
+              "id": "untrusted_third_party",
+              "cvss_v3": "AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N"
+            }
+          ]
+        },
+        {
+          "id": "via_localstorage_sessionstorage",
+          "children": [
+            {
+              "id": "non_sensitive_token",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "differential_fault_analysis",
-              "cvss_v3": "AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
+              "id": "sensitive_token",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
             }
           ]
         },
         {
-          "id": "use_of_expired_cryptographic_key_or_cert",
-          "cvss_v3": "AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L"
+          "id": "visible_detailed_error_page",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
+          "children": [
+            {
+              "id": "detailed_server_configuration",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"
+            }
+          ]
         },
         {
-          "id": "incomplete_cleanup_of_keying_material",
-          "cvss_v3": "AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L"
-        }
-      ]
-    },
-    {
-      "id": "privacy_concerns",
-      "children": [
-        {
-          "id": "unnecessary_data_collection",
+          "id": "weak_password_reset_implementation",
+          "cvss_v3": "AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N",
           "children": [
             {
-              "id": "wifi_ssid_password",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
+              "id": "token_leakage_via_host_header_poisoning",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L"
             }
           ]
+        },
+        {
+          "id": "xssi",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N"
         }
       ]
     },
     {
-      "id": "network_security_misconfiguration",
+      "id": "server_security_misconfiguration",
       "children": [
         {
-          "id": "telnet_enabled",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        }
-      ]
-    },
-    {
-      "id": "mobile_security_misconfiguration",
-      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
-      "children": [
-        {
-          "id": "clipboard_enabled",
-          "cvss_v3": "AV:L/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N"
+          "id": "bitsquatting",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
         },
         {
-          "id": "auto_backup_allowed_by_default",
-          "cvss_v3": "AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N"
-        }
-      ]
-    },
-    {
-      "id": "client_side_injection",
-      "children": [
+          "id": "cache_poisoning",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
         {
-          "id": "binary_planting",
+          "id": "captcha",
           "children": [
             {
-              "id": "privilege_escalation",
-              "cvss_v3": "AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
+              "id": "brute_force",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "non_default_folder_privilege_escalation",
-              "cvss_v3": "AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N"
+              "id": "implementation_vulnerability",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"
             },
             {
-              "id": "no_privilege_escalation",
-              "cvss_v3": "AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:N"
+              "id": "missing",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
             }
           ]
-        }
-      ]
-    },
-    {
-      "id": "automotive_security_misconfiguration",
-      "children": [
+        },
         {
-          "id": "infotainment_radio_head_unit",
+          "id": "clickjacking",
           "children": [
             {
-              "id": "sensitive_data_leakage_exposure",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"
+              "id": "form_input",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"
             },
             {
-              "id": "ota_firmware_manipulation",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"
+              "id": "non_sensitive_action",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "code_execution_can_bus_pivot",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"
-            },
+              "id": "sensitive_action",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"
+            }
+          ]
+        },
+        {
+          "id": "cookie_scoped_to_parent_domain",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "dbms_misconfiguration",
+          "children": [
             {
-              "id": "code_execution_no_can_bus_pivot",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L"
-            },
+              "id": "excessively_privileged_user_dba",
+              "cvss_v3": "AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:N"
+            }
+          ]
+        },
+        {
+          "id": "directory_listing_enabled",
+          "children": [
             {
-              "id": "unauthorized_access_to_services",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L"
+              "id": "non_sensitive_data_exposure",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "source_code_dump",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L"
-            },
+              "id": "sensitive_data_exposure",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+            }
+          ]
+        },
+        {
+          "id": "email_verification_bypass",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "exposed_admin_portal",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "fingerprinting_banner_disclosure",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "insecure_ssl",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "lack_of_password_confirmation",
+          "cvss_v3": "AV:P/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L",
+          "children": [
             {
-              "id": "dos_brick",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"
-            },
+              "id": "manage_two_fa",
+              "cvss_v3": "AV:P/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L"
+            }
+          ]
+        },
+        {
+          "id": "lack_of_security_headers",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N",
+          "children": [
             {
-              "id": "default_credentials",
+              "id": "cache_control_for_a_sensitive_page",
               "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
             }
           ]
         },
         {
-          "id": "rf_hub",
+          "id": "mail_server_misconfiguration",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
           "children": [
             {
-              "id": "key_fob_cloning",
-              "cvss_v3": "AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"
-            },
-            {
-              "id": "can_injection_interaction",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
-            },
-            {
-              "id": "data_leakage_pull_encryption_mechanism",
-              "cvss_v3": "AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L"
+              "id": "email_spoofing_to_inbox_due_to_missing_or_misconfigured_dmarc_on_email_domain",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N"
             },
             {
-              "id": "unauthorized_access_turn_on",
-              "cvss_v3": "AV:A/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L"
-            },
+              "id": "no_spoofing_protection_on_email_domain",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"
+            }
+          ]
+        },
+        {
+          "id": "misconfigured_dns",
+          "children": [
             {
-              "id": "roll_jam",
-              "cvss_v3": "AV:A/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
+              "id": "missing_caa_record",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "replay",
-              "cvss_v3": "AV:A/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
+              "id": "subdomain_takeover",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
             },
             {
-              "id": "relay",
-              "cvss_v3": "AV:A/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
+              "id": "zone_transfer",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"
             }
           ]
         },
         {
-          "id": "can",
+          "id": "missing_dnssec",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "missing_secure_or_httponly_cookie_flag",
           "children": [
             {
-              "id": "injection_battery_management_system",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+              "id": "non_session_cookie",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "injection_steering_control",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
-            },
+              "id": "session_token",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
+            }
+          ]
+        },
+        {
+          "id": "missing_subresource_integrity",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "no_rate_limiting_on_form",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
+          "children": [
             {
-              "id": "injection_pyrotechnical_device_deployment_tool",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+              "id": "change_password",
+              "cvss_v3": "AV:P/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L"
             },
             {
-              "id": "injection_headlights",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
-            },
+              "id": "login",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
+            }
+          ]
+        },
+        {
+          "id": "oauth_misconfiguration",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
+          "children": [
             {
-              "id": "injection_sensors",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+              "id": "account_squatting",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"
             },
             {
-              "id": "injection_vehicle_anti_theft_systems",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
-            },
+              "id": "account_takeover",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
+            }
+          ]
+        },
+        {
+          "id": "path_traversal",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+        },
+        {
+          "id": "potentially_unsafe_http_method_enabled",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "race_condition",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "request_smuggling",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+        },
+        {
+          "id": "rfd",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N"
+        },
+        {
+          "id": "same_site_scripting",
+          "cvss_v3": "AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N"
+        },
+        {
+          "id": "server_side_request_forgery_ssrf",
+          "children": [
             {
-              "id": "injection_powertrain",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+              "id": "external_dns_query_only",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
             },
             {
-              "id": "injection_basic_safety_message",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+              "id": "external_low_impact",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
             },
             {
-              "id": "injection_disallowed_messages",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"
+              "id": "internal_high_impact",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N"
             },
             {
-              "id": "injection_dos",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"
+              "id": "internal_scan_and_or_medium_impact",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N"
             }
           ]
         },
         {
-          "id": "battery_management_system",
+          "id": "software_package_takeover",
+          "cvss_v3": "AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
+        },
+        {
+          "id": "ssl_attack_breach_poodle_etc",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N"
+        },
+        {
+          "id": "unsafe_cross_origin_resource_sharing",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N"
+        },
+        {
+          "id": "unsafe_file_upload",
           "children": [
             {
-              "id": "firmware_dump",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"
+              "id": "file_extension_filter_bypass",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
             },
             {
-              "id": "fraudulent_interface",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H"
+              "id": "no_antivirus",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N"
+            },
+            {
+              "id": "no_size_limit",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"
             }
           ]
         },
         {
-          "id": "gnss_gps",
-          "children": [
-            {
-              "id": "spoofing",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
-            }
-          ]
+          "id": "username_enumeration",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
         },
         {
-          "id": "immobilizer",
+          "id": "using_default_credentials",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"
+        },
+        {
+          "id": "waf_bypass",
           "children": [
             {
-              "id": "engine_start",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+              "id": "direct_server_access",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"
             }
           ]
-        },
+        }
+      ]
+    },
+    {
+      "id": "server_side_injection",
+      "children": [
         {
-          "id": "abs",
+          "id": "content_spoofing",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N",
           "children": [
             {
-              "id": "unintended_acceleration_brake",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+              "id": "email_html_injection",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"
+            },
+            {
+              "id": "external_authentication_injection",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"
+            },
+            {
+              "id": "flash_based_external_authentication_injection",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
+            },
+            {
+              "id": "html_content_injection",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+            },
+            {
+              "id": "iframe_injection",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N"
+            },
+            {
+              "id": "impersonation_via_broken_link_hijacking",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"
             }
           ]
         },
         {
-          "id": "rsu",
+          "id": "file_inclusion",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N"
+        },
+        {
+          "id": "http_response_manipulation",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"
+        },
+        {
+          "id": "ldap_injection",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+        },
+        {
+          "id": "parameter_pollution",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "remote_code_execution_rce",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+        },
+        {
+          "id": "sql_injection",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N"
+        },
+        {
+          "id": "ssti",
           "children": [
             {
-              "id": "sybil_attack",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H"
+              "id": "basic",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
+            },
+            {
+              "id": "custom",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
             }
           ]
+        },
+        {
+          "id": "xml_external_entity_injection_xxe",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L"
         }
       ]
     },
     {
-      "id": "indicators_of_compromise",
+      "id": "smart_contract_misconfiguration",
       "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
     },
     {
-      "id": "ai_application_security",
+      "id": "societal_biases",
       "children": [
         {
-          "id": "llm_security",
+          "id": "confirmation_bias",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"
+        },
+        {
+          "id": "systemic_bias",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
+        }
+      ]
+    },
+    {
+      "id": "unvalidated_redirects_and_forwards",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
+      "children": [
+        {
+          "id": "open_redirect",
           "children": [
             {
-              "id": "prompt_injection",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L"
-            },
-            {
-              "id": "llm_output_handling",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L"
-            },
-            {
-              "id": "training_data_poisoning",
-              "cvss_v3": "AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H"
-            },
-            {
-              "id": "excessive_agency_permission_manipulation",
-              "cvss_v3": "AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"
+              "id": "get_based",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"
             }
           ]
         }
       ]
+    },
+    {
+      "id": "using_components_with_known_vulnerabilities",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
+      "children": [
+        {
+          "id": "rosetta_flash",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
+        }
+      ]
+    },
+    {
+      "id": "zero_knowledge_security_misconfiguration",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
     }
   ]
-}
+}
\ No newline at end of file
diff --git a/mappings/cwe/cwe.json b/mappings/cwe/cwe.json
index 36457d1d..cadb68a2 100644
--- a/mappings/cwe/cwe.json
+++ b/mappings/cwe/cwe.json
@@ -4,815 +4,1158 @@
   },
   "content": [
     {
-      "id": "server_security_misconfiguration",
-      "cwe": ["CWE-16"],
+      "id": "ai_application_security",
+      "cwe": null
+    },
+    {
+      "id": "algorithmic_biases",
+      "cwe": null,
       "children": [
         {
-          "id": "server_side_request_forgery_ssrf",
-          "cwe": ["CWE-918", "CWE-441"]
+          "id": "aggregation_bias",
+          "cwe": null
         },
         {
-          "id": "unsafe_cross_origin_resource_sharing",
-          "cwe": ["CWE-942"]
+          "id": "processing_bias",
+          "cwe": null
+        }
+      ]
+    },
+    {
+      "id": "application_level_denial_of_service_dos",
+      "cwe": [
+        "CWE-400"
+      ]
+    },
+    {
+      "id": "automotive_security_misconfiguration",
+      "cwe": null,
+      "children": [
+        {
+          "id": "abs",
+          "cwe": null
         },
         {
-          "id": "request_smuggling",
-          "cwe": ["CWE-444"]
+          "id": "battery_management_system",
+          "cwe": null
         },
         {
-          "id": "path_traversal",
-          "cwe": ["CWE-22", "CWE-73"]
+          "id": "can",
+          "cwe": null
         },
         {
-          "id": "directory_listing_enabled",
-          "cwe": ["CWE-548"]
+          "id": "gnss_gps",
+          "cwe": null
         },
         {
-          "id": "ssl_attack_breach_poodle_etc",
-          "cwe": ["CWE-310"]
+          "id": "immobilizer",
+          "cwe": null
         },
         {
-          "id": "using_default_credentials",
-          "cwe": ["CWE-255", "CWE-521"]
+          "id": "infotainment_radio_head_unit",
+          "cwe": null
         },
         {
-          "id": "misconfigured_dns",
+          "id": "rf_hub",
+          "cwe": null
+        },
+        {
+          "id": "rsu",
+          "cwe": null
+        }
+      ]
+    },
+    {
+      "id": "blockchain_infrastructure_misconfiguration",
+      "cwe": null
+    },
+    {
+      "id": "broken_access_control",
+      "cwe": [
+        "CWE-723"
+      ],
+      "children": [
+        {
+          "id": "exposed_sensitive_android_intent",
+          "cwe": [
+            "CWE-927"
+          ]
+        },
+        {
+          "id": "exposed_sensitive_ios_url_scheme",
+          "cwe": [
+            "CWE-939"
+          ]
+        },
+        {
+          "id": "idor",
+          "cwe": [
+            "CWE-932"
+          ]
+        },
+        {
+          "id": "privilege_escalation",
+          "cwe": [
+            "CWE-269"
+          ]
+        },
+        {
+          "id": "username_enumeration",
+          "cwe": [
+            "CWE-200"
+          ]
+        }
+      ]
+    },
+    {
+      "id": "broken_authentication_and_session_management",
+      "cwe": [
+        "CWE-930"
+      ],
+      "children": [
+        {
+          "id": "authentication_bypass",
+          "cwe": [
+            "CWE-287"
+          ]
+        },
+        {
+          "id": "cleartext_transmission_of_session_token",
+          "cwe": [
+            "CWE-319"
+          ]
+        },
+        {
+          "id": "concurrent_logins",
+          "cwe": [
+            "CWE-1018"
+          ]
+        },
+        {
+          "id": "failure_to_invalidate_session",
+          "cwe": [
+            "CWE-613"
+          ]
+        },
+        {
+          "id": "session_fixation",
+          "cwe": [
+            "CWE-384"
+          ]
+        },
+        {
+          "id": "two_fa_bypass",
+          "cwe": [
+            "CWE-304"
+          ]
+        },
+        {
+          "id": "weak_login_function",
+          "cwe": [
+            "CWE-523"
+          ]
+        },
+        {
+          "id": "weak_registration_implementation",
           "children": [
             {
-              "id": "zone_transfer",
-              "cwe": ["CWE-669"]
+              "id": "over_http",
+              "cwe": [
+                "CWE-311"
+              ]
             }
           ]
-        },
+        }
+      ]
+    },
+    {
+      "id": "client_side_injection",
+      "cwe": [
+        "CWE-929"
+      ]
+    },
+    {
+      "id": "cross_site_request_forgery_csrf",
+      "cwe": [
+        "CWE-352"
+      ]
+    },
+    {
+      "id": "cross_site_scripting_xss",
+      "cwe": [
+        "CWE-79"
+      ]
+    },
+    {
+      "id": "cryptographic_weakness",
+      "cwe": [
+        "CWE-310",
+        "CWE-1205"
+      ],
+      "children": [
         {
-          "id": "dbms_misconfiguration",
+          "id": "broken_cryptography",
+          "cwe": [
+            "CWE-327"
+          ],
           "children": [
             {
-              "id": "excessively_privileged_user_dba",
-              "cwe": ["CWE-250"]
+              "id": "use_of_broken_cryptographic_primitive",
+              "cwe": [
+                "CWE-327"
+              ]
+            },
+            {
+              "id": "use_of_vulnerable_cryptographic_library",
+              "cwe": [
+                "CWE-327"
+              ]
             }
           ]
         },
         {
-          "id": "lack_of_password_confirmation",
+          "id": "incomplete_cleanup_of_keying_material",
+          "cwe": [
+            "CWE-459"
+          ]
+        },
+        {
+          "id": "insecure_implementation",
+          "cwe": [
+            "CWE-573"
+          ],
           "children": [
             {
-              "id": "change_password",
-              "cwe": ["CWE-620"]
+              "id": "improper_following_of_specification",
+              "cwe": [
+                "CWE-358",
+                "CWE-573"
+              ]
+            },
+            {
+              "id": "missing_cryptographic_step",
+              "cwe": [
+                "CWE-325"
+              ]
             }
           ]
         },
         {
-          "id": "no_rate_limiting_on_form",
-          "cwe": ["CWE-799"],
+          "id": "insecure_key_generation",
+          "cwe": null,
           "children": [
             {
-              "id": "login",
-              "cwe": ["CWE-307"]
+              "id": "improper_asymmetric_exponent_selection",
+              "cwe": [
+                "CWE-326",
+                "CWE-1240"
+              ]
+            },
+            {
+              "id": "improper_asymmetric_prime_selection",
+              "cwe": [
+                "CWE-326",
+                "CWE-1240"
+              ]
+            },
+            {
+              "id": "insufficient_key_space",
+              "cwe": [
+                "CWE-326",
+                "CWE-331",
+                "CWE-1240"
+              ]
+            },
+            {
+              "id": "insufficient_key_stretching",
+              "cwe": [
+                "CWE-326",
+                "CWE-1240"
+              ]
+            },
+            {
+              "id": "key_exchange_without_entity_authentication",
+              "cwe": [
+                "CWE-322"
+              ]
             }
           ]
         },
         {
-          "id": "unsafe_file_upload",
+          "id": "insufficient_entropy",
+          "cwe": [
+            "CWE-330",
+            "CWE-331"
+          ],
           "children": [
             {
-              "id": "file_extension_filter_bypass",
-              "cwe": ["CWE-434", "CWE-646"]
+              "id": "initialization_vector_reuse",
+              "cwe": [
+                "CWE-1204"
+              ]
+            },
+            {
+              "id": "limited_rng_entropy_source",
+              "cwe": [
+                "CWE-338",
+                "CWE-332"
+              ]
+            },
+            {
+              "id": "predictable_initialization_vector",
+              "cwe": [
+                "CWE-340"
+              ]
+            },
+            {
+              "id": "predictable_prng_seed",
+              "cwe": [
+                "CWE-337"
+              ]
+            },
+            {
+              "id": "prng_seed_reuse",
+              "cwe": [
+                "CWE-336"
+              ]
+            },
+            {
+              "id": "small_seed_space_in_prng",
+              "cwe": [
+                "CWE-339",
+                "CWE-334"
+              ]
+            },
+            {
+              "id": "use_of_trng_for_nonsecurity_purpose",
+              "cwe": [
+                "CWE-333"
+              ]
             }
           ]
         },
         {
-          "id": "missing_secure_or_httponly_cookie_flag",
-          "cwe": ["CWE-614", "CWE-1004"]
-        },
-        {
-          "id": "clickjacking",
-          "cwe": ["CWE-451"]
-        },
-        {
-          "id": "oauth_misconfiguration",
-          "cwe": ["CWE-303"],
+          "id": "insufficient_verification_of_data_authenticity",
+          "cwe": [
+            "CWE-345"
+          ],
           "children": [
             {
-              "id": "missing_state_parameter",
-              "cwe": ["CWE-352"]
+              "id": "cryptographic_signature",
+              "cwe": [
+                "CWE-347"
+              ]
             },
             {
-              "id": "insecure_redirect_uri",
-              "cwe": ["CWE-601"]
+              "id": "identity_check_value",
+              "cwe": [
+                "CWE-353",
+                "CWE-354",
+                "CWE-924"
+              ]
             }
           ]
         },
         {
-          "id": "captcha",
-          "cwe": ["CWE-804"]
-        },
-        {
-          "id": "username_enumeration",
-          "cwe": ["CWE-204"]
+          "id": "key_reuse",
+          "cwe": [
+            "CWE-323"
+          ],
+          "children": [
+            {
+              "id": "inter_environment",
+              "cwe": [
+                "CWE-323"
+              ]
+            },
+            {
+              "id": "intra_environment",
+              "cwe": [
+                "CWE-323"
+              ]
+            },
+            {
+              "id": "lack_of_perfect_forward_secrecy",
+              "cwe": [
+                "CWE-323"
+              ]
+            }
+          ]
         },
         {
-          "id": "insecure_ssl",
+          "id": "side_channel_attack",
+          "cwe": [
+            "CWE-203",
+            "CWE-1300"
+          ],
           "children": [
             {
-              "id": "insecure_cipher_suite",
-              "cwe": ["CWE-326"]
+              "id": "differential_fault_analysis",
+              "cwe": [
+                "CWE-204",
+                "CWE-205"
+              ]
+            },
+            {
+              "id": "emanations_attack",
+              "cwe": [
+                "CWE-1300"
+              ]
+            },
+            {
+              "id": "padding_oracle_attack",
+              "cwe": [
+                "CWE-780"
+              ]
+            },
+            {
+              "id": "power_analysis_attack",
+              "cwe": [
+                "CWE-1300"
+              ]
+            },
+            {
+              "id": "timing_attack",
+              "cwe": [
+                "CWE-208"
+              ]
             }
           ]
         },
         {
-          "id": "lack_of_security_headers",
+          "id": "use_of_expired_cryptographic_key_or_cert",
+          "cwe": [
+            "CWE-295",
+            "CWE-298",
+            "CWE-299",
+            "CWE-324"
+          ]
+        },
+        {
+          "id": "weak_hash",
+          "cwe": [
+            "CWE-328"
+          ],
           "children": [
             {
-              "id": "cache_control_for_a_non_sensitive_page",
-              "cwe": ["CWE-525"]
+              "id": "lack_of_salt",
+              "cwe": [
+                "CWE-759",
+                "CWE-916"
+              ]
             },
             {
-              "id": "cache_control_for_a_sensitive_page",
-              "cwe": ["CWE-525"]
+              "id": "predictable_hash_collision",
+              "cwe": [
+                "CWE-328"
+              ]
+            },
+            {
+              "id": "use_of_predictable_salt",
+              "cwe": [
+                "CWE-760"
+              ]
             }
           ]
-        },
+        }
+      ]
+    },
+    {
+      "id": "data_biases",
+      "cwe": null,
+      "children": [
         {
-          "id": "race_condition",
-          "cwe": ["CWE-362", "CWE-366", "CWE-368", "CWE-421"]
+          "id": "pre_existing_bias",
+          "cwe": null
         },
         {
-          "id": "cache_poisoning",
-          "cwe": ["CWE-444"]
+          "id": "representation_bias",
+          "cwe": null
         }
       ]
     },
     {
-      "id": "server_side_injection",
-      "cwe": ["CWE-929"],
+      "id": "decentralized_application_misconfiguration",
+      "cwe": null
+    },
+    {
+      "id": "developer_biases",
+      "cwe": null,
+      "children": [
+        {
+          "id": "implicit_bias",
+          "cwe": null
+        }
+      ]
+    },
+    {
+      "id": "external_behavior",
+      "cwe": null
+    },
+    {
+      "id": "indicators_of_compromise",
+      "cwe": null
+    },
+    {
+      "id": "insecure_data_storage",
+      "cwe": [
+        "CWE-729",
+        "CWE-922"
+      ],
       "children": [
         {
-          "id": "ldap_injection",
-          "cwe": ["CWE-90"]
-        },
-        {
-          "id": "file_inclusion",
-          "cwe": ["CWE-73", "CWE-714"]
-        },
-        {
-          "id": "remote_code_execution_rce",
-          "cwe": ["CWE-77", "CWE-78", "CWE-94", "CWE-95"]
-        },
-        {
-          "id": "sql_injection",
-          "cwe": ["CWE-89"]
-        },
-        {
-          "id": "xml_external_entity_injection_xxe",
-          "cwe": ["CWE-611"]
+          "id": "non_sensitive_application_data_stored_unencrypted",
+          "cwe": [
+            "CWE-312"
+          ]
         },
         {
-          "id": "http_response_manipulation",
-          "children": [
-            {
-              "id": "response_splitting_crlf",
-              "cwe": ["CWE-113"]
-            }
+          "id": "sensitive_application_data_stored_unencrypted",
+          "cwe": [
+            "CWE-312"
           ]
         },
         {
-          "id": "content_spoofing",
-          "cwe": ["CWE-451"],
+          "id": "server_side_credentials_storage",
+          "cwe": [
+            "CWE-522"
+          ],
           "children": [
             {
-              "id": "homograph_idn_based",
-              "cwe": ["CWE-1007"]
+              "id": "plaintext",
+              "cwe": [
+                "CWE-256"
+              ]
             }
           ]
-        },
-        {
-          "id": "ssti",
-          "cwe": ["CWE-94"]
         }
       ]
     },
     {
-      "id": "broken_authentication_and_session_management",
-      "cwe": ["CWE-930"],
+      "id": "insecure_data_transport",
+      "cwe": [
+        "CWE-311",
+        "CWE-319"
+      ],
       "children": [
         {
-          "id": "authentication_bypass",
-          "cwe": ["CWE-287"]
-        },
-        {
-          "id": "two_fa_bypass",
-          "cwe": ["CWE-304"]
-        },
-        {
-          "id": "cleartext_transmission_of_session_token",
-          "cwe": ["CWE-319"]
-        },
-        {
-          "id": "weak_login_function",
-          "cwe": ["CWE-523"]
-        },
-        {
-          "id": "session_fixation",
-          "cwe": ["CWE-384"]
-        },
-        {
-          "id": "failure_to_invalidate_session",
-          "cwe": ["CWE-613"]
-        },
-        {
-          "id": "concurrent_logins",
-          "cwe": ["CWE-1018"]
+          "id": "cleartext_transmission_of_sensitive_data",
+          "cwe": [
+            "CWE-319"
+          ]
         },
         {
-          "id": "weak_registration_implementation",
+          "id": "executable_download",
           "children": [
             {
-              "id": "over_http",
-              "cwe": ["CWE-311"]
+              "id": "no_secure_integrity_check",
+              "cwe": [
+                "CWE-353",
+                "CWE-354",
+                "CWE-494"
+              ]
             }
           ]
         }
       ]
     },
     {
-      "id": "sensitive_data_exposure",
-      "cwe": ["CWE-934"],
+      "id": "insecure_os_firmware",
       "children": [
         {
-          "id": "disclosure_of_secrets",
+          "id": "command_injection",
+          "cwe": [
+            "CWE-77"
+          ]
+        },
+        {
+          "id": "data_not_encrypted_at_rest",
           "children": [
             {
-              "id": "pii_leakage_exposure",
-              "cwe": ["CWE-200"]
+              "id": "non_sensitive",
+              "cwe": [
+                "CWE-311"
+              ]
+            },
+            {
+              "id": "sensitive",
+              "cwe": [
+                "CWE-311"
+              ]
             }
           ]
         },
         {
-          "id": "exif_geolocation_data_not_stripped_from_uploaded_images",
-          "cwe": ["CWE-200"]
+          "id": "failure_to_remove_sensitive_artifacts_from_disk",
+          "cwe": [
+            "CWE-459"
+          ]
         },
         {
-          "id": "visible_detailed_error_page",
-          "cwe": ["CWE-209", "CWE-215"]
+          "id": "hardcoded_password",
+          "cwe": [
+            "CWE-259"
+          ]
         },
         {
-          "id": "disclosure_of_known_public_information",
-          "cwe": ["CWE-200"]
+          "id": "kiosk_escape_or_breakout",
+          "cwe": [
+            "CWE-284"
+          ]
         },
         {
-          "id": "token_leakage_via_referer",
-          "cwe": ["CWE-200"]
+          "id": "local_administrator_on_default_environment",
+          "cwe": [
+            "CWE-276"
+          ]
         },
         {
-          "id": "sensitive_token_in_url",
-          "cwe": ["CWE-200"]
+          "id": "over_permissioned_credentials_on_storage",
+          "cwe": [
+            "CWE-250"
+          ]
         },
         {
-          "id": "non_sensitive_token_in_url",
-          "cwe": ["CWE-200"]
+          "id": "poorly_configured_disk_encryption",
+          "cwe": [
+            "CWE-326"
+          ]
         },
         {
-          "id": "weak_password_reset_implementation",
-          "cwe": ["CWE-640"]
+          "id": "poorly_configured_operating_system_security",
+          "cwe": [
+            "CWE-16"
+          ]
         },
         {
-          "id": "via_localstorage_sessionstorage",
-          "cwe": ["CWE-922"]
+          "id": "recovery_of_disk_contains_sensitive_material",
+          "cwe": [
+            "CWE-522"
+          ]
+        },
+        {
+          "id": "shared_credentials_on_storage",
+          "cwe": [
+            "CWE-798"
+          ]
+        },
+        {
+          "id": "weakness_in_firmware_updates",
+          "children": [
+            {
+              "id": "firmware_cannot_be_updated",
+              "cwe": [
+                "CWE-434"
+              ]
+            },
+            {
+              "id": "firmware_does_not_validate_update_integrity",
+              "cwe": [
+                "CWE-434"
+              ]
+            },
+            {
+              "id": "firmware_is_not_encrypted",
+              "cwe": [
+                "CWE-434"
+              ]
+            }
+          ]
         }
       ]
     },
     {
-      "id": "cross_site_scripting_xss",
-      "cwe": ["CWE-79"]
-    },
-    {
-      "id": "broken_access_control",
-      "cwe": ["CWE-723"],
+      "id": "insufficient_security_configurability",
+      "cwe": [
+        "CWE-16"
+      ],
       "children": [
         {
-          "id": "idor",
-          "cwe": ["CWE-932"]
+          "id": "no_password_policy",
+          "cwe": [
+            "CWE-521"
+          ]
         },
         {
-          "id": "username_enumeration",
-          "cwe": ["CWE-200"]
+          "id": "password_policy_bypass",
+          "cwe": [
+            "CWE-521"
+          ]
         },
         {
-          "id": "exposed_sensitive_android_intent",
-          "cwe": ["CWE-927"]
+          "id": "weak_password_policy",
+          "cwe": [
+            "CWE-521"
+          ]
         },
         {
-          "id": "privilege_escalation",
-          "cwe": ["CWE-269"]
-        },        
-        {
-          "id": "exposed_sensitive_ios_url_scheme",
-          "cwe": ["CWE-939"]
+          "id": "weak_password_reset_implementation",
+          "cwe": [
+            "CWE-640"
+          ]
         }
       ]
     },
     {
-      "id": "cross_site_request_forgery_csrf",
-      "cwe": ["CWE-352"]
-    },
-    {
-      "id": "application_level_denial_of_service_dos",
-      "cwe": ["CWE-400"]
+      "id": "lack_of_binary_hardening",
+      "cwe": [
+        "CWE-693"
+      ]
     },
     {
-      "id": "unvalidated_redirects_and_forwards",
-      "cwe": ["CWE-601"],
+      "id": "misinterpretation_biases",
+      "cwe": null,
       "children": [
         {
-          "id": "open_redirect",
-          "cwe": ["CWE-601"]
-        },
-        {
-          "id": "tabnabbing",
-          "cwe": ["CWE-1022"]
+          "id": "context_ignorance",
+          "cwe": null
         }
       ]
     },
     {
-      "id": "external_behavior",
-      "cwe": null
-    },
-    {
-      "id": "insufficient_security_configurability",
-      "cwe": ["CWE-16"],
-      "children": [
-        {
-          "id": "weak_password_policy",
-          "cwe": ["CWE-521"]
-        },
-        {
-          "id": "no_password_policy",
-          "cwe": ["CWE-521"]
-        },
-        {
-          "id": "password_policy_bypass",
-          "cwe": ["CWE-521"]
-        },
-        {
-          "id": "weak_password_reset_implementation",
-          "cwe": ["CWE-640"]
-        }
+      "id": "mobile_security_misconfiguration",
+      "cwe": [
+        "CWE-919"
       ]
     },
     {
-      "id": "using_components_with_known_vulnerabilities",
-      "cwe": ["CWE-937"]
+      "id": "network_security_misconfiguration",
+      "cwe": [
+        "CWE-16"
+      ]
     },
     {
-      "id": "insecure_data_storage",
-      "cwe": ["CWE-729", "CWE-922"],
+      "id": "physical_security_issues",
       "children": [
         {
-          "id": "sensitive_application_data_stored_unencrypted",
-          "cwe": ["CWE-312"]
+          "id": "bypass_of_physical_access_control",
+          "cwe": [
+            "CWE-1300"
+          ]
         },
         {
-          "id": "server_side_credentials_storage",
-          "cwe": ["CWE-522"],
+          "id": "weakness_in_physical_access_control",
           "children": [
             {
-              "id": "plaintext",
-              "cwe": ["CWE-256"]
+              "id": "cloneable_key",
+              "cwe": [
+                "CWE-1300"
+              ]
+            },
+            {
+              "id": "commonly_keyed_system",
+              "cwe": [
+                "CWE-284"
+              ]
+            },
+            {
+              "id": "master_key_identification",
+              "cwe": [
+                "CWE-284"
+              ]
             }
           ]
-        },
-        {
-          "id": "non_sensitive_application_data_stored_unencrypted",
-          "cwe": ["CWE-312"]
         }
       ]
     },
     {
-      "id": "ai_application_security",
-      "cwe": null
+      "id": "privacy_concerns",
+      "cwe": [
+        "CWE-359"
+      ]
     },
     {
-      "id": "lack_of_binary_hardening",
-      "cwe": ["CWE-693"]
+      "id": "protocol_specific_misconfiguration",
+      "cwe": null
     },
     {
-      "id": "insecure_data_transport",
-      "cwe": ["CWE-311", "CWE-319"],
+      "id": "sensitive_data_exposure",
+      "cwe": [
+        "CWE-934"
+      ],
       "children": [
         {
-          "id": "cleartext_transmission_of_sensitive_data",
-          "cwe": ["CWE-319"]
+          "id": "disclosure_of_known_public_information",
+          "cwe": [
+            "CWE-200"
+          ]
         },
         {
-          "id": "executable_download",
+          "id": "disclosure_of_secrets",
           "children": [
             {
-              "id": "no_secure_integrity_check",
-              "cwe": ["CWE-353", "CWE-354", "CWE-494"]
+              "id": "pii_leakage_exposure",
+              "cwe": [
+                "CWE-200"
+              ]
             }
           ]
-        }
-      ]
-    },
-    {
-      "id": "physical_security_issues",
-      "children": [
-        {
-          "id": "bypass_of_physical_access_control",
-          "cwe": ["CWE-1300"]
-        },
-        {
-          "id": "weakness_in_physical_access_control",
-      "children": [
-        {
-          "id": "cloneable_key",
-          "cwe": ["CWE-1300"]          
         },
         {
-          "id": "master_key_identification",
-          "cwe": ["CWE-284"]          
-        },
-        {
-          "id": "commonly_keyed_system",
-          "cwe": ["CWE-284"]          
-        }        
+          "id": "exif_geolocation_data_not_stripped_from_uploaded_images",
+          "cwe": [
+            "CWE-200"
           ]
-        }        
-      ]
-    },
-    {
-      "id": "insecure_os_firmware",
-      "children": [
-        {
-          "id": "command_injection",
-          "cwe": ["CWE-77"]
-        },
-        {
-          "id": "hardcoded_password",
-          "cwe": ["CWE-259"]
-        },
-        {
-          "id": "weakness_in_firmware_updates",
-      "children": [
-        {
-          "id": "firmware_cannot_be_updated",
-          "cwe": ["CWE-434"]
-        },
-        {
-          "id": "firmware_does_not_validate_update_integrity",
-          "cwe": ["CWE-434"]
         },
         {
-          "id": "firmware_is_not_encrypted",
-          "cwe": ["CWE-434"]
-        }                
-         ]
+          "id": "non_sensitive_token_in_url",
+          "cwe": [
+            "CWE-200"
+          ]
         },
         {
-          "id": "kiosk_escape_or_breakout",
-          "cwe": ["CWE-284"]
+          "id": "sensitive_token_in_url",
+          "cwe": [
+            "CWE-200"
+          ]
         },
         {
-          "id": "poorly_configured_disk_encryption",
-          "cwe": ["CWE-326"]
-        }, 
-        {
-          "id": "shared_credentials_on_storage",
-          "cwe": ["CWE-798"]
-        }, 
-        {
-          "id": "over_permissioned_credentials_on_storage",
-          "cwe": ["CWE-250"]
-        }, 
-        {
-          "id": "local_administrator_on_default_environment",
-          "cwe": ["CWE-276"]
-        }, 
-        {
-          "id": "poorly_configured_operating_system_security",
-          "cwe": ["CWE-16"]
-        }, 
-        {
-          "id": "recovery_of_disk_contains_sensitive_material",
-          "cwe": ["CWE-522"]
-        }, 
-        {
-          "id": "failure_to_remove_sensitive_artifacts_from_disk",
-          "cwe": ["CWE-459"]
+          "id": "token_leakage_via_referer",
+          "cwe": [
+            "CWE-200"
+          ]
         },
         {
-          "id": "data_not_encrypted_at_rest",
-      "children": [
+          "id": "via_localstorage_sessionstorage",
+          "cwe": [
+            "CWE-922"
+          ]
+        },
         {
-          "id": "sensitive",
-          "cwe": ["CWE-311"]
+          "id": "visible_detailed_error_page",
+          "cwe": [
+            "CWE-209",
+            "CWE-215"
+          ]
         },
         {
-          "id": "non_sensitive",
-          "cwe": ["CWE-311"]
-        }               
-         ]
-        }                                                                                 
+          "id": "weak_password_reset_implementation",
+          "cwe": [
+            "CWE-640"
+          ]
+        }
       ]
     },
     {
-      "id": "cryptographic_weakness",
-      "cwe": ["CWE-310", "CWE-1205"],
+      "id": "server_security_misconfiguration",
+      "cwe": [
+        "CWE-16"
+      ],
       "children": [
         {
-          "id": "insufficient_entropy",
-          "cwe": ["CWE-330", "CWE-331"],
+          "id": "cache_poisoning",
+          "cwe": [
+            "CWE-444"
+          ]
+        },
+        {
+          "id": "captcha",
+          "cwe": [
+            "CWE-804"
+          ]
+        },
+        {
+          "id": "clickjacking",
+          "cwe": [
+            "CWE-451"
+          ]
+        },
+        {
+          "id": "dbms_misconfiguration",
           "children": [
             {
-              "id": "limited_rng_entropy_source",
-              "cwe": ["CWE-338", "CWE-332"]
-            },
-            {
-              "id": "use_of_trng_for_nonsecurity_purpose",
-              "cwe": ["CWE-333"]
-            },
-            {
-              "id": "prng_seed_reuse",
-              "cwe": ["CWE-336"]
-            },
-            {
-              "id": "predictable_prng_seed",
-              "cwe": ["CWE-337"]
-            },
-            {
-              "id": "small_seed_space_in_prng",
-              "cwe": ["CWE-339", "CWE-334"]
-            },
-            {
-              "id": "initialization_vector_reuse",
-              "cwe": ["CWE-1204"]
-            },
-            {
-              "id": "predictable_initialization_vector",
-              "cwe": ["CWE-340"]
+              "id": "excessively_privileged_user_dba",
+              "cwe": [
+                "CWE-250"
+              ]
             }
           ]
         },
         {
-          "id": "insecure_implementation",
-          "cwe": ["CWE-573"],
+          "id": "directory_listing_enabled",
+          "cwe": [
+            "CWE-548"
+          ]
+        },
+        {
+          "id": "insecure_ssl",
           "children": [
             {
-              "id": "missing_cryptographic_step",
-              "cwe": ["CWE-325"]
-            },
-            {
-              "id": "improper_following_of_specification",
-              "cwe": ["CWE-358", "CWE-573"]
+              "id": "insecure_cipher_suite",
+              "cwe": [
+                "CWE-326"
+              ]
             }
           ]
         },
         {
-          "id": "weak_hash",
-          "cwe": ["CWE-328"],
+          "id": "lack_of_password_confirmation",
           "children": [
             {
-              "id": "lack_of_salt",
-              "cwe": ["CWE-759", "CWE-916"]
-            },
-            {
-              "id": "use_of_predictable_salt",
-              "cwe": ["CWE-760"]
-            },
-            {
-              "id": "predictable_hash_collision",
-              "cwe": ["CWE-328"]
+              "id": "change_password",
+              "cwe": [
+                "CWE-620"
+              ]
             }
           ]
         },
         {
-          "id": "insufficient_verification_of_data_authenticity",
-          "cwe": ["CWE-345"],
+          "id": "lack_of_security_headers",
           "children": [
             {
-              "id": "identity_check_value",
-              "cwe": ["CWE-353", "CWE-354", "CWE-924"]
+              "id": "cache_control_for_a_non_sensitive_page",
+              "cwe": [
+                "CWE-525"
+              ]
             },
             {
-              "id": "cryptographic_signature",
-              "cwe": ["CWE-347"]
+              "id": "cache_control_for_a_sensitive_page",
+              "cwe": [
+                "CWE-525"
+              ]
             }
           ]
         },
         {
-          "id": "insecure_key_generation",
-          "cwe": null,
+          "id": "misconfigured_dns",
           "children": [
             {
-              "id": "improper_asymmetric_prime_selection",
-              "cwe": ["CWE-326", "CWE-1240"]
-            },
-            {
-              "id": "improper_asymmetric_exponent_selection",
-              "cwe": ["CWE-326", "CWE-1240"]
-            },
-            {
-              "id": "insufficient_key_stretching",
-              "cwe": ["CWE-326", "CWE-1240"]
-            },
-            {
-              "id": "insufficient_key_space",
-              "cwe": ["CWE-326", "CWE-331", "CWE-1240"]
-            },
-            {
-              "id": "key_exchange_without_entity_authentication",
-              "cwe": ["CWE-322"]
+              "id": "zone_transfer",
+              "cwe": [
+                "CWE-669"
+              ]
             }
           ]
         },
         {
-          "id": "key_reuse",
-          "cwe": ["CWE-323"],
+          "id": "missing_secure_or_httponly_cookie_flag",
+          "cwe": [
+            "CWE-614",
+            "CWE-1004"
+          ]
+        },
+        {
+          "id": "no_rate_limiting_on_form",
+          "cwe": [
+            "CWE-799"
+          ],
           "children": [
             {
-              "id": "lack_of_perfect_forward_secrecy",
-              "cwe": ["CWE-323"]
-            },
-            {
-              "id": "intra_environment",
-              "cwe": ["CWE-323"]
-            },
-            {
-              "id": "inter_environment",
-              "cwe": ["CWE-323"]
+              "id": "login",
+              "cwe": [
+                "CWE-307"
+              ]
             }
           ]
         },
         {
-          "id": "broken_cryptography",
-          "cwe": ["CWE-327"],
+          "id": "oauth_misconfiguration",
+          "cwe": [
+            "CWE-303"
+          ],
           "children": [
             {
-              "id": "use_of_broken_cryptographic_primitive",
-              "cwe": ["CWE-327"]
+              "id": "insecure_redirect_uri",
+              "cwe": [
+                "CWE-601"
+              ]
             },
             {
-              "id": "use_of_vulnerable_cryptographic_library",
-              "cwe": ["CWE-327"]
+              "id": "missing_state_parameter",
+              "cwe": [
+                "CWE-352"
+              ]
             }
           ]
         },
         {
-          "id": "side_channel_attack",
-          "cwe": ["CWE-203", "CWE-1300"],
+          "id": "path_traversal",
+          "cwe": [
+            "CWE-22",
+            "CWE-73"
+          ]
+        },
+        {
+          "id": "race_condition",
+          "cwe": [
+            "CWE-362",
+            "CWE-366",
+            "CWE-368",
+            "CWE-421"
+          ]
+        },
+        {
+          "id": "request_smuggling",
+          "cwe": [
+            "CWE-444"
+          ]
+        },
+        {
+          "id": "server_side_request_forgery_ssrf",
+          "cwe": [
+            "CWE-918",
+            "CWE-441"
+          ]
+        },
+        {
+          "id": "ssl_attack_breach_poodle_etc",
+          "cwe": [
+            "CWE-310"
+          ]
+        },
+        {
+          "id": "unsafe_cross_origin_resource_sharing",
+          "cwe": [
+            "CWE-942"
+          ]
+        },
+        {
+          "id": "unsafe_file_upload",
           "children": [
             {
-              "id": "padding_oracle_attack",
-              "cwe": ["CWE-780"]
-            },
-            {
-              "id": "timing_attack",
-              "cwe": ["CWE-208"]
-            },
-            {
-              "id": "power_analysis_attack",
-              "cwe": ["CWE-1300"]
-            },
-            {
-              "id": "emanations_attack",
-              "cwe": ["CWE-1300"]
-            },
-            {
-              "id": "differential_fault_analysis",
-              "cwe": ["CWE-204", "CWE-205"]
+              "id": "file_extension_filter_bypass",
+              "cwe": [
+                "CWE-434",
+                "CWE-646"
+              ]
             }
           ]
         },
         {
-          "id": "use_of_expired_cryptographic_key_or_cert",
-          "cwe": ["CWE-295", "CWE-298", "CWE-299", "CWE-324"]
+          "id": "username_enumeration",
+          "cwe": [
+            "CWE-204"
+          ]
         },
         {
-          "id": "incomplete_cleanup_of_keying_material",
-          "cwe": ["CWE-459"]
+          "id": "using_default_credentials",
+          "cwe": [
+            "CWE-255",
+            "CWE-521"
+          ]
         }
       ]
     },
     {
-      "id": "privacy_concerns",
-      "cwe": ["CWE-359"]
-    },
-    {
-      "id": "network_security_misconfiguration",
-      "cwe": ["CWE-16"]
-    },
-    {
-      "id": "mobile_security_misconfiguration",
-      "cwe": ["CWE-919"]
-    },
-    {
-      "id": "client_side_injection",
-      "cwe": ["CWE-929"]
-    },
-    {
-      "id": "automotive_security_misconfiguration",
-      "cwe": null,
+      "id": "server_side_injection",
+      "cwe": [
+        "CWE-929"
+      ],
       "children": [
         {
-          "id": "infotainment_radio_head_unit",
-          "cwe": null
+          "id": "content_spoofing",
+          "cwe": [
+            "CWE-451"
+          ],
+          "children": [
+            {
+              "id": "homograph_idn_based",
+              "cwe": [
+                "CWE-1007"
+              ]
+            }
+          ]
         },
         {
-          "id": "rf_hub",
-          "cwe": null
+          "id": "file_inclusion",
+          "cwe": [
+            "CWE-73",
+            "CWE-714"
+          ]
         },
         {
-          "id": "can",
-          "cwe": null
+          "id": "http_response_manipulation",
+          "children": [
+            {
+              "id": "response_splitting_crlf",
+              "cwe": [
+                "CWE-113"
+              ]
+            }
+          ]
         },
         {
-          "id": "battery_management_system",
-          "cwe": null
+          "id": "ldap_injection",
+          "cwe": [
+            "CWE-90"
+          ]
         },
         {
-          "id": "gnss_gps",
-          "cwe": null
+          "id": "remote_code_execution_rce",
+          "cwe": [
+            "CWE-77",
+            "CWE-78",
+            "CWE-94",
+            "CWE-95"
+          ]
         },
         {
-          "id": "immobilizer",
-          "cwe": null
+          "id": "sql_injection",
+          "cwe": [
+            "CWE-89"
+          ]
         },
         {
-          "id": "abs",
-          "cwe": null
+          "id": "ssti",
+          "cwe": [
+            "CWE-94"
+          ]
         },
         {
-          "id": "rsu",
-          "cwe": null
+          "id": "xml_external_entity_injection_xxe",
+          "cwe": [
+            "CWE-611"
+          ]
         }
       ]
     },
     {
-      "id": "indicators_of_compromise",
+      "id": "smart_contract_misconfiguration",
       "cwe": null
     },
     {
-      "id": "data_biases",
-      "cwe": null,
-      "children": [
-        {
-          "id": "representation_bias",
-          "cwe": null
-        },
-        {
-          "id": "pre_existing_bias",
-          "cwe": null
-        }
-      ]
-    },
-    {
-      "id": "algorithmic_biases",
+      "id": "societal_biases",
       "cwe": null,
       "children": [
         {
-          "id": "processing_bias",
+          "id": "confirmation_bias",
           "cwe": null
         },
         {
-          "id": "aggregation_bias",
+          "id": "systemic_bias",
           "cwe": null
         }
       ]
     },
     {
-      "id": "societal_biases",
-      "cwe": null,
+      "id": "unvalidated_redirects_and_forwards",
+      "cwe": [
+        "CWE-601"
+      ],
       "children": [
         {
-          "id": "confirmation_bias",
-          "cwe": null
+          "id": "open_redirect",
+          "cwe": [
+            "CWE-601"
+          ]
         },
         {
-          "id": "systemic_bias",
-          "cwe": null
+          "id": "tabnabbing",
+          "cwe": [
+            "CWE-1022"
+          ]
         }
       ]
     },
     {
-      "id": "misinterpretation_biases",
-      "cwe": null,
-      "children": [
-        {
-          "id": "context_ignorance",
-          "cwe": null
-        }
+      "id": "using_components_with_known_vulnerabilities",
+      "cwe": [
+        "CWE-937"
       ]
     },
     {
-      "id": "developer_biases",
-      "cwe": null,
-      "children": [
-        {
-          "id": "implicit_bias",
-          "cwe": null
-        }
-      ]
+      "id": "zero_knowledge_security_misconfiguration",
+      "cwe": null
     }
   ]
-}
+}
\ No newline at end of file
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index 4717943f..bfa8b1f3 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -8,1005 +8,871 @@
   },
   "content": [
     {
-      "id": "server_security_misconfiguration",
-      "references": [
-        "https://www.owasp.org/index.php/Top_10-2017_A6-Security_Misconfiguration",
-        "http://projects.webappsec.org/w/page/13246959/Server%20Misconfiguration"
-      ],
+      "id": "ai_application_security",
       "children": [
         {
-          "id": "server_side_request_forgery_ssrf",
-          "remediation_advice": "1. **Error handling and messages:** Display generic error messages to the client in case something goes wrong. If content type validation fails, display generic errors to the client like _“Invalid Data retrieved”_. Also ensure that the message is the same when the request fails on the backend and if invalid data is received. This will prevent the application from being abused as distinct error messages will be absent for closed and open ports. Under no circumstance should the raw response received from the remote server be displayed to the client.\n2. **Response Handling:** Validating responses received from remote resources on the server side is the most basic mitigation that can be readily implemented. If a web application expects specific content type on the server, programmatically ensure that the data received satisfies checks imposed on the server before displaying or processing the data for the client.\n3. **Disable unwanted protocols:** Allow only `http` and `https` to make requests to remote servers. Whitelisting these protocols will prevent the web application from making requests over other protocols like `file:///`, `gopher://`, `ftp://` and other URI schemes.\n4. **Blacklist IP addresses:** Internal IP addresses, localhost specifications and internal hostnames can all be blacklisted to prevent the web application from being abused to fetch data/attack these devices. Implementing this will protect servers from one time attack vectors. For example, even if the first fix (above) is implemented, the data is still being sent to the remote service. If an attack that does not need to see responses is executed (like a buffer overflow exploit) then this fix can actually prevent data from ever reaching the vulnerable device. Response handling is then not required at all as a request was never made.",
-          "references": [
-            "https://www.owasp.org/index.php/Top_10_2013-A7-Missing_Function_Level_Access_Control",
-            "http://projects.webappsec.org/w/page/13246913/Abuse%20of%20Functionality",
-            "http://resources.infosecinstitute.com/the-ssrf-vulnerability/",
-            "https://www.bishopfox.com/blog/2015/04/vulnerable-by-design-understanding-server-side-request-forgery/",
-            "http://niiconsulting.com/checkmate/2015/04/server-side-request-forgery-ssrf/"
-          ]
-        },
-        {
-          "id": "unsafe_cross_origin_resource_sharing",
-          "remediation_advice": "1. **Origin & Access-Control-Allow-Origin:** The Origin header is always sent by the browser in a `CORS` request and indicates the origin of the request. The Origin header can not be changed from JavaScript however relying on this header for Access Control checks is not a good idea as it may be spoofed outside the browser, so you still need to check that application-level protocols are used to protect sensitive data.\n2. **Access-Control-Allow-Origin** is a response header used by a server to indicate which domains are allowed to read the response. Based on the `CORS W3 Specification` it is up to the client to determine and enforce the restriction of whether the client has access to the response data based on this header.\n3. Make sure that there are no insecure configurations using a wildcard as value which looks like `Access-Control-Allow-Origin: *` as this header means all domains are allowed access to the resource. \n4. Make sure that when the server returns back the Origin header that there are additional checks so that access of sensitive data is not allowed.\n5. The `Access-Control-Request-Method` header is used when a browser performs a preflight `OPTIONS` request and let the client indicate the request method of the final request. On the other hand, the `Access-Control-Allow-Method` is a response header used by the server to describe the methods the clients are allowed to use.\n6. **Access-Control-Request-Headers & Access-Control-Allow-Headers:** These two headers are used between the browser and the server to determine which headers can be used to perform a cross-origin request.\n7. **Access-Control-Allow-Credentials:** This header as part of a preflight request indicates that the final request can include user credentials.\n8. **Input validation:** XMLHttpRequest L2 (or XHR L2) introduces the possibility of creating a cross-domain request using the XHR API for backwards compatibility. This can introduce security vulnerabilities that in XHR L1 were not present. Interesting points of the code to exploit would be URLs that are passed to XMLHttpRequest without validation, specially if absolute URLS are allowed because that could lead to code injection. Likewise, other part of the application that can be exploited is if the response data is not escaped and we can control it by providing user-supplied input.\n9. **Other headers:** There are other headers involved like Access-Control-Max-Age that determines the time a preflight request can be cached in the browser, or Access-Control-Expose-Headers that indicates which headers are safe to expose to the API of a CORS API specification, both are response headers specified in the CORS W3C document.",
-          "references": [
-            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/HTML5_Security_Cheat_Sheet.md#cross-origin-resource-sharing",
-            "https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS"
-          ]
-        },
-        {
-          "id": "email_verification_bypass",
-          "remediation_advice": "1. **Implement Robust Token Validation:** Ensure that any token used for email verification is securely generated and validated. Tokens should be long, random, and use secure hashing algorithms to prevent guessing attacks.\n2. **Secure Transmission:** Use HTTPS to protect the transmission of tokens over the network. Ensure that the tokens are not leaked via URLs in the `Referer` header by instructing users to avoid clicking on links from untrusted sources or by implementing measures to strip sensitive information from URLs.\n3. **Expire Tokens Quickly:** Set a short expiration time for verification tokens to limit the window of opportunity for an attacker. Once a token is used or expires, it should be invalidated immediately to prevent reuse.",
-          "references": [
-             "https://owasp.org/www-community/attacks/Email_Injection",
-             "https://portswigger.net/web-security/email-security"
-          ]
-        },
-        {
-          "id": "missing_subresource_integrity",
-          "remediation_advice": "1. **Implement SRI:** Add an `integrity` attribute with a base64-encoded hash to `<script>` and `<link>` tags for external resources. \n2. **Validate Hashes:** Always check the hashes of resources yourself before implementation to ensure they haven't been altered. \n3. **Update Hashes Regularly:** Monitor and update the hashes to reflect changes in the external libraries or resources you use.",
-          "references": [
-             "https://developer.mozilla.org/en-US/docs/Web/Security/Subresource_Integrity",
-             "https://www.w3.org/TR/SRI/"
-          ]
-        },
-        {
-          "id": "software_package_takeover",
-          "remediation_advice": "1. **Monitor Dependencies:** Regularly review and update the dependencies in your software projects to ensure they are secure and maintained. Use tools that can automatically check for outdated or vulnerable packages. \n2. **Secure Access Rights:** Restrict and monitor access to package management systems and repositories to prevent unauthorized changes. Use two-factor authentication and strong access controls. \n3. **Verify Package Integrity:** Before deployment, verify the integrity and authenticity of packages using signatures or other verification methods.",
-          "references": [
-            "https://owasp.org/www-community/attacks/Subdomain_Takeover",
-            "https://snyk.io/blog/ten-git-hub-security-best-practices/"
-          ]
-        },                        
-        {
-          "id": "request_smuggling",
-          "remediation_advice": "Implement a robust security configuration, including secure parsing and handling of HTTP requests, and consider deploying a Web Application Firewall (WAF) to detect and mitigate potential smuggling attacks.",
-          "references": [
-            "https://cheatsheetseries.owasp.org/cheatsheets/HTTP_Request_Smuggling_Prevention_Cheat_Sheet.html"
-          ]
-        },
-        {
-          "id": "path_traversal",
-          "remediation_advice": "1. Prefer working without user input when using file system calls\n2. Use indexes rather than actual portions of file names when templating or using language files (i.e. value 5 from the user submission = Czechoslovakian, rather than expecting the user to return “Czechoslovakian”)\n3. Ensure the user cannot supply all parts of the path – surround it with your path code\n4. Validate the user’s input by only accepting known good – do not sanitize the data\n5. Use `chroot`ed jails and code access policies to restrict where the files can be obtained or saved to\n6. If forced to use user input for file operations, normalize the input before using in file I/O APIs, such as the [Java SE URI normalize() method](http://docs.oracle.com/javase/7/docs/api/java/net/URI.html#normalize).",
-          "references": [
-            "https://www.owasp.org/index.php/Path_Traversal",
-            "https://www.owasp.org/index.php/File_System#Path_traversal",
-            "http://projects.webappsec.org/w/page/13246952/Path%20Traversal"
+          "id": "llm_security",
+          "children": [
+            {
+              "id": "excessive_agency_permission_manipulation",
+              "remediation_advice": "Implement stringent access controls and define clear user permissions for interacting with the LLM. Employ regular audits and monitoring to detect and prevent unauthorized or excessive permission changes. Use role-based access control systems to manage user permissions effectively. Educate users and administrators about the risks of permission manipulation and establish protocols for safely managing access rights.",
+              "references": [
+                "https://owasp.org/www-project-ai-security-and-privacy-guide/#:~:text=,auditability%2C%20bias%20countermeasures%20and%20oversight"
+              ]
+            },
+            {
+              "id": "llm_output_handling",
+              "remediation_advice": "Implement output filtering and validation to ensure the LLM's responses are appropriate and secure. Use context-aware controls to manage how the LLM processes and responds to various inputs. Regularly audit and update the LLM to handle new types of outputs and emerging security threats. Train users on the potential risks associated with LLM outputs, particularly in sensitive applications.",
+              "references": [
+                "https://whylabs.ai/blog/posts/safeguard-monitor-large-language-model-llm-applications"
+              ]
+            },
+            {
+              "id": "prompt_injection",
+              "remediation_advice": "Implement robust input sanitization to prevent malicious or unintended prompt execution. Establish strict access controls and usage monitoring to detect and prevent unauthorized or anomalous interactions with the LLM. Regularly review and update the model's training data and algorithms to reduce vulnerabilities. Educate users and developers on safe interaction practices with AI systems.",
+              "references": [
+                "https://developer.nvidia.com/blog/securing-llm-systems-against-prompt-injection"
+              ]
+            },
+            {
+              "id": "training_data_poisoning",
+              "remediation_advice": "Implement robust anomaly detection systems to identify and address poisoned data in real-time. Regularly retrain the LLM with clean, diverse, and representative datasets to correct any potential biases or vulnerabilities. Engage in continuous monitoring and auditing of the training process and data sources.",
+              "references": [
+                "https://owasp.org/www-project-top-10-for-large-language-model-applications/#:~:text=,security%2C%20accuracy%2C%20or%20ethical%20behavior",
+                "https://owasp.org/www-project-top-10-for-large-language-model-applications/Archive/0_1_vulns/Training_Data_Poisoning.html"
+              ]
+            }
           ]
-        },
+        }
+      ]
+    },
+    {
+      "id": "algorithmic_biases",
+      "children": [
         {
-          "id": "directory_listing_enabled",
-          "remediation_advice": "Restrict directory listings being displayed from the server configuration.  \n\nExample for Apache:\n\n1. Edit the server configuration file or edit/create directory .htaccess\n2. Add the following line:\nOptions -Indexes\n3. If it is the last line, make sure you have a new line after it.",
+          "id": "aggregation_bias",
+          "remediation_advice": "Ensure that data aggregation methods maintain the integrity of subgroups, preventing dilution of minority data.",
           "references": [
-            "http://projects.webappsec.org/w/page/13246922/Directory%20Indexing"
+            "https://www.microsoft.com/en-us/ai/responsible-ai-resources"
           ]
         },
         {
-          "id": "same_site_scripting",
-          "remediation_advice": "As a best practice, do not resolve targets or hostnames to 127.0.0.1 or similar addresses.",
+          "id": "processing_bias",
+          "remediation_advice": "Design algorithms to process all data fairly, implementing checks to detect and mitigate biases that arise during data processing.",
           "references": [
-            "http://seclists.org/bugtraq/2008/Jan/270"
+            "https://paperswithcode.com/task/fairness-in-ml"
           ]
-        },
+        }
+      ]
+    },
+    {
+      "id": "application_level_denial_of_service_dos",
+      "remediation_advice": "There are techniques to avoid some DoS attacks at the code level such as: Performing thorough input validations, avoiding highly CPU consuming operations, and operations which must wait for completion of large tasks to proceed, splitting operations to chunks, setting timeout timers for unreasonable time, trying to create as few bottlenecks as possible.",
+      "references": [
+        "https://www.owasp.org/index.php/Application_Denial_of_Service",
+        "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Denial_of_Service_Cheat_Sheet.md",
+        "http://projects.webappsec.org/Denial-of-Service",
+        "https://www.cvedetails.com/vulnerability-list/opdos-1/denial-of-service.html",
+        "https://www.owasp.org/images/d/da/OWASP_IL_7_Application_DOS.pdf"
+      ]
+    },
+    {
+      "id": "automotive_security_misconfiguration",
+      "remediation_advice": "",
+      "children": [
         {
-          "id": "ssl_attack_breach_poodle_etc",
-          "remediation_advice": "Disable SSL and use updated version of TLS that is not susceptible to the latest variation of the TLS attack.",
-          "references": [
-            "https://access.redhat.com/articles/1232123",
-            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Transport_Layer_Protection_Cheat_Sheet.md",
-            "http://projects.webappsec.org/w/page/13246945/Insufficient%20Transport%20Layer%20Protection"
+          "id": "abs",
+          "children": [
+            {
+              "id": "unintended_acceleration_brake",
+              "remediation_advice": "Implement a secure gateway to protect against ABS attacks.",
+              "references": [
+                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
+              ]
+            }
           ]
         },
         {
-          "id": "using_default_credentials",
-          "remediation_advice": "1. If possible consider disabling external access.\n2. Never use default credentials as it is trivial for an attacker to gain access by providing known or easy to guess credentials.\n3. Always change any kind of default credentials as the first step of setting up any kind of environment.\n4. Passwords should meet or exceed proper password strength requirements.",
-          "references": [
-            "https://www.owasp.org/index.php/Testing_for_default_credentials_(OTG-AUTHN-002)",
-            "https://www.owasp.org/index.php/Configuration#Default_passwords",
-            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Authentication_Cheat_Sheet.md"
+          "id": "battery_management_system",
+          "children": [
+            {
+              "id": "firmware_dump",
+              "remediation_advice": "Implement secure boot, obfuscate the code, and compression algorithm with hardware-backed dictionary. Find creative ways to break disassemblers and debuggers.",
+              "references": [
+                "https://en.wikipedia.org/wiki/Security_through_obscurityhttps://www.researchgate.net/publication/320859156_Source_Code_Vulnerabilities_in_IoT_Software_Systems"
+              ]
+            },
+            {
+              "id": "fraudulent_interface",
+              "remediation_advice": "Protect and make sure the battery management system provides prevention from operating outside its safe operating area.",
+              "references": [
+                "https://en.wikipedia.org/wiki/Battery_management_system"
+              ]
+            }
           ]
         },
         {
-          "id": "misconfigured_dns",
+          "id": "can",
           "children": [
             {
-              "id": "subdomain_takeover",
-              "remediation_advice": "1. Set up your external service so it fully listens to your wildcard DNS.\n2. Keep your DNS-entries constantly vetted and restricted.",
+              "id": "injection_basic_safety_message",
+              "remediation_advice": "Filter malicious CANBus requests or codes that can be used to manipulate the Basic Safety Message.",
               "references": [
-                "https://labs.detectify.com/2014/10/21/hostile-subdomain-takeover-using-herokugithubdesk-more/"
+                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
               ]
             },
             {
-              "id": "zone_transfer",
-              "remediation_advice": "Do not allow DNS zone transfers.",
+              "id": "injection_battery_management_system",
+              "remediation_advice": "Filter malicious CANBus requests or codes that can be injected into the battery management system.",
               "references": [
-                "https://www.sans.org/reading-room/whitepapers/dns/securing-dns-zone-transfer-868",
-                "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-1999-0532"
+                "https://i.blackhat.com/USA-20/Wednesday/us-20-Kiley-Reverse-Engineering-The-Tesla-Battery-Management-System-To-Increase-Power-Available.pdf"
               ]
             },
             {
-              "id": "missing_caa_record",
-              "remediation_advice": "As the domain name holder you can modify the DNS zone file to specify one or more Certification Authorities (CAs) authorized to issue certificates for that domain.",
+              "id": "injection_disallowed_messages",
+              "remediation_advice": "Filter malicious CANbus requests or codes especially if not included in the DBC file by implementing a secure gateway.",
               "references": [
-                "https://tools.ietf.org/html/rfc6844"
+                "https://news.voyage.auto/an-introduction-to-the-can-bus-how-to-programmatically-control-a-car-f1b18be4f377"
               ]
-            }
-          ]
-        },
-        {
-          "id": "mail_server_misconfiguration",
-          "children": [
+            },
             {
-              "id": "no_spoofing_protection_on_email_domain",
-              "remediation_advice": "Create a DMARC policy to prevent email spoofing. Please note that if your DMARC policy is not set up properly it may result in email delivery issues.",
+              "id": "injection_dos",
+              "remediation_advice": "Filter malicious CANbus requests or codes by implementing a secure gateway, as well as limit access to input ports (specifically OBD-II) on automobiles as pointed out by CERT.",
               "references": [
-                "https://mxtoolbox.com/DMARCRecordGenerator.aspx",
-                "https://dmarc.org/2016/03/best-practices-for-email-senders/",
-                "https://www.ftc.gov/system/files/documents/reports/businesses-can-help-stop-phishing-protect-their-brands-using-email-authentication-ftc-staff/email_authentication_staff_perspective.pdf"
+                "https://ics-cert.us-cert.gov/alerts/ICS-ALERT-17-209-01",
+                "http://www.autoconnectedcar.com/2017/08/connect-car-can-bus-cant-handle-dos-hacksattacks-researchers-report-can-standard-can-be-changed/"
               ]
             },
             {
-              "id": "email_spoofing_to_inbox_due_to_missing_or_misconfigured_dmarc_on_email_domain",
-              "remediation_advice": "SPF is not a sufficient email spoofing protection in case of some of the largest email providers. Emails spoofed for domains having properly configured hard fail SPF records may still be delivered to the recipient's inbox. In order to fully prevent email spoofing create a DMARC record with “p=reject” policy. Please note that if your DMARC policy is not set up properly it may result in email delivery issues.",
+              "id": "injection_headlights",
+              "remediation_advice": "Filter malicious CANBus requests or codes that can be injected into the headlights.",
               "references": [
-                "https://mxtoolbox.com/DMARCRecordGenerator.aspx",
-                "https://dmarc.org/2016/03/best-practices-for-email-senders/",
-                "https://www.ftc.gov/system/files/documents/reports/businesses-can-help-stop-phishing-protect-their-brands-using-email-authentication-ftc-staff/email_authentication_staff_perspective.pdf"
+                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
               ]
             },
             {
-              "id": "email_spoofing_to_spam_folder",
-              "remediation_advice": "In order to fully prevent email spoofing create a DMARC record with “p=reject” policy. Please note that if your DMARC policy is not set up properly it will result in email delivery issues.",
+              "id": "injection_powertrain",
+              "remediation_advice": "Filter malicious CANBus requests or codes that can be used to manipulate the Powertrain.",
               "references": [
-                "https://dmarc.org/wiki/FAQ#My_mail_is_going_to_the_spam_folder_now.2C_is_DMARC_the_problem.3F",
-                "https://mxtoolbox.com/DMARCRecordGenerator.aspx",
-                "http://www.openspf.org/SPF_Record_Syntax"
+                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
               ]
             },
             {
-              "id": "missing_or_misconfigured_spf_and_or_dkim",
-              "remediation_advice": "1. Consider adding email spoofing protections for all your domains as attackers may resort to spoofing those, regardless of whether emails originate from them or not. Victims can still be fooled by seeing your domain.\n2. Consider using -all instead of ~all in the SPF record. Please be aware that using -all may result in email delivery issues.\n3. Since there is a limit of 10 DNS lookups per SPF record, specifying an IP address or address range is preferable for long lists of outgoing mail servers.",
+              "id": "injection_pyrotechnical_device_deployment_tool",
+              "remediation_advice": "Countermeasures of this attack include selection of suitable technologies, hard-wired plausibility checks, usage of cryptography, and hardening against brute force attacks of the keys or algorithms.",
               "references": [
-                "http://www.openspf.org/SPF_Record_Syntax",
-                "http://www.openspf.org/FAQ/Common_mistakes#include"
+                "https://www.rapid7.com/db/modules/post/hardware/automotive/pdt/"
               ]
             },
             {
-              "id": "email_spoofing_on_non_email_domain",
-              "remediation_advice": "Consider adding email spoofing protections for all your domains as attackers may resort to spoofing those, regardless of whether emails originate from them or not. Victims can still be fooled by seeing your domain.",
+              "id": "injection_sensors",
+              "remediation_advice": "Filter malicious CANBus requests or codes that can be used to manipulate the sensors.",
               "references": [
-                "https://mxtoolbox.com/DMARCRecordGenerator.aspx",
-                "https://dmarc.org/2016/03/best-practices-for-email-senders/",
-                "https://www.ftc.gov/system/files/documents/reports/businesses-can-help-stop-phishing-protect-their-brands-using-email-authentication-ftc-staff/email_authentication_staff_perspective.pdf"
+                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
+              ]
+            },
+            {
+              "id": "injection_steering_control",
+              "remediation_advice": "Filter malicious CANBus requests or codes that can be injected into the steering control.",
+              "references": [
+                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
+              ]
+            },
+            {
+              "id": "injection_vehicle_anti_theft_systems",
+              "remediation_advice": "Filter malicious CANBus requests or codes that can be used to manipulate the Vehicle Anti-theft Systems.",
+              "references": [
+                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
               ]
             }
           ]
         },
         {
-          "id": "dbms_misconfiguration",
+          "id": "gnss_gps",
           "children": [
             {
-              "id": "excessively_privileged_user_dba",
-              "remediation_advice": "Ensure that the current DBMS session user has the least amount of privilege necessary.",
+              "id": "spoofing",
+              "remediation_advice": "Implement a system that detects GPS spoofing which evaluates or prevents the system from believing and acting on false data.",
               "references": [
-                "https://www.owasp.org/index.php/Least_privilege"
+                "https://www.kaspersky.com/blog/gps-spoofing-protection/26837/"
               ]
             }
           ]
         },
         {
-          "id": "lack_of_password_confirmation",
+          "id": "immobilizer",
           "children": [
             {
-              "id": "change_email_address",
-              "remediation_advice": "1. Use a password confirmation if the email address associated with the account is going to be changed.\n2. As a best practice, send the original email address a confirmation that the email address on their account is being changed. Have the user confirm that they want to change their email address as well as prompting the user for their password."
-            },
-            {
-              "id": "change_password",
-              "remediation_advice": "Use a password confirmation if the original password associated with the account is going to be changed."
-            },
-            {
-              "id": "delete_account",
-              "remediation_advice": "Use a password confirmation if there is a request to delete the account."
-            },
-            {
-              "id": "manage_two_fa",
-              "remediation_advice": "Use a password confirmation when managing 2FA settings."
+              "id": "engine_start",
+              "remediation_advice": "Implement a secure gateway to protect against immobilizer attacks, assign significant bytes in data and a method to send an abnormal signal overwriting the false data when a communication error has occurred.",
+              "references": [
+                "https://www.kaspersky.com/blog/36c3-immobilizers/32419/"
+              ]
             }
           ]
         },
         {
-          "id": "no_rate_limiting_on_form",
-          "references": [
-            "https://www.owasp.org/index.php?title=OWASP_Periodic_Table_of_Vulnerabilities_-_Brute_Force_(Generic)_/_Insufficient_Anti-automation&setlang=en",
-            "http://projects.webappsec.org/w/page/13246938/Insufficient%20Anti-automation"
-          ],
+          "id": "infotainment_radio_head_unit",
           "children": [
             {
-              "id": "registration",
-              "remediation_advice": "1. Use a `CAPTCHA` to limit user registration requests.\n2. Use a rate limit per IP address to throttle the amount of user registration requests that can be made in a certain amount of time."
+              "id": "code_execution_can_bus_pivot",
+              "remediation_advice": "Filter arbitrary commands and apply input validation to any media devices to prevent executing from the infotainment system. Make sure that the infotainment system is on a sandbox module and does not have direct interaction to the CANbus network.",
+              "references": [
+                "https://motherboard.vice.com/en_us/article/3kvw8y/researchers-hack-car-infotainment-system-and-find-sensitive-user-data-inside",
+                "https://www.bleepingcomputer.com/news/security/you-can-hack-some-mazda-cars-with-a-usb-flash-drive/",
+                "http://illmatics.com/carhacking.html"
+              ]
             },
             {
-              "id": "login",
-              "remediation_advice": "1. Use a `CAPTCHA` to limit login attempts.\n2. Use a rate limit per IP address to throttle the amount of login requests that can be made in a certain amount of time.\n3. Be careful about locking a user account out as a result of rate limiting."
+              "id": "code_execution_no_can_bus_pivot",
+              "remediation_advice": "Filter arbitrary commands and apply input validation to any media devices to prevent executing from the infotainment system.",
+              "references": [
+                "https://motherboard.vice.com/en_us/article/3kvw8y/researchers-hack-car-infotainment-system-and-find-sensitive-user-data-inside",
+                "https://www.bleepingcomputer.com/news/security/you-can-hack-some-mazda-cars-with-a-usb-flash-drive/",
+                "http://illmatics.com/carhacking.html"
+              ]
             },
             {
-              "id": "email_triggering",
-              "remediation_advice": "1. Use a `CAPTCHA` to limit email triggering requests.\n2. Use a rate limit per IP address to throttle the amount of email triggering requests that can be made in a certain amount of time."
+              "id": "default_credentials",
+              "remediation_advice": "Do not ship infotainment systems with any configured accounts or with default and common usernames and passwords. Do not hard code any backdoor accounts or special access mechanisms.",
+              "references": [
+                "https://www.owasp.org/index.php/Testing_for_default_credentials_(OTG-AUTHN-002)",
+                "https://www.owasp.org/index.php/Configuration#Default_passwords"
+              ]
             },
             {
-              "id": "sms_triggering",
-              "remediation_advice": "1. Use a `CAPTCHA` to limit SMS triggering requests.\n2. Use a rate limit per IP address to throttle the amount of SMS triggering requests that can be made in a certain amount of time."
+              "id": "dos_brick",
+              "remediation_advice": "Filter malicious payloads or string attacks. Apply rate limiting on the app level side.",
+              "references": [
+                "https://www.owasp.org/index.php/Application_Denial_of_Service",
+                "https://www.forbes.com/sites/leemathews/2017/04/10/a-malware-outbreak-is-bricking-insecure-iot-devices/#36603e4a29a3",
+                "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Denial_of_Service_Cheat_Sheet.md"
+              ]
             },
             {
-              "id": "change_password",
-              "remediation_advice": "1. Use a `CAPTCHA` to limit current password check requests sent when changing account password.\n2. Use a rate limit per IP address to throttle the amount of said requests that can be made in a certain amount of time."
-            }
-          ]
-        },
-        {
-          "id": "unsafe_file_upload",
-          "references": [
-            "https://www.owasp.org/index.php/Unrestricted_File_Upload",
-            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Protect_FileUpload_Against_Malicious_File.md"
-          ],
-          "children": [
-            {
-              "id": "no_antivirus",
-              "remediation_advice": "As a best practice, consider using endpoint protection to check uploaded files for malware and viruses."
+              "id": "ota_firmware_manipulation",
+              "remediation_advice": "Implement key signing and firmware verification.",
+              "references": [
+                "https://www.wired.com/2015/02/firmware-vulnerable-hacking-can-done/"
+              ]
             },
             {
-              "id": "no_size_limit",
-              "remediation_advice": "Have a server-side check for the size limit of file uploads."
+              "id": "sensitive_data_leakage_exposure",
+              "remediation_advice": "Do not store sensitive data such as call logs, text messages, and contact lists or names as plaintext in the infotainment system.",
+              "references": [
+                "https://www.prnewswire.com/news-releases/carsblues-vehicle-hack-exploits-vehicle-infotainment-systems-allowing-access-to-call-logs-text-messages-and-more-300751244.html"
+              ]
             },
             {
-              "id": "file_extension_filter_bypass",
-              "remediation_advice": "As a best practice, consider using a whitelist of accepted file extensions in order to mitigate against a bypass."
-            }
-          ]
-        },
-        {
-          "id": "cookie_scoped_to_parent_domain",
-          "remediation_advice": "If possible do not set the domain for the session cookie. If domain is not set, so by default, the cookie will be a host only cookie, meaning accessible explicitly to the domain from which it was set.",
-          "references": [
-            "https://tools.ietf.org/html/rfc6265"
-          ]
-        },
-        {
-          "id": "missing_secure_or_httponly_cookie_flag",
-          "references": [
-            "https://www.owasp.org/index.php/SecureFlag",
-            "https://www.owasp.org/index.php/HttpOnly"
-          ],
-          "children": [
-            {
-              "id": "session_token",
-              "remediation_advice": "Set the `Secure` and `HTTPOnly` cookie flags for the session token."
+              "id": "source_code_dump",
+              "remediation_advice": "Obfuscate the code and find creative ways to break disassemblers and debuggers.",
+              "references": [
+                "https://en.wikipedia.org/wiki/Security_through_obscurity",
+                "https://www.researchgate.net/publication/320859156_Source_Code_Vulnerabilities_in_IoT_Software_Systems"
+              ]
             },
             {
-              "id": "non_session_cookie",
-              "remediation_advice": "Consider setting the `Secure` and `HTTPOnly` cookie flags for sensitive cookies."
+              "id": "unauthorized_access_to_services",
+              "remediation_advice": "Filter services that allow you to control the vehicle or infotainment system from being accessed by unauthorized users. Apply authentication mechanisms to certain endpoints.",
+              "references": [
+                "https://www.troyhunt.com/controlling-vehicle-features-of-nissan/"
+              ]
             }
           ]
         },
         {
-          "id": "clickjacking",
-          "references": [
-            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md",
-            "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#xfo_bp"
-          ],
+          "id": "rf_hub",
           "children": [
             {
-              "id": "sensitive_action",
-              "remediation_advice": "1. Use the `X-Frame-Options: DENY` HTTP response header on pages with sensitive information, to disallow framing of the page on external resources.\n2. In the case where `DENY` is not an option, use `X-Frame-Options: SAMEORIGIN`.\n3. In the case where `SAMEORIGIN` is not an option, `X-Frame-Options: ALLOW-FROM https://example.com/`."
-            },
-            {
-              "id": "form_input",
-              "remediation_advice": "1. Use the `X-Frame-Options: DENY` HTTP response header on pages with sensitive information, to disallow framing of the page on external resources.\n2. In the case where `DENY` is not an option, use `X-Frame-Options: SAMEORIGIN`.\n3. In the case where `SAMEORIGIN` is not an option, `X-Frame-Options: ALLOW-FROM https://example.com/`."
+              "id": "can_injection_interaction",
+              "remediation_advice": "Implement a secure gateway that prevents CAN Injection from the RF Hub.",
+              "references": [
+                "https://www.reddit.com/r/CarHacking/comments/73qs0x/chrysler_sgw_security_gateway/"
+              ]
             },
             {
-              "id": "non_sensitive_action",
-              "remediation_advice": "As a best practice, consider adding the `X-FRAME-OPTIONS: SAMEORIGIN` HTTP response header to all responses going to the user's browser to avoid unnecessary cross-origin iframe access."
-            }
-          ]
-        },
-        {
-          "id": "oauth_misconfiguration",
-          "children": [
-            {
-              "id": "account_takeover",
-              "remediation_advice": "Ensure correct implementation of OAuth protocol in order to protect client secrets and tokens, and provide secure access controls.",
+              "id": "data_leakage_pull_encryption_mechanism",
+              "remediation_advice": "Inspect outgoing traffic from the RF Hub and make sure encryption mechanism cannot be extracted.",
               "references": [
-                "https://tools.ietf.org/html/rfc6819"
+                "https://www.networkworld.com/article/2284289/data-leak-prevention-and-encryption--tools-that-can-work-together.html"
               ]
             },
             {
-              "id": "account_squatting",
-              "remediation_advice": "In case of OAuth based account registration, ensure that if there is a preexisting account for the same email address and is to be merged, that it will no longer be accessible with its old password."
+              "id": "key_fob_cloning",
+              "remediation_advice": "Implement key fob encryption.",
+              "references": [
+                "https://electronics.howstuffworks.com/gadgets/automotive/unlock-car-door-remote1.htm",
+                "https://www.wired.com/story/hackers-steal-tesla-model-s-seconds-key-fob/"
+              ]
             },
             {
-              "id": "missing_state_parameter",
-              "remediation_advice": "The OAuth state parameter is a form of CSRF protection, ensure that it is in place and properly validated."
+              "id": "relay",
+              "remediation_advice": "Block the transmission of unwanted radio signals and block all forms of the amplification attacks.",
+              "references": [
+                "https://www.wired.com/2017/04/just-pair-11-radio-gadgets-can-steal-car/",
+                "https://www.wired.com/2016/03/study-finds-24-car-models-open-unlocking-ignition-hack/"
+              ]
             },
             {
-              "id": "insecure_redirect_uri",
-              "remediation_advice": "When the application starts the OAuth flow, it will direct the user to your service’s authorization endpoint. The request will have several parameters in the URL, including a redirect URL.\n\nAt this point, the authorization server must validate the redirect URL to ensure the URL in the request matches one of the registered URLs for the application. The request will also have a client_id parameter, so the service should look up the redirect URLs based on that. It is entirely possible for an attacker to craft an authorization request with one app’s client ID and the attacker’s redirect URL, which is why registration is required.\n\nThe service should look for an exact match of the URL, and avoid matching on only part of the specific URL. (The client can use the state parameter if it needs to customize each request.) Simple string matching is sufficient since the redirect URL can’t be customized per request. All the server needs to do is check that the redirect URL in the request matches one of the redirect URLs the developer entered when registering their application.\n\nIf the redirect URL is not one of the registered redirect URLs, then the server must immediately show an error indicating such, and not redirect the user. This avoids having your authorization server be used as an open redirector.",
+              "id": "replay",
+              "remediation_advice": "Block the transmission of unwanted radio signals and block all forms of the amplification attacks.",
               "references": [
-                "https://www.oauth.com/oauth2-servers/redirect-uris/"
+                "https://www.wired.com/2017/04/just-pair-11-radio-gadgets-can-steal-car/",
+                "https://www.wired.com/2016/03/study-finds-24-car-models-open-unlocking-ignition-hack/"
               ]
-            }
-          ]
-        },
-        {
-          "id": "captcha",
-          "children": [
-            {
-              "id": "implementation_vulnerability",
-              "remediation_advice": "1. Introduce a proper server-side check for the `CAPTCHA`.\n2. Make sure that the user input matches the `CAPTCHA`.\n3. Make sure that the `CAPTCHA` is difficult to solve by computers."
             },
             {
-              "id": "brute_force",
-              "remediation_advice": "As a best practice, consider disallowing multiple attempts to guess the same CAPTCHA."
+              "id": "roll_jam",
+              "remediation_advice": "Update how rolling codes work in vehicles and do over-the-air update capabilities.",
+              "references": [
+                "https://makezine.com/2015/08/11/anatomy-of-the-rolljam-wireless-car-hack/"
+              ]
             },
             {
-              "id": "missing",
-              "remediation_advice": "As a best practice, consider using CAPTCHAs to prevent automated software from engaging in abusive activities on your site."
+              "id": "unauthorized_access_turn_on",
+              "remediation_advice": ""
             }
           ]
         },
         {
-          "id": "exposed_admin_portal",
+          "id": "rsu",
           "children": [
             {
-              "id": "to_internet",
-              "remediation_advice": "As a best practice, consider restricting admin portal access to internal users only."
+              "id": "sybil_attack",
+              "remediation_advice": "Known approaches to Sybil attack prevention include identity validation, social trust graph algorithms, or economic costs, personhood validation, and application-specific defenses.",
+              "references": [
+                "https://en.wikipedia.org/wiki/Sybil_attack"
+              ]
             }
           ]
-        },
+        }
+      ]
+    },
+    {
+      "id": "blockchain_infrastructure_misconfiguration",
+      "remediation_advice": "1. Implement secure default settings and restrict administrative access to nodes and infrastructure.\n2. Regularly audit and validate network configurations against industry best practices.\n3. Use automated tools to detect and resolve misconfigurations in real time.\n4. Harden consensus mechanisms by enforcing robust cryptographic standards and validating peer integrity.\n5. Monitor network activity to detect and mitigate potential exploits stemming from misconfigurations.",
+      "references": [
+        "https://nordlayer.com/blog/blockchain-security-issues/"
+      ]
+    },
+    {
+      "id": "broken_access_control",
+      "children": [
         {
-          "id": "missing_dnssec",
-          "remediation_advice": "As a best practice, consider utilizing the Domain Name System Security Extensions, as this will help the DNS protocol to be less susceptible to certain attacks.",
+          "id": "exposed_sensitive_android_intent",
+          "remediation_advice": "1. If you use an intent to bind to a Service, ensure that your app is secure by using an explicit intent. Using an implicit intent to start a service is a security risk as you can't be certain what service will respond to the intent, and the user can't see which service starts.\n2. If data within a broadcast intent may be sensitive, you should consider applying a permission to make sure that malicious applications can't register to receive those messages without appropriate permissions. In these circumstances you may also consider invoking the receiver directly rather than raising a broadcast.\n3. By default, receivers are exported and can be invoked by any other application. If your BroadcastReceiver is intended for use by other applications, you may want to apply security permissions to receivers using the <receiver> element within the application manifest. This prevents applications without appropriate permissions from sending an intent to the BroadcastReceiver.\n",
           "references": [
-            "https://www.icann.org/resources/pages/dnssec-qaa-2014-01-29-en"
+            "https://www.owasp.org/index.php/Mobile_Top_10_2016-M1-Improper_Platform_Usage"
           ]
         },
         {
-          "id": "fingerprinting_banner_disclosure",
-          "remediation_advice": "As a best practice, do not expose the specific software version."
+          "id": "exposed_sensitive_ios_url_scheme",
+          "remediation_advice": "Apple does not enforce the unique naming for App schemes, making it possible for a malicious app to use the same URL Scheme as a legitimate app, effectively hijacking the URL Scheme. As a result, it is important to keep the URL Scheme from being exposed.",
+          "references": [
+            "https://www.owasp.org/index.php/Mobile_Top_10_2016-M1-Improper_Platform_Usage",
+            "https://developer.apple.com/library/content/documentation/iPhone/Conceptual/iPhoneOSProgrammingGuide/Inter-AppCommunication/Inter-AppCommunication.html"
+          ]
         },
         {
-          "id": "username_enumeration",
-          "children": [
-            {
-              "id": "brute_force",
-              "remediation_advice": "Login: When an authentication request fails, ensure that all responses are identical, regardless of whether it was the username or the password that caused the authentication to fail. The HTTP response needs to be the same as well. There should not be a single byte or bit difference.\n\nReset Password: There can not be a discrepancy in the form responses when using the reset a password functionality. The same message should be sent, back to the user, regardless of whether the username or email exists as an account or not.\n\nRegistration: As a best practice to prevent usernames from being enumerated when creating an account, the username should be an email address. When an attempt is made to create a new user account, the same message can be displayed regardless of whether the email address exists in the system or not. For example: \"A confirmation has been sent to the email provided.\"",
-              "references": [
-                "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Authentication_Cheat_Sheet.md#authentication-and-error-messages"
-              ]
-            }
+          "id": "idor",
+          "remediation_advice": "1. **Use per user or session indirect object references.** This prevents attackers from directly targeting unauthorized resources. For example, instead of using the resource's database key, a drop-down list of six resources authorized for the current user could use the numbers 1 to 6 to indicate which value the user selected. The application has to map the per-user indirect reference back to the actual database key on the server. OWASP's `ESAPI` includes both sequential and random access reference maps that developers can use to eliminate direct object references.\n2. **Check access.** Each use of a direct object reference from an untrusted source must include an access control check to ensure the user is authorized for the requested object.",
+          "references": [
+            "https://www.owasp.org/index.php/Top_10_2013-A4-Insecure_Direct_Object_References",
+            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Insecure_Direct_Object_Reference_Prevention_Cheat_Sheet.md"
           ]
         },
         {
-          "id": "potentially_unsafe_http_method_enabled",
+          "id": "privilege_escalation",
+          "remediation_advice": "1. **Least Privilege Principle:** Enforce the least privilege principle by ensuring that users and processes operate using the minimum permissions necessary to perform their tasks. \n2. **Regular Audits:** Conduct regular audits of system permissions and user roles to identify and rectify excessive permissions or misconfigurations. \n3. **Patch Management:** Keep all systems, applications, and services up to date with the latest security patches to close vulnerabilities that could be exploited for privilege escalation.",
           "references": [
-            "https://www.owasp.org/index.php/Test_HTTP_Methods_(OTG-CONFIG-006)"
-          ],
-          "children": [
-            {
-              "id": "options",
-              "remediation_advice": "As a best practice, consider turning off the `OPTIONS` HTTP request method, unless absolutely necessary. The OPTIONS method provides a list of the methods that are supported by the web server."
-            },
-            {
-              "id": "trace",
-              "remediation_advice": "As a best practice, consider turning off the `TRACE` HTTP request method unless absolutely necessary. Doing so will mitigate against potential Cross Site Tracing attacks.",
-              "references": [
-                "https://www.owasp.org/index.php/Cross_Site_Tracing"
-              ]
-            }
+            "https://owasp.org/www-community/attacks/Privilege_escalation",
+            "https://www.cisa.gov/uscert/bsi/articles/knowledge/principles/least-privilege"
           ]
         },
         {
-          "id": "insecure_ssl",
-          "children": [
-            {
-              "id": "lack_of_forward_secrecy",
-              "remediation_advice": "As a best practice, consider using Forward Secrecy. This ensures that broad decrypting of recorded HTTPS sessions can not happen, should the private key become publicly accessible.",
-              "references": [
-                "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Transport_Layer_Protection_Cheat_Sheet.md#rule---prefer-ephemeral-key-exchanges"
-              ]
-            },
-            {
-              "id": "insecure_cipher_suite",
-              "remediation_advice": "As a best practice, consider supporting only cipher suites that are known to be secure.",
-              "references": [
-                "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Transport_Layer_Protection_Cheat_Sheet.md#rule---only-support-strong-cryptographic-ciphers"
-              ]
-            },
-            {
-              "id": "certificate_error",
-              "remediation_advice": "As a best practice, consider resolving any SSL certificate errors in order to establish trust and allow secure connections.",
-              "references": [
-                "https://cheapsslsecurity.com/blog/google-chrome-ssl-certificate-errors-troubleshoot-guide/"
-              ]
-            }
+          "id": "username_enumeration",
+          "remediation_advice": "Ensure that the application does not reveal existing user names and any data associated with them, whether it's a consequence of misconfiguration or a design decision.",
+          "references": [
+            "https://www.owasp.org/index.php/Top_10_2013-A7-Missing_Function_Level_Access_Control",
+            "https://www.owasp.org/index.php/Top_10-2017_A3-Sensitive_Data_Exposure",
+            "http://projects.webappsec.org/w/page/13246936/Information%20Leakage"
           ]
-        },
+        }
+      ]
+    },
+    {
+      "id": "broken_authentication_and_session_management",
+      "remediation_advice": "1. **API:** Use security focused APIs to check for proper security controls.\n2. **Session Management:** Use proper session management checks to disallow unauthenticated users accessing protected and sensitive resources.\n3. **Access Control:** Use proper access control checks to disallow unprivileged users from accessing protected and sensitive resources.",
+      "references": [
+        "https://www.owasp.org/index.php/Top_10-2017_A2-Broken_Authentication",
+        "https://www.owasp.org/index.php/Broken_Authentication_and_Session_Management",
+        "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Authentication_Cheat_Sheet.md",
+        "http://projects.webappsec.org/Insufficient-Authentication",
+        "https://www.cvedetails.com/vulnerability-list/opgpriv-1/gain-privilege.html"
+      ],
+      "children": [
         {
-          "id": "rfd",
-          "remediation_advice": "1. Sanitize your API inputs (in this case they should just allow alphanumerics). Escaping is not sufficient.\n2. Add `Content-Disposition: attachment; filename=\"foo.bar\"` on APIs that are not going to be rendered.\n3. Add `X-Content-Type-Options: nosniff` header to API responses.",
+          "id": "cleartext_transmission_of_session_token",
+          "remediation_advice": "Ensure that session tokens are transmitted over protected channels at all times. If the secure cookie flag is not an option ensure that the application does not support unencrypted communication.",
           "references": [
-            "https://www.owasp.org/index.php/Reflected_File_Download"
+            "https://www.owasp.org/index.php/Testing_for_Sensitive_information_sent_via_unencrypted_channels_(OTG-CRYPST-003)",
+            "https://www.owasp.org/index.php/SecureFlag"
           ]
         },
         {
-          "id": "lack_of_security_headers",
+          "id": "concurrent_logins",
+          "remediation_advice": "As a best practice, consider disallowing multiple concurrent user sessions or logins."
+        },
+        {
+          "id": "failure_to_invalidate_session",
           "children": [
             {
-              "id": "x_frame_options",
-              "remediation_advice": "As a best practice, consider using the X-Frame-Options header as it will help mitigate against potential Clickjacking or other UI redressing attacks.",
-              "references": [
-                "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#xfo_bp",
-                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options"
-              ]
-            },
-            {
-              "id": "cache_control_for_a_non_sensitive_page",
-              "remediation_advice": "As a best practice, consider using the `Cache-Control: no-store` as it will help insure that the browser does not cache pages. Although the page may not currently contain sensitive data, sensitive data may be unintentionally placed there in the future.",
-              "references": [
-                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cache-Control"
-              ]
-            },
-            {
-              "id": "x_xss_protection",
-              "remediation_advice": ""
-            },
-            {
-              "id": "strict_transport_security",
-              "remediation_advice": "As a best practice, consider using the `Strict-Transport-Security` header as it will help ensure protection against TLS protocol downgrade attacks and cookie hijacking. The header also ensures that browsers are only serving requests using a secure HTTPS connection.",
-              "references": [
-                "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#hsts",
-                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security"
-              ]
+              "id": "all_sessions",
+              "remediation_advice": "As a best practice, consider invalidating all user sessions on logout."
             },
             {
-              "id": "x_content_type_options",
-              "remediation_advice": "As a best practice, consider using the `X-Content-Type-Options: nosniff` header as it will help prevent ambiguous handling of file types via Content Sniffing. Adding this header will prevent Cross Site Scripting attacks on files that do not have an explicit file type of \"text/html\".",
-              "references": [
-                "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#xcto",
-                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Content-Type-Options"
-              ]
+              "id": "long_timeout",
+              "remediation_advice": "As a best practice, consider invalidating sessions after a shorter period of time."
             },
             {
-              "id": "content_security_policy",
-              "remediation_advice": "As a best practice, consider using the `Content-Security-Policy` header as it will help prevent Cross Site Scripting as well as other types of injection attacks. However, be aware that Content Security Policy has a significant impact on how the browser renders pages, so careful tuning is required.",
-              "references": [
-                "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#csp",
-                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy"
-              ]
+              "id": "on_email_change",
+              "remediation_advice": "As a best practice, consider invalidating all sessions upon email change."
             },
             {
-              "id": "public_key_pins",
-              "remediation_advice": "As a best practice, consider using the `Public-Key-Pins` header as it will help prevent website impersonation by mis-issued or otherwise fraudulent certificates. It is important to note that if this header is used incorrectly, it may prevent users from accessing a resource for an extended period of time.",
+              "id": "on_logout",
+              "remediation_advice": "Properly invalidate the session on the client and server-side when the user logs out of their session.",
               "references": [
-                "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#hpkp",
-                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Public-Key-Pins"
+                "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Session_Management_Cheat_Sheet.md#manual-session-expiration"
               ]
             },
             {
-              "id": "x_content_security_policy",
-              "remediation_advice": "As a best practice, consider using the `X-Content-Security-Policy` header as it will help prevent Cross Site Scripting as well as other types of injection attacks. However, be aware that Content Security Policy has a significant impact on how the browser renders pages, so careful tuning is required.",
+              "id": "on_logout_server_side_only",
+              "remediation_advice": "Properly invalidate the session on the server-side when the user logs out of their session.",
               "references": [
-                "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#csp",
-                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy"
+                "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Session_Management_Cheat_Sheet.md#manual-session-expiration"
               ]
             },
             {
-              "id": "x_webkit_csp",
-              "remediation_advice": "As a best practice, consider using the `X-Webkit-CSP` header as it will help prevent Cross Site Scripting as well as other types of injection attacks. However, be aware that Content Security Policy has a significant impact on how the browser renders pages, so careful tuning is required.",
+              "id": "on_password_change",
+              "remediation_advice": "Properly invalidate all user sessions server-side when the user resets their password and at a minimum, invalidate all non-current user sessions sever-side when the user changes their password.",
               "references": [
-                "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#csp",
-                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy"
+                "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Session_Management_Cheat_Sheet.md#renew-the-session-id-after-any-privilege-level-change"
               ]
             },
             {
-              "id": "content_security_policy_report_only",
-              "remediation_advice": "As a best practice, consider using the `Content-Security-Policy-Report-Only` header as it will help when testing out the implementation of a Content Security Policy, to prevent Cross Site Scripting as well as other types of injection attacks.",
-              "references": [
-                "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#csp",
-                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy-Report-Only"
-              ]
+              "id": "on_two_fa_activation_change",
+              "remediation_advice": "As a best practice, consider invalidating all sessions upon 2FA activation or change."
             },
             {
-              "id": "cache_control_for_a_sensitive_page",
-              "remediation_advice": "Add the `Cache-Control` HTTP response header such as `Cache-Control: no-store`, as it will help insure that the browser does not cache sensitive pages."
+              "id": "permission_change",
+              "remediation_advice": "Review and update the necessary permissions, ensuring they align with the new requirements, and consider implementing a robust permission management system for better control and tracking."
             }
           ]
         },
         {
-          "id": "waf_bypass",
-          "children": [
-            {
-              "id": "direct_server_access",
-              "remediation_advice": "To ensure that your origin servers cannot be accessed directly, only accept traffic coming from your Web Application Firewall provider's IP ranges, rather than trusting that your servers remain inaccessible due to their IP's being secret.",
-              "references": [
-                "https://blog.christophetd.fr/bypassing-cloudflare-using-internet-wide-scan-data/"
-              ]
-            }
+          "id": "session_fixation",
+          "remediation_advice": "Always regenerate the session token after the users properly authenticate.",
+          "references": [
+            "http://projects.webappsec.org/w/page/13246960/Session%20Fixation"
           ]
         },
         {
-          "id": "race_condition",
-          "remediation_advice": "The key to preventing a race condition is to find a way to synchronize or otherwise strictly control the order of operations in potentially vulnerable functions and actions. The best way to do this is through locks. Most programming languages have a built-in locking functionality for data; for example, Python has “threading.Lock”, and Go has “sync.Mutex”. Refer to the documentation for your programming language of choice for more information. If the language has multi-threaded or asynchronous capabilities built-in, it should have some form of locking mechanism available to you.",
+          "id": "two_fa_bypass",
           "references": [
-            "https://lightningsecurity.io/blog/race-conditions/",
-            "https://blog.securitycompass.com/moving-beyond-the-owasp-top-10-part-1-race-conditions-912dccbb7c14",
-            "https://medium.com/in-the-weeds/fixing-a-race-condition-c8b475fbb994",
-            "https://blog.arkency.com/2015/09/testing-race-conditions/",
-            "http://www.javacreed.com/what-is-race-condition-and-how-to-prevent-it/",
-            "https://blog.golang.org/race-detector"
+            "https://www.owasp.org/index.php/Testing_Multiple_Factors_Authentication_(OWASP-AT-009)"
           ]
         },
         {
-          "id": "cache_poisoning",
-          "remediation_advice": "The most robust defense against cache poisoning is to disable caching. This is plainly unrealistic advice for some, but it's likely that some websites that start using a service like Cloudflare for DDoS protection or easy SSL end up vulnerable to cache poisoning simply because caching is enabled by default.\n\nRestricting caching to purely static responses is also effective, provided you're sufficiently wary about what you define as 'static'.\n\nLikewise, avoiding taking input from headers and cookies is an effective way to prevent cache poisoning, but it's hard to know if other layers and frameworks are sneaking in support for extra headers. You might want to audit every page of your application with Param Miner to flush out unkeyed inputs.\n\nOnce you've identified unkeyed inputs in your application, the ideal solution is to outright disable them. Failing that, you could strip the inputs at the cache layer, or add them to the cache key. Some caches let you use the Vary header to key unkeyed inputs, and others let you define custom cache keys but may restrict this feature to 'enterprise' customers.\n\nFinally, regardless of whether your application has a cache, some of your clients may have a cache at their end and as such client-side vulnerabilities like XSS in HTTP headers should never be ignored.",
+          "id": "weak_login_function",
+          "remediation_advice": "Login forms should always be served over `HTTPS`, as well as all credentials should be transmitted over an encrypted channel at all times.\n\nAlways provide secure protocols for authentication connections as well as consider disabling any insecure protocols that are available.",
           "references": [
-            "https://portswigger.net/blog/practical-web-cache-poisoning"
+            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Authentication_Cheat_Sheet.md#transmit-passwords-only-over-tls-or-other-strong-transport"
           ]
-        },
+        }
+      ]
+    },
+    {
+      "id": "client_side_injection",
+      "children": [
         {
-          "id": "bitsquatting",
-          "remediation_advice": "As a best practice, consider registering any potential bitsquatting domain names.",
+          "id": "binary_planting",
+          "remediation_advice": "1. Use fully qualified paths when loading binaries.\n2. Remove the current working directory (CWD) from the binary search path or if the application depends on loading a binary from the current directory, the path should be obtained first and used to pass in a fully qualified path.\n3. Secure access permissions on a local directory as to not allow a local attacker to plant a malicious binary in a trusted location.",
           "references": [
-            "http://dinaburg.org/bitsquatting.html"
+            "http://www.binaryplanting.com/guidelinesDevelopers.htm"
           ]
         }
       ]
     },
     {
-      "id": "server_side_injection",
-      "remediation_advice": "Preventing injection requires keeping untrusted data separate from commands and queries.",
+      "id": "cross_site_request_forgery_csrf",
+      "remediation_advice": "1. Consider using a known and secure CSRF synchronizer API and apply the generated CSRF token to every request. If infeasible to apply to every request, generate a CSRF token for the entire session and apply that to every request or, at minimum, every request considered sensitive. Always make sure to check the actual CSRF token.\n2. Consider verifying using same-origin rules to the source and target by checking the `Origin` and `Referer` headers.\n3. Consider using the `Double Submit Cookie` pattern.\n4. Consider using the `Encrypted Token` pattern.\n5. Consider protecting REST services by using the `X-Requested-With: XMLHttpRequest` header in all requests.\n6. Consider using re-authentication in cases where the request is particularly sensitive. This is the most effective CSRF prevention technique, however it does disturb the entire user experience.",
       "references": [
-        "https://www.owasp.org/index.php/Top_10-2017_A1-Injection"
+        "https://www.owasp.org/index.php/Top_10_2013-A8-Cross-Site_Request_Forgery_(CSRF)",
+        "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Cross-Site_Request_Forgery_Prevention_Cheat_Sheet.md",
+        "http://projects.webappsec.org/w/page/13246919/Cross%20Site%20Request%20Forgery",
+        "https://www.cvedetails.com/vulnerability-list/opcsrf-1/csrf.html"
+      ]
+    },
+    {
+      "id": "cross_site_scripting_xss",
+      "remediation_advice": "1. Always treat all user input as untrusted data.\n2. Never insert untrusted data except in allowed locations.\n3. Always input or output-encode all data coming into or out of the application.\n4. Always whitelist allowed characters and seldom use blacklisting of characters except in certain use cases.\n5. Always use a well-known and security encoding API for input and output encoding such as the `OWASP ESAPI`.\n6. Never try to write input and output encoders unless absolutely necessary. Chances are that someone has already written a good one.\n7. Never use the DOM function `innerHtml` and instead use the functions `innerText` and `textContent` to prevent against DOM-based XSS.\n8. As a best practice, consider using the `HTTPOnly` flag on cookies that are session tokens or sensitive tokens.\n9. As a best practice, consider implementing `Content Security Policy` to protect against XSS and other injection type attacks.\n10. As a best practice, consider using an auto-escaping templating system.",
+      "references": [
+        "https://www.owasp.org/index.php/Top_10-2017_A7-Cross-Site_Scripting_(XSS)",
+        "https://www.owasp.org/index.php/Cross-site_Scripting_(XSS)",
+        "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.md",
+        "http://projects.webappsec.org/Cross-Site+Scripting",
+        "https://www.cvedetails.com/vulnerability-list/opxss-1/xss.html"
       ],
       "children": [
         {
-          "id": "ldap_injection",
-          "remediation_advice": "Implement input validation and sanitization techniques to filter and escape user input before using it in LDAP queries, and utilize parameterized queries or prepared statements to prevent injection attacks.",
-          "references": [
-            "https://owasp.org/www-community/attacks/LDAP_Injection",
-            "https://cheatsheetseries.owasp.org/cheatsheets/LDAP_Injection_Prevention_Cheat_Sheet.html"
-          ]
-        },
-        {
-          "id": "file_inclusion",
-          "remediation_advice": "1. Don't allow user input in file paths. If hard-coding is not an option, select input from a limited list via an index variable.\n2. If dynamic path concatenation is a must have. Only accept required characters. Allow `a-z 0-9` and do not allow `..` or `/` or `%00` (null byte) or any unexpected characters.\n3. For API's allow only inclusion for a specific directory and those below it, this stops traversal attacks.",
+          "id": "trace_method",
+          "remediation_advice": "As the TRACE method can be utilized to bypass certain protections, consider disabling the HTTP method TRACE.",
           "references": [
-            "http://resources.infosecinstitute.com/file-inclusion-attacks/",
-            "https://en.wikipedia.org/wiki/File_inclusion_vulnerability",
-            "https://www.cvedetails.com/vulnerability-list/opfileinc-1/file-inclusion.html"
+            "https://www.owasp.org/index.php/Cross_Site_Tracing"
           ]
-        },
+        }
+      ]
+    },
+    {
+      "id": "cryptographic_weakness",
+      "children": [
         {
-          "id": "remote_code_execution_rce",
-          "remediation_advice": "The most effective method of eliminating Code Injection vulnerabilities is to avoid code evaluation at all costs unless absolutely and explicitly necessary (i.e. there is no possibility of achieving the same result without code evaluation). In the event where code evaluation is necessary, it is crucial for any user input to be very strongly validated, with as many restrictions as possible on user input.",
-          "references": [
-            "https://www.owasp.org/index.php/Command_Injection",
-            "https://www.cvedetails.com/vulnerability-list/opec-1/execute-code.html"
+          "id": "broken_cryptography",
+          "children": [
+            {
+              "id": "use_of_broken_cryptographic_primitive",
+              "remediation_advice": "The use of broken, weak, or flawed cryptographic algorithms can allow an attacker to decrypt sensistive information.  Ensure the application makes use of only trustworthy cryprographic algorithms as indicated by relevant security standard(s) and regulation(s).",
+              "references": [
+                "https://codeql.github.com/codeql-query-help/java/java-weak-cryptographic-algorithm/",
+                "https://csrc.nist.gov/csrc/media/publications/fips/140/2/final/documents/fips1402annexa.pdf",
+                "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar2.pdf"
+              ]
+            },
+            {
+              "id": "use_of_vulnerable_cryptographic_library",
+              "remediation_advice": "The identification, patching, and disclosure of vulnerabilities in third-party libraries, including cryptographic libraries, is a daily occurrence.  In some cases, cryptographic libraries are deemed 'broken' and deprecated.  Ensure the application is updated to include the latest secure version of all third-party cryptographic libraries and replace known 'broken' cryptographic libraries with secure alternatives.",
+              "references": [
+                "https://www.ubiqsecurity.com/bouncy-castle-and-the-impact-of-cryptographic-vulnerabilities/",
+                "https://blog.cryptographyengineering.com/2013/09/20/rsa-warns-developers-against-its-own/"
+              ]
+            }
           ]
         },
         {
-          "id": "sql_injection",
-          "remediation_advice": "Ensure that proper server-side input validation is performed on all sources of user input. Various protections should be implemented using the following in order of effectiveness:\n\n1. **Errors:** Ensure that SQL errors are turned off and not reflected back to a user when an error occurs as to not expose valuable information to an attacker.\n2. **Parameterize Queries:** Ensure that when a user’s input is added to a backend SQL query, it is not string appended but placed into the specific SQL parameter.  The method to perform this varies from language to language.\n3. **Server-Side Input Length:** Limit the length of each field depending on its type. For example, a name should be less than **_16 characters long_**, and an ID should be less than **_5 characters long_**.\n4. **Whitelist:** Create character ranges (ie. Numeric, alpha, alphanumeric, alphanumeric with specific characters) and ensure that each input is restricted to the minimum length whitelist necessary.\n5. **Blacklist:** Disallow common injection characters such as `\"<>\\/?*()&`, `SQL` and `SCRIPT` commands such as `SELECT`, `INSERT`, `UPDATE`, `DROP`, and `SCRIPT`, newlines `%0A`, carriage returns `%0D`, null characters `%00` and unnecessary or bad encoding schemas (malformed `ASCII`, `UTF-7`, `UTF-8`, `UTF-16`, `Unicode`, etc.).\n6. **Logging and Web Specific IDS/IPS (Intrusion Detection/Prevention System):** Ensure that proper logging is taking place and is being reviewed, and any malicious traffic which generates an alert is promptly throttled and eventually blacklisted.",
+          "id": "incomplete_cleanup_of_keying_material",
+          "remediation_advice": "Ensure the application erases all non-volatile copies of sensitive cryptographic data in memory or other non-volatile storage when no longer needed by the application.  Ensure the application does not retain sensitive cryptographic data in memory longer than necessary by storing the data in protected volatile storage (e.g. TPM) and open/close handles to the data upon each new invocation of the cryptographic routine.",
           "references": [
-            "https://www.owasp.org/index.php/SQL_Injection",
-            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/SQL_Injection_Prevention_Cheat_Sheet.md",
-            "http://projects.webappsec.org/SQL-Injection",
-            "https://www.cvedetails.com/vulnerability-list/opsqli-1/sql-injection.html"
+            "https://documentation-service.arm.com/static/624af896b059dc5ff9a8fbda"
           ]
         },
         {
-          "id": "xml_external_entity_injection_xxe",
-          "remediation_advice": "Because user supplied XML input comes from an \"untrusted source\" it is very difficult to properly validate the XML document in a manner to prevent against this type of attack. \n\nInstead, the XML processor should be configured to use only locally defined `Document Type Definition (DTD)` and disallow any inline DTD that is specified within user supplied XML documents. \n\nDue to the fact that there are numerous XML parsing engines available for different programming languages, each has its own mechanism for disabling inline DTD to prevent XXE. You may need to search your XML parser's documentation for how to `disable inline DTD` specifically.",
-          "references": [
-            "https://www.owasp.org/index.php/XML_External_Entity_(XXE)_Processing",
-            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/XML_External_Entity_Prevention_Cheat_Sheet.md",
-            "http://projects.webappsec.org/XML-External-Entities",
-            "https://www.gracefulsecurity.com/xml-external-entity-injection-xxe-vulnerabilities/"
-          ]
-        },
-        {
-          "id": "http_response_manipulation",
+          "id": "insecure_implementation",
           "children": [
             {
-              "id": "response_splitting_crlf",
-              "remediation_advice": "Apply proper input validation and check for `CRLF` characters and `null byte` characters whenever user supplied input is used in HTTP response headers.",
+              "id": "improper_following_of_specification",
+              "remediation_advice": "As a general rule, cryptographic alorithms are difficult to properly implement and developers should rely on well-vetted cryptographic libraries rather than homegrown implementations.  When it is necessary to develop a homegrown implementation, ensure the implementation adheres to all requirements for the cryptographic parameters.",
               "references": [
-                "https://www.owasp.org/index.php/CRLF_Injection",
-                "http://projects.webappsec.org/w/page/13246931/HTTP%20Response%20Splitting",
-                "https://www.cvedetails.com/vulnerability-list/ophttprs-1/http-response-splitting.html"
+                "https://www.rfc-editor.org/rfc/rfc7696",
+                "https://www.rfc-editor.org/rfc/rfc3565"
+              ]
+            },
+            {
+              "id": "missing_cryptographic_step",
+              "remediation_advice": "Oftentimes cryptographic algorithms involve complex and time-consuming mathematical operations to ensure the security of the product (e.g. ciphertext, hash value).  In some instances, such as in limited power systems, costly cryptographic steps may be skipped.  As a general rule, cryptographic alorithms are difficult to properly implement and developers should rely on well-vetted cryptographic libraries rather than homegrown implementations.  When it is necessary to develop a homegrown implementation, always thoroughly review the algorithm specification and properly implement each computational step.",
+              "references": [
+                "https://www.rfc-editor.org/rfc/rfc3565",
+                "https://nvd.nist.gov/vuln/detail/CVE-2022-29053",
+                "https://www.fortiguard.com/psirt/FG-IR-22-158"
               ]
             }
           ]
         },
         {
-          "id": "content_spoofing",
-          "remediation_advice": "1. Always treat all user input as untrusted data.\n2. Always input or output encode all data coming into or out of the application.\n3. Always whitelist allowed characters and seldom use blacklisting of characters unless in certain use cases.\n4. Always use a well known and security encoding API for input and output encoding such as the `OWASP ESAPI`.\n5. Never try to write input and output encoders unless absolutely necessary. Chances are that someone has already written a good one.",
-          "references": [
-            "http://projects.webappsec.org/w/page/13246917/Content%20Spoofing"
-          ],
+          "id": "insecure_key_generation",
           "children": [
             {
-              "id": "iframe_injection",
+              "id": "improper_asymmetric_exponent_selection",
+              "remediation_advice": "When implementing an asymmetric cryptography algorithm that relies upon exponentiation:\n\n(a) ensure that private exponent selection allows for a sufficiently large number to be chosen; and\n(b) always use a uniquely-generated random number for the private exponent.",
               "references": [
-                "http://resources.infosecinstitute.com/iframe-security-risk/"
+                "https://medium.com/curiositypapers/a-complete-explanation-of-rsa-asymmetric-encryption-742c5971e0f",
+                "https://www.iacr.org/archive/eurocrypt2000/1807/18070374-new.pdf",
+                "https://www.rfc-editor.org/rfc/rfc8017"
               ]
             },
             {
-              "id": "impersonation_via_broken_link_hijacking",
-              "remediation_advice": "In order to prevent this type of injection consider the following solutions:\n\n1. Keep track of company's public 3rd party accounts, that includes social media. Whenever one is deleted, make sure it is not referenced in the application\n2. Monitor all hyperlinks pointing to 3rd party resources, as well as any other external references for that matter, and make sure that they do not become invalid, e.g. check for change in HTTP response code. In many cases it may be possible for anyone to claim such URL's and share new content.\n3. Always treat all user input as untrusted data."
+              "id": "improper_asymmetric_prime_selection",
+              "remediation_advice": "When implementing an asymmetric cryptography algorithm that relies upon prime numbers for public/private keypair generation:\n\n(a). ensure that prime number selection allows sufficiently large prime numbers to be represented;\n(b) ensure there is not mathematical relationship between each of the prime numbers selected; and\n(c) always use uniquely-generated random numbers for prime selection.",
+              "references": [
+                "https://medium.com/curiositypapers/a-complete-explanation-of-rsa-asymmetric-encryption-742c5971e0f",
+                "https://www.schneier.com/blog/archives/2022/03/breaking-rsa-through-insufficiently-random-primes.html",
+                "https://arstechnica.com/information-technology/2022/03/researcher-uses-600-year-old-algorithm-to-crack-crypto-keys-found-in-the-wild/",
+                "https://www.rfc-editor.org/rfc/rfc8017#page-36"
+              ]
             },
             {
-              "id": "external_authentication_injection",
-              "remediation_advice": "Even if unsafe HTML tags like `<script>` or `<iframe>` are filtered out from user input, it is possible to inject `HTTP 401` authentication prompt into a HTML page via tags like `<img>`. In order to prevent this type of injection consider the following solutions:\n\n1. Always treat all user input as untrusted data.\n2. Always input or output encode all data coming into or out of the application.\n3. Always whitelist allowed characters and seldom use blacklisting of characters unless in certain use cases.\n4. Always use a well known and security encoding API for input and output encoding such as the `OWASP ESAPI`.\n5. Never try to write input and output encoders unless absolutely necessary. Chances are that someone has already written a good one.",
+              "id": "insufficient_key_space",
+              "remediation_advice": "Most modern cryptogaphic algorithms allow implementers to specify the length of the key used by the algorithm.  If an insufficient key length is specified, an attacker can use offline brute force techniques to decrypt the ciphertext without any user input.  Ensure the application specifies a sufficiently large minimum cryptographic key length as appropriate for the context or as indicated by relevant regulations and standards.  As a general rule, AES-128, RSA-2048, and SHA-256 should be used, at a minimum.",
               "references": [
-                "https://www.exploit-db.com/papers/12898/"
+                "https://codeql.github.com/codeql-query-help/cpp/cpp-insufficient-key-size/",
+                "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar2.pdf"
               ]
             },
             {
-              "id": "flash_based_external_authentication_injection",
-              "remediation_advice": "Even if unsafe HTML tags like `<script>` or `<iframe>` are filtered out from user input, it is possible to inject `HTTP 401` authentication prompt into Flash content. In order to prevent this type of injection consider the following solutions:\n\n1. Always treat all user input as untrusted data.\n2. Always input or output encode all data coming into or out of the application.\n3. Always whitelist allowed characters and seldom use blacklisting of characters unless in certain use cases.\n4. Always use a well known and security encoding API for input and output encoding such as the `OWASP ESAPI`.\n5. Never try to write input and output encoders unless absolutely necessary. Chances are that someone has already written a good one."
+              "id": "insufficient_key_stretching",
+              "remediation_advice": "Key stretching is a technique used to increase the entropy of low-entropy keys, such as user-supplied passwords.  The technique is usually based on many iterative rounds of cryptographic computations upon the initial low-entropy key and brute forcing vulnerabilities arise if an insufficient number of iterations are applied.  Ensure the application adheres to all relevant specification(s) and performs a sufficiently large number of iterations to render the work-factor of brute force attacks infeasible.",
+              "references": [
+                "https://link.springer.com/chapter/10.1007/BFb0030415",
+                "https://www.rfc-editor.org/rfc/rfc2898"
+              ]
             },
             {
-              "id": "html_content_injection",
-              "remediation_advice": "Ensure proper input validation and output encoding to prevent HTML content injection attacks and protect against potential malicious code execution."
+              "id": "key_exchange_without_entity_authentication",
+              "remediation_advice": "When a key exchange is performed without validating the authenticity of the opposite entity, an attacker is able to impersonate a trusted entity and compromise the confidentiality of the encrypted data.  Ensure the application properly verifies the identity of the opposite party during key exchange using context appropriate mechanisms, as indiciated in the relevant standard(s) and specification(s).",
+              "references": [
+                "https://cwe.mitre.org/documents/sources/TheCLASPApplicationSecurityProcess.pdf",
+                "https://www.rfc-editor.org/rfc/rfc6071#page-17",
+                "https://www.rfc-editor.org/rfc/rfc5246"
+              ]
+            }
+          ]
+        },
+        {
+          "id": "insufficient_entropy",
+          "children": [
+            {
+              "id": "initialization_vector_reuse",
+              "remediation_advice": "Many cryptographic algorithms rely upon an initial block of data, called the 'initialization vector' (IV), in addition to the plaintext being encrypted.  If an application reuses the same IV for multiple invocations of an encryption routine, an attacker can use this knowledge to glean the original plaintext from an encrypted stream.  Ensure each invocation of an encryption routine uses a different IV.",
+              "references": [
+                "https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf",
+                "https://www.openssl.org/~bodo/tls-cbc.txt",
+                "https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38d.pdf",
+                "http://www.isaac.cs.berkeley.edu/isaac/mobicom.pdf"
+              ]
             },
             {
-              "id": "email_html_injection",
-              "remediation_advice": "Always ensure that email contents cannot be tampered with. Limit what the user can insert into the email by filtering special characters and limiting the amount of characters that can be inserted. Additionally, filter out any URLs as they are often rendered as links by email providers.",
+              "id": "limited_rng_entropy_source",
+              "remediation_advice": "1. When using the native entropy sources in a Linux environment, be sure to use /dev/random instead of /dev/urandom.  This is because, in the event of depletion of the kernel entropy pool, /dev/random blocks until the level of entropy in the system entropy pool is high enough to ensure high entropy random number generation.  In contrast, /dev/urandom does not block and will return low-entropy random numbers in the event of depletion of the system entropy pool.\n\n2. In Windows environments, ensure all elements of the Windows entropy pool exhibit appropriately high levels of randomness.\n\n3. In applications that require large volumes of high-entropy random numbers to be generated, consider using alternative RNGs, such as Intel's Digital Random Number Generator (DRNG).",
               "references": [
-                "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Input_Validation_Cheat_Sheet.md"
+                "https://www.redhat.com/en/blog/understanding-random-number-generators-and-their-limitations-linux#:~:text=A%20source%20of%20entropy%20(RNG)&text=Random%20number%20generators%20or%20RNGS,unpredictable%20numbers%20as%20its%20output.",
+                "https://blog.cloudflare.com/ensuring-randomness-with-linuxs-random-number-generator/",
+                "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90B.pdf",
+                "https://download.microsoft.com/download/1/c/9/1c9813b8-089c-4fef-b2ad-ad80e79403ba/Whitepaper%20-%20The%20Windows%2010%20random%20number%20generation%20infrastructure.pdf"
               ]
             },
             {
-              "id": "email_hyperlink_injection_based_on_email_provider",
-              "remediation_advice": "Always ensure that email contents cannot be tampered with. Limit what the user can insert into the email by filtering special characters and limiting the amount of characters that can be inserted. Filter out any URLs as they are often rendered as links by email providers.",
+              "id": "predictable_initialization_vector",
+              "remediation_advice": "Many cryptographic algorithms rely upon an initial block of data, called the 'initialization vector' (IV), in addition to the plaintext being encrypted.  It is critical that it be impossible to predict the IV associated with the plaintext for any given invocation of the encryption routine.  This is best achieved by using a newly-generated random number, produced by a trustworthy RNG, for each invocation of the encryption routine.",
               "references": [
-                "https://www.owasp.org/index.php/Input_Validation_Cheat_Sheet"
+                "https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf",
+                "https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38d.pdf",
+                "https://www.cve.org/CVERecord?id=CVE-2011-3389"
               ]
             },
             {
-              "id": "text_injection",
-              "remediation_advice": "As a best practice, handle dynamic text input and use a whitelist of proper inputs."
+              "id": "predictable_prng_seed",
+              "remediation_advice": "Pseudo-Random Number Generators (PRNG) use complex algorithms to produce a stream of random bits but require an initial 'seeding,' which determines the outcome of all random numbers generated by the PRNG.  Therefore, if an attacker can predict all or a portion of the seed value used to initialize the PRNG, it is possible to predict the random number stream produced by the PRNG.  Per FIPS 140-3, \"Security Requirements for Cryptographic Modules,\" it is acceptable to use the output of a trustworthy PRNG as the seed value for another PRNG.  Ensure applications use a randomly-generated seed value by drawing from a trustworth entropy source, such as /dev/random.",
+              "references": [
+                "https://www.sciencedirect.com/science/article/pii/S2212017316304972",
+                "https://csrc.nist.gov/csrc/media/publications/fips/140/2/final/documents/fips1402.pdf",
+                "https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.140-3.pdf",
+                "https://www.appmarq.com/public/robustness,1039006,CWE-336-Avoid-using-predictable-SecureRandom-Seeds"
+              ]
             },
             {
-              "id": "homograph_idn_based",
-              "remediation_advice": "If disallowing URLs originating from user input is not an option, allow Unicode URLs only if all the characters belong to the same language that is chosen by user settings; display punycode URL otherwise. Some modern browsers will display these characters as punycode, e.g. spoofed `аррӏе.com` being `xn--80ak6aa92e.com`. However there are some best practices like use of an identity or password manager that can be recommended to users to help protect them against phishing.",
+              "id": "prng_seed_reuse",
+              "remediation_advice": "Pseudo-Random Number Generators (PRNG) use complex algorithms to produce a stream of random bits but require an initial 'seeding,' which determines the outcome of all random numbers generated by the PRNG.  Therefore, if an attacker knows the seed value used to initialize the PRNG, it is possible to determine all future random numbers produced by the PRNG.  Do not use the same seed value for multiple invocations of PRNG initialization.",
               "references": [
-                "https://www.icann.org/news/announcement-2005-02-23-en",
-                "http://www.securityfocus.com/bid/12461",
-                "https://www.cvedetails.com/cve/CVE-2005-0238/"
+                "https://www.sciencedirect.com/science/article/pii/S2212017316304972"
               ]
             },
             {
-              "id": "rtlo",
-              "remediation_advice": "1. If possible avoid allowing Right to Left Override `‮` character in filenames and URLs.\n2. Avoid mixing right-to-left and left-to-right characters in a single name.",
+              "id": "small_seed_space_in_prng",
+              "remediation_advice": "Pseudo-Random Number Generators (PRNG) use complex algorithms to produce a stream of random bits but require an initial 'seeding,' which determines the outcome of all random numbers generated by the PRNG.  An insufficiently-sized seed value allows an attacker to brute force the random number stream produced by the PRNG by brute forcing all possible seed values.  Ensure the value used as a PRNG seed has a length (in terms of bit size) to guarantee a sufficiently large work-factor to render such brute force attacks infeasible.  As a general rule, the number of steps (iterations) required to compromise the seed value should be at least as large as the number of steps (iterations) required to compromise the cryptographic entity (e.g. key) that relies upon the PRNG.",
               "references": [
-                "https://dl.packetstormsecurity.net/papers/general/righttoleften-override.pdf"
+                "https://csrc.nist.gov/csrc/media/publications/fips/140/2/final/documents/fips1402.pdf",
+                "https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.140-3.pdf",
+                "https://wiki.sei.cmu.edu/confluence/display/c/MSC32-C.+Properly+seed+pseudorandom+number+generators"
+              ]
+            },
+            {
+              "id": "use_of_trng_for_nonsecurity_purpose",
+              "remediation_advice": "1. The random number generation rate of most RNGs is limited, so it is important to draw from RNGs only when entropy is needed for security purposes.\n\n2. Applications should ensure resiliency when drawing from TRNGs by properly handling blocking conditions that may arise when the TRNG blocks due to depletion of the entropy source.\n\n3. Increase potential random number generation rate by integrating multiple, diverse, entropy sources in a secure manner.",
+              "references": [
+                "https://blog.cloudflare.com/ensuring-randomness-with-linuxs-random-number-generator/",
+                "https://cwe.mitre.org/documents/sources/TheCLASPApplicationSecurityProcess.pdf"
               ]
             }
           ]
         },
         {
-          "id": "ssti",
-          "remediation_advice": "1. Wherever possible, avoid creating templates from user input. Passing user input into templates as parameters is normally a safe alternative.\n2.If supporting user-submitted templates is a business requirement, consider using a simple logic-less template engine such as Mustache or one provided by the native language like Python's Template. If this is not an option, review the chosen template engine's documentation for hardening advice, and consider rendering the template within a sandboxed execution environment.",
-          "references": [
-            "https://portswigger.net/kb/issues/00101080_server-side-template-injection"
-          ]
-        }
-      ]
-    },
-    {
-      "id": "broken_authentication_and_session_management",
-      "remediation_advice": "1. **API:** Use security focused APIs to check for proper security controls.\n2. **Session Management:** Use proper session management checks to disallow unauthenticated users accessing protected and sensitive resources.\n3. **Access Control:** Use proper access control checks to disallow unprivileged users from accessing protected and sensitive resources.",
-      "references": [
-        "https://www.owasp.org/index.php/Top_10-2017_A2-Broken_Authentication",
-        "https://www.owasp.org/index.php/Broken_Authentication_and_Session_Management",
-        "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Authentication_Cheat_Sheet.md",
-        "http://projects.webappsec.org/Insufficient-Authentication",
-        "https://www.cvedetails.com/vulnerability-list/opgpriv-1/gain-privilege.html"
-      ],
-      "children": [
-        {
-          "id": "two_fa_bypass",
-          "references": [
-            "https://www.owasp.org/index.php/Testing_Multiple_Factors_Authentication_(OWASP-AT-009)"
-          ]
-        },
-        {
-          "id": "cleartext_transmission_of_session_token",
-          "remediation_advice": "Ensure that session tokens are transmitted over protected channels at all times. If the secure cookie flag is not an option ensure that the application does not support unencrypted communication.",
-          "references": [
-            "https://www.owasp.org/index.php/Testing_for_Sensitive_information_sent_via_unencrypted_channels_(OTG-CRYPST-003)",
-            "https://www.owasp.org/index.php/SecureFlag"
-          ]
-        },
-        {
-          "id": "weak_login_function",
-          "remediation_advice": "Login forms should always be served over `HTTPS`, as well as all credentials should be transmitted over an encrypted channel at all times.\n\nAlways provide secure protocols for authentication connections as well as consider disabling any insecure protocols that are available.",
-          "references": [
-            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Authentication_Cheat_Sheet.md#transmit-passwords-only-over-tls-or-other-strong-transport"
+          "id": "insufficient_verification_of_data_authenticity",
+          "children": [
+            {
+              "id": "cryptographic_signature",
+              "remediation_advice": "A cryptographic signature is used to provide authenticity verification and non-repudiation of data received from another party.  Depending on the application context failure to properly validate the cryptographic signature can result in vulnerabilities ranging from unauthorized information disclosure, to user impersonation, or even unauthorized code execution.  Ensure the application verifies the cryptographic signature accompanying received data and deny requests containing an invalid cryptographic signature.",
+              "references": [
+                "https://www.internetsociety.org/resources/deploy360/2014/the-two-sides-of-dnssec-signing-and-validation/",
+                "https://vulnerabilityhistory.org/tags/89",
+                "https://www.cisco.com/c/en/us/support/docs/csa/cisco-sa-20180926-digsig.html"
+              ]
+            },
+            {
+              "id": "identity_check_value",
+              "remediation_advice": "An Integrity Check Value (ICV) is used to ensure data has not become corrupted during transmission and may incorporate keying material to ensure message authenticity in security sensitive applications.  Failure to properly validate the ICV can lead to data corruption and may allow an attacker to impersonate other senders in messages.  Ensure the application validates the ICV in all received messages and adheres to the relevant specification(s) with regard to the ICV validation steps.",
+              "references": [
+                "https://cwe.mitre.org/documents/sources/TheCLASPApplicationSecurityProcess.pdf",
+                "https://www.rfc-editor.org/rfc/rfc4302#section-2.6",
+                "https://www.rfc-editor.org/rfc/rfc4302#section-3.3.3"
+              ]
+            }
           ]
         },
         {
-          "id": "session_fixation",
-          "remediation_advice": "Always regenerate the session token after the users properly authenticate.",
-          "references": [
-            "http://projects.webappsec.org/w/page/13246960/Session%20Fixation"
+          "id": "key_reuse",
+          "children": [
+            {
+              "id": "inter_environment",
+              "remediation_advice": "Cryptographic key reuse occurs when the same key is used for more than one purpose.  When the same key is used between multiple application contexts, such as different customer environments in a multi-tenancy application, an attacker can gain unauthorized access to other users' information and may be able to impersonate other users to achieve privilege escalation.  Ensure the application uses unique cryptographic keys for each application context and do not reuse keys across trust zones."
+            },
+            {
+              "id": "intra_environment",
+              "remediation_advice": "Cryptographic key reuse occurs when the same key is used for more than one purpose.  When the same key is used for multiple purposes within the context of a single environment (e.g. individual customer in a multi-tenant application) an attacker can leverage knowledge of the key to gain unauthorized access to other information or privileges protected by the same key.  Ensure all application components, such as information and authentication tokens, are appropriately grouped into separate trust zones and protected by separate cryptographic keys."
+            },
+            {
+              "id": "lack_of_perfect_forward_secrecy",
+              "remediation_advice": "Perfect Forward Secrecy (PFS) is a technique used to minimize the impact of compromise of an entity's longterm private key by negotiating an ephemeral keypair for each new session between two parties.  Without PFS, compromise of an entity's longterm private key results in compromise of all historical and future session keys based thereupon, meaning any recorded encrypted traffic can then be decrypted.  Ensure the application enables PFS for the encryption protocols implemented, as indicated by the relevant standard(s) and specification(s).",
+              "references": [
+                "https://avinetworks.com/glossary/perfect-forward-secrecy/#:~:text=Without%20perfect%20forward%20secrecy%2C%20an,primary%20secret%20with%20each%20client.",
+                "https://medium.com/asecuritysite-when-bob-met-alice/forward-secrecy-and-ephemeral-keys-guarding-against-data-breaches-in-the-future-b709295c6e5a",
+                "https://www.rfc-editor.org/rfc/rfc7525#page-18"
+              ]
+            }
           ]
         },
         {
-          "id": "failure_to_invalidate_session",
+          "id": "side_channel_attack",
           "children": [
             {
-              "id": "on_logout",
-              "remediation_advice": "Properly invalidate the session on the client and server-side when the user logs out of their session.",
+              "id": "differential_fault_analysis",
+              "remediation_advice": "Differential fault analysis attacks are made possible when the outcome or state of specific steps of the cryptographic algorithm implementation can be gleaned by changes in the application's (or system's) response to specially-crafted fault conditions.  To prevent such attacks, applications and systems should always revert to a known and uniform state upon the occurrence of faults.  This may be achieved using a variety of methods, the effectiveness of which will vary depending upon context, such as uniform exception handling, restoration of a saved state, or system reset.",
               "references": [
-                "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Session_Management_Cheat_Sheet.md#manual-session-expiration"
+                "https://link.springer.com/content/pdf/10.1007/BFb0052259.pdf?pdf=inline%20link",
+                "https://ieeexplore.ieee.org/document/6976633"
               ]
             },
             {
-              "id": "permission_change",
-              "remediation_advice": "Review and update the necessary permissions, ensuring they align with the new requirements, and consider implementing a robust permission management system for better control and tracking."
-            },
-            {
-              "id": "on_logout_server_side_only",
-              "remediation_advice": "Properly invalidate the session on the server-side when the user logs out of their session.",
+              "id": "emanations_attack",
+              "remediation_advice": "Emanations attacks are made possible when the outcome or state of specific steps of the cryptographic algorithm implementation result in changes to the electromagnetic emanations produced by the physical system on which the application is running.  Remediation of emanations leakage vulnerabilities is highly-dependent upon the application context but some general countermeasures are effective in most instances.  Ensure the application's implementation of each step of cryptographic algorithm processing results in uniform use of processor cycles, power, and features.  In some cases, this may involve the incorporation of less efficient code, in order to achieve a uniform emanations profile for all possible outcomes of each cryptographic step.  Additionally, incorporate EMF shielding into the physical device design to reduce detectable emanations from the device.",
               "references": [
-                "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Session_Management_Cheat_Sheet.md#manual-session-expiration"
+                "https://www.cs.tau.ac.il/~tromer/mobilesc/",
+                "https://www.cs.tau.ac.il/~tromer/ecdh/",
+                "https://eprint.iacr.org/2016/231.pdf",
+                "https://eprint.iacr.org/2016/129.pdf"
               ]
             },
             {
-              "id": "on_password_change",
-              "remediation_advice": "Properly invalidate all user sessions server-side when the user resets their password and at a minimum, invalidate all non-current user sessions sever-side when the user changes their password.",
+              "id": "padding_oracle_attack",
+              "remediation_advice": "A padding oracle attack occurs when the application reveals information about the validity of padding in data provided for decryption.  By making repeated attempts to decrypt attacker-controlled data, an attacker can use the information gleaned from the padding oracle to derive the encryption key.  Ensure the application produces non-descript error messages when decrypting user-supplied data.  Application responses also must not vary between different types of failure, such that an attacker cannot glean from the error that a padding exception has occurred.",
               "references": [
-                "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Session_Management_Cheat_Sheet.md#renew-the-session-id-after-any-privilege-level-change"
+                "https://archiv.infsec.ethz.ch/education/fs08/secsem/Manger01.pdf",
+                "https://research.nccgroup.com/2021/02/17/cryptopals-exploiting-cbc-padding-oracles/",
+                "https://flast101.github.io/padding-oracle-attack-explained/"
               ]
             },
             {
-              "id": "all_sessions",
-              "remediation_advice": "As a best practice, consider invalidating all user sessions on logout."
+              "id": "power_analysis_attack",
+              "remediation_advice": "Power analysis attacks are made possible when the power consumption of a system or individual circuit is dependent upon the outcome or state of specific steps of the cryptographic algorithm implementation.  Ensure the outcome of an individual step, or a group of steps, in a cryptographic algorithm implementation cannot be directly observed via the electrical state of any given circuit board trace or component.  Ensure power consumption of the system as a whole is decoupled from the state of cryptographic operations performed by the system through the use of power supply capacitance measures.",
+              "references": [
+                "https://www.proquest.com/openview/45733f2da135a88fba879f038db4d319/1?pq-origsite=gscholar&cbl=18750&diss=y",
+                "https://web.wpi.edu/Pubs/E-project/Available/E-project-122211-215512/unrestricted/Power_analysis.pdf",
+                "https://eprint.iacr.org/2014/204.pdf",
+                "https://ieeexplore.ieee.org/document/6730921"
+              ]
             },
             {
-              "id": "on_email_change",
-              "remediation_advice": "As a best practice, consider invalidating all sessions upon email change."
-            },
-            {
-              "id": "on_two_fa_activation_change",
-              "remediation_advice": "As a best practice, consider invalidating all sessions upon 2FA activation or change."
-            },
-            {
-              "id": "long_timeout",
-              "remediation_advice": "As a best practice, consider invalidating sessions after a shorter period of time."
+              "id": "timing_attack",
+              "remediation_advice": "A timing attack occurs when the amount of time the application takes to complete a cryptographic operation is related to the data provided by the user.  By making repeated attempts to decrypt attacker-controlled data, an attacker can use the information gleaned from this attack to derive the encryption key.  Ensure the application implements constant-time cryptographic algorithms, which always take the same amount of time to complete regardless of the input.",
+              "references": [
+                "https://research.kudelskisecurity.com/2013/12/13/timing-attacks-part-1/",
+                "https://www.bearssl.org/constanttime.html",
+                "https://www.chosenplaintext.ca/articles/beginners-guide-constant-time-cryptography.html"
+              ]
             }
           ]
         },
         {
-          "id": "concurrent_logins",
-          "remediation_advice": "As a best practice, consider disallowing multiple concurrent user sessions or logins."
-        }
-      ]
-    },
-    {
-      "id": "sensitive_data_exposure",
-      "remediation_advice": "Do the following, at a minimum, and consult the references:\n\n1. Classify data processed, stored or transmitted by an application. Identify which data is sensitive according to privacy laws, regulatory requirements, or business needs.\n2. Apply controls as per the classification.\n3. Don't store sensitive data unnecessarily. Discard it as soon as possible or use PCI DSS compliant tokenization or even truncation. Data that is not retained cannot be stolen.\n4. Make sure to encrypt all sensitive data at rest.\n5. Ensure up-to-date and strong standard algorithms, protocols, and keys are in place; use proper key management.\n6. Encrypt all data in transit with secure protocols such as TLS with perfect forward secrecy (PFS) ciphers, cipher prioritization by the server, and secure parameters. Enforce encryption using directives like `HTTP Strict Transport Security` (HSTS).\n7. Disable caching for response that contain sensitive data.\n8. Store passwords using strong adaptive and salted hashing functions with a work factor (delay factor), such as `Argon2`, `scrypt`, `bcrypt` or `PBKDF2`.\n9. Verify independently the effectiveness of configuration and settings.",
-      "references": [
-        "https://www.owasp.org/index.php/Top_10-2017_A3-Sensitive_Data_Exposure",
-        "http://projects.webappsec.org/Information-Leakage",
-        "https://blog.detectify.com/2016/07/01/owasp-top-10-sensitive-data-exposure-6/",
-        "https://www.cvedetails.com/vulnerability-list/opginf-1/gain-information.html"
-      ],
-      "children": [
-        {
-          "id": "disclosure_of_secrets",
-          "remediation_advice": "1. Do not store secrets in source code that is publicly accessible such as in a public GitHub repository.\n2. Critically sensitive data should not be transmitted in cleartext. Make sure to only use `HTTPS` whenever transmitting passwords and private API keys.\n3. Set appropriate headers to prevent caching of sensitive data when served to end-user."
-        },
-        {
-          "id": "exif_geolocation_data_not_stripped_from_uploaded_images",
-          "remediation_advice": "Remove all sensitive data from `EXIF` geolocation data from images after being uploaded to the server to prevent sensitive data exposure.",
-          "references": [
-            "http://resources.infosecinstitute.com/metadata-and-information-security/"
-          ]
-        },
-        {
-          "id": "visible_detailed_error_page",
-          "remediation_advice": "Turn off visible detailed error pages on production servers. Replace detailed error messages with generic error messages. This will be unuseful to attackers trying to get more reconnaissance information about the application or the server.",
+          "id": "use_of_expired_cryptographic_key_or_cert",
+          "remediation_advice": "This vulnerabily occurs when:\n\n (a). the application fails to verify the expiration date of a certificate provided by another entity has not passed;\n(b) the application fails to verify the certificate provided by another entity has not been revoked by the issuing authority; or\n(c). the application relies upon manual key management and does not provide a means of verifying the lifecycle of keys in use.  Ensure the application verifies the certificate produced by the opposite entity has not expired or been revoked, and provide the application user with sufficient information about how to proceed.  Ensure the application implements mechanisms to determine the lifecycle of manually-managed cryptographic keys and reject attempts to use expired keys.",
           "references": [
-            "https://www.owasp.org/index.php/Improper_Error_Handling"
+            "https://cwe.mitre.org/documents/sources/TheCLASPApplicationSecurityProcess.pdf"
           ]
         },
         {
-          "id": "disclosure_of_known_public_information",
-          "remediation_advice": "As a best practice, avoid disclosing known public information unnecessarily."
-        },
-        {
-          "id": "token_leakage_via_referer",
-          "remediation_advice": "Do not expose a sensitive token through insecure requests, as to not send the token in the `Referer` header, over cleartext HTTP or when going off-site to a 3rd party."
-        },
-        {
-          "id": "sensitive_token_in_url",
-          "remediation_advice": "Avoid putting any sensitive token in the URLs. The token can be found in cleartext wherever the URL is stored (eg: within unencrypted log files or browser cache). Instead, sensitive tokens should be sent in the HTTPS headers. Ensure all sensitive data is only transmitted via `HTTPS`."
-        },
-        {
-          "id": "non_sensitive_token_in_url",
-          "remediation_advice": "Avoid putting tokens in the URLs. The token can be found in cleartext wherever the URL is stored (eg: within unencrypted log files or browser cache). Instead, tokens should be sent in the HTTPS headers. Ensure all sensitive data is only transmitted via `HTTPS`."
-        },
-        {
-          "id": "weak_password_reset_implementation",
-          "references": [
-            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Forgot_Password_Cheat_Sheet.md",
-            "http://projects.webappsec.org/Insufficient-Password-Recovery"
-          ],
+          "id": "weak_hash",
           "children": [
             {
-              "id": "password_reset_token_sent_over_http",
-              "remediation_advice": "Avoid sending a password reset token over `HTTP`. A password reset token must always be transmitted via `HTTPS`."
+              "id": "lack_of_salt",
+              "remediation_advice": "A hash computed without the addition of a salt value is vulnerable to rainbow table attacks.  To prevent such attacks, ensure a unique and randonly-generated salt value is concatenated with the plaintext prior to computing the hash.",
+              "references": [
+                "https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html#salting",
+                "https://www.rfc-editor.org/rfc/rfc2898#page-6"
+              ]
             },
             {
-              "id": "token_leakage_via_host_header_poisoning",
-              "remediation_advice": "If the web application makes use of the host header value when composing the reset link, an attacker can poison the password reset link that is sent to a victim. If the victim clicks on the poisoned reset link in the email, the attacker will obtain the password reset token and can go ahead and reset the victim’s password. To protect your systems from this type of attack never trust the host header as it is controlled by the users.",
+              "id": "predictable_hash_collision",
+              "remediation_advice": "Hash collisions occur when a hashing algorithm generates the same hash value for two (or more) different plaintext inputs.  This can be the result of mathematical errors in the algorithm itself, such those found in the MD5 and SHA-1 algorithms.  Hash collisions can also occur as the result of incorrect implementation of an otherwise secure algorithm.  Always ensure applications make use of unbroken and well-vetted hashing algorithms, and ensure implementations strictly adhere to the requirements of cryptographic parameters as indicated by the relevant specification(s).",
               "references": [
-                "https://www.acunetix.com/blog/articles/automated-detection-of-host-header-attacks/"
+                "https://en.wikipedia.org/wiki/MD5#Collision_vulnerabilities",
+                "https://github.com/nim-lang/Nim/issues/10097",
+                "https://www.rfc-editor.org/rfc/rfc6234"
               ]
-            }
-          ]
-        },
-        {
-          "id": "mixed_content",
-          "remediation_advice": "To protect all elements of a page from sniffers and man-in-the-middle attacks, ensure that all content such as scripts, images, iframes, etc, are sourced over HTTPS rather than HTTP.",
-          "references": [
-            "https://www.owasp.org/index.php/Transport_Layer_Protection_Cheat_Sheet#Rule_-_Do_Not_Mix_TLS_and_Non-TLS_Content",
-            "https://developer.mozilla.org/en-US/docs/Web/Security/Mixed_content"
-          ]
-        },
-        {
-          "id": "sensitive_data_hardcoded",
-          "children": [
+            },
             {
-              "id": "oauth_secret",
-              "remediation_advice": "Consider using OAuth Implicit Grant to avoid hardcoding the OAuth secret key within the application.",
+              "id": "use_of_predictable_salt",
+              "remediation_advice": "When a hash is computing using a predictable salt, the protections afforded by the salt are diminished, leaving the hash vulnerable to rainbow table attacks.  Always use a unique and randomly-generated value for the salt, and ensure the length of the salt (in terms of bits) is sufficiently large to prevent brute force attacks.  As a general rule, salts used in cryptographic operations should be at least 8 bytes (64 bits) in length.",
               "references": [
-                "https://tools.ietf.org/html/rfc6749#section-4.2"
+                "https://www.rfc-editor.org/rfc/rfc2898#page-7"
               ]
             }
           ]
-        },
-        {
-          "id": "xssi",
-          "remediation_advice": "1. Avoid placing sensitive content inside JavaScript files, and also not in `JSONP`.\n2. Consider using a CSRF token.\n3. Sensitive scripts should only respond to POST requests.\n4. Append some non-executable prefix to the response body.\n5. Usage of the response header `X-Content-Type-Options: nosniff` and usage of the correct `Content-Type` is also helpful in reducing the chance of XSSI.",
-          "references": [
-            "https://www.scip.ch/en/?labs.20160414"
-          ]
-        },
-        {
-          "id": "json_hijacking",
-          "remediation_advice": "Follow the JSON specification which requires an object as top level entity. If the top level object is an array, the response will be a valid Java Script code that might be parsed using a `<script>` tag.",
-          "references": [
-            "http://www.thespanner.co.uk/2011/05/30/json-hijacking/"
-          ]
-        },
-        {
-          "id": "via_localstorage_sessionstorage",
-          "remediation_advice": "Do not store anything sensitive in localStorage and any critical data in sessionStorage. Stick with properly secured cookies utilizing HTTPOnly and Secure flags",
-          "references": [
-            "http://michael-coates.blogspot.com/2010/07/html5-local-storage-and-xss.html"
-          ]
         }
       ]
     },
     {
-      "id": "cross_site_scripting_xss",
-      "remediation_advice": "1. Always treat all user input as untrusted data.\n2. Never insert untrusted data except in allowed locations.\n3. Always input or output-encode all data coming into or out of the application.\n4. Always whitelist allowed characters and seldom use blacklisting of characters except in certain use cases.\n5. Always use a well-known and security encoding API for input and output encoding such as the `OWASP ESAPI`.\n6. Never try to write input and output encoders unless absolutely necessary. Chances are that someone has already written a good one.\n7. Never use the DOM function `innerHtml` and instead use the functions `innerText` and `textContent` to prevent against DOM-based XSS.\n8. As a best practice, consider using the `HTTPOnly` flag on cookies that are session tokens or sensitive tokens.\n9. As a best practice, consider implementing `Content Security Policy` to protect against XSS and other injection type attacks.\n10. As a best practice, consider using an auto-escaping templating system.",
-      "references": [
-        "https://www.owasp.org/index.php/Top_10-2017_A7-Cross-Site_Scripting_(XSS)",
-        "https://www.owasp.org/index.php/Cross-site_Scripting_(XSS)",
-        "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.md",
-        "http://projects.webappsec.org/Cross-Site+Scripting",
-        "https://www.cvedetails.com/vulnerability-list/opxss-1/xss.html"
-      ],
-      "children": [
-        {
-          "id": "trace_method",
-          "remediation_advice": "As the TRACE method can be utilized to bypass certain protections, consider disabling the HTTP method TRACE.",
-          "references": [
-            "https://www.owasp.org/index.php/Cross_Site_Tracing"
-          ]
-        }
-      ]
-    },
-    {
-      "id": "broken_access_control",
+      "id": "data_biases",
       "children": [
         {
-          "id": "idor",
-          "remediation_advice": "1. **Use per user or session indirect object references.** This prevents attackers from directly targeting unauthorized resources. For example, instead of using the resource's database key, a drop-down list of six resources authorized for the current user could use the numbers 1 to 6 to indicate which value the user selected. The application has to map the per-user indirect reference back to the actual database key on the server. OWASP's `ESAPI` includes both sequential and random access reference maps that developers can use to eliminate direct object references.\n2. **Check access.** Each use of a direct object reference from an untrusted source must include an access control check to ensure the user is authorized for the requested object.",
-          "references": [
-            "https://www.owasp.org/index.php/Top_10_2013-A4-Insecure_Direct_Object_References",
-            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Insecure_Direct_Object_Reference_Prevention_Cheat_Sheet.md"
-          ]
-        },
-        {
-          "id": "username_enumeration",
-          "remediation_advice": "Ensure that the application does not reveal existing user names and any data associated with them, whether it's a consequence of misconfiguration or a design decision.",
-          "references": [
-            "https://www.owasp.org/index.php/Top_10_2013-A7-Missing_Function_Level_Access_Control",
-            "https://www.owasp.org/index.php/Top_10-2017_A3-Sensitive_Data_Exposure",
-            "http://projects.webappsec.org/w/page/13246936/Information%20Leakage"
-          ]
-        },
-        {
-          "id": "exposed_sensitive_android_intent",
-          "remediation_advice": "1. If you use an intent to bind to a Service, ensure that your app is secure by using an explicit intent. Using an implicit intent to start a service is a security risk as you can't be certain what service will respond to the intent, and the user can't see which service starts.\n2. If data within a broadcast intent may be sensitive, you should consider applying a permission to make sure that malicious applications can't register to receive those messages without appropriate permissions. In these circumstances you may also consider invoking the receiver directly rather than raising a broadcast.\n3. By default, receivers are exported and can be invoked by any other application. If your BroadcastReceiver is intended for use by other applications, you may want to apply security permissions to receivers using the <receiver> element within the application manifest. This prevents applications without appropriate permissions from sending an intent to the BroadcastReceiver.\n",
+          "id": "pre_existing_bias",
+          "remediation_advice": "Identify and correct biases in the data collection phase, and review historical data for any inherent biases that could affect outcomes.",
           "references": [
-            "https://www.owasp.org/index.php/Mobile_Top_10_2016-M1-Improper_Platform_Usage"
+            "https://ai.google/responsibilities/responsible-ai-practices/"
           ]
         },
         {
-          "id": "privilege_escalation",
-          "remediation_advice": "1. **Least Privilege Principle:** Enforce the least privilege principle by ensuring that users and processes operate using the minimum permissions necessary to perform their tasks. \n2. **Regular Audits:** Conduct regular audits of system permissions and user roles to identify and rectify excessive permissions or misconfigurations. \n3. **Patch Management:** Keep all systems, applications, and services up to date with the latest security patches to close vulnerabilities that could be exploited for privilege escalation.",
-          "references": [
-             "https://owasp.org/www-community/attacks/Privilege_escalation",
-             "https://www.cisa.gov/uscert/bsi/articles/knowledge/principles/least-privilege"
-          ]
-        },        
-        {
-          "id": "exposed_sensitive_ios_url_scheme",
-          "remediation_advice": "Apple does not enforce the unique naming for App schemes, making it possible for a malicious app to use the same URL Scheme as a legitimate app, effectively hijacking the URL Scheme. As a result, it is important to keep the URL Scheme from being exposed.",
+          "id": "representation_bias",
+          "remediation_advice": "Diversify data sources and ensure the dataset represents all relevant groups proportionally to prevent skewing model outcomes.",
           "references": [
-            "https://www.owasp.org/index.php/Mobile_Top_10_2016-M1-Improper_Platform_Usage",
-            "https://developer.apple.com/library/content/documentation/iPhone/Conceptual/iPhoneOSProgrammingGuide/Inter-AppCommunication/Inter-AppCommunication.html"
+            "https://fairmlbook.org"
           ]
         }
       ]
     },
     {
-      "id": "cross_site_request_forgery_csrf",
-      "remediation_advice": "1. Consider using a known and secure CSRF synchronizer API and apply the generated CSRF token to every request. If infeasible to apply to every request, generate a CSRF token for the entire session and apply that to every request or, at minimum, every request considered sensitive. Always make sure to check the actual CSRF token.\n2. Consider verifying using same-origin rules to the source and target by checking the `Origin` and `Referer` headers.\n3. Consider using the `Double Submit Cookie` pattern.\n4. Consider using the `Encrypted Token` pattern.\n5. Consider protecting REST services by using the `X-Requested-With: XMLHttpRequest` header in all requests.\n6. Consider using re-authentication in cases where the request is particularly sensitive. This is the most effective CSRF prevention technique, however it does disturb the entire user experience.",
-      "references": [
-        "https://www.owasp.org/index.php/Top_10_2013-A8-Cross-Site_Request_Forgery_(CSRF)",
-        "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Cross-Site_Request_Forgery_Prevention_Cheat_Sheet.md",
-        "http://projects.webappsec.org/w/page/13246919/Cross%20Site%20Request%20Forgery",
-        "https://www.cvedetails.com/vulnerability-list/opcsrf-1/csrf.html"
-      ]
-    },
-    {
-      "id": "application_level_denial_of_service_dos",
-      "remediation_advice": "There are techniques to avoid some DoS attacks at the code level such as: Performing thorough input validations, avoiding highly CPU consuming operations, and operations which must wait for completion of large tasks to proceed, splitting operations to chunks, setting timeout timers for unreasonable time, trying to create as few bottlenecks as possible.",
+      "id": "decentralized_application_misconfiguration",
+      "remediation_advice": "1. Ensure that there are checks on price and liquidity changes to prevent sudden manipulation caused by flash loans.\n2. Implement replay auditing of smart contracts to detect vulnerabilities exploitable by flash loans.\n3. Ensure accurate, real-time price feeds from decentralized oracles to mitigate manipulation.\n4. Enable circuit breakers to pause the system in the event of large, suspicious transactions.",
       "references": [
-        "https://www.owasp.org/index.php/Application_Denial_of_Service",
-        "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Denial_of_Service_Cheat_Sheet.md",
-        "http://projects.webappsec.org/Denial-of-Service",
-        "https://www.cvedetails.com/vulnerability-list/opdos-1/denial-of-service.html",
-        "https://www.owasp.org/images/d/da/OWASP_IL_7_Application_DOS.pdf"
+        "https://nordlayer.com/blog/blockchain-security-issues/"
       ]
     },
     {
-      "id": "unvalidated_redirects_and_forwards",
-      "remediation_advice": "1. Avoid using redirects or forwards and only use them in specific use cases.\n2. Use input validation to check the origin of the URL in the parameter being passed. If the URL is not the same origin as the current domain, do not redirect off-domain.\n3. If the redirection is part of intended functionality, alert the user that they are going off-domain and let them make the decision to go off-domain. Present the redirection URL to the user to make it clear they are going off-domain.\n4. Whitelist valid domains that users should be allowed to be redirected to.",
-      "references": [
-        "https://www.owasp.org/index.php/Top_10_2013-A10-Unvalidated_Redirects_and_Forwards",
-        "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Unvalidated_Redirects_and_Forwards_Cheat_Sheet.md",
-        "http://projects.webappsec.org/w/page/13246981/URL%20Redirector%20Abuse"
-      ],
+      "id": "developer_biases",
       "children": [
         {
-          "id": "tabnabbing",
-          "remediation_advice": "There are a handful of solutions, however they might not be supported by all browsers:\n\n1. Remove or disallow target=\"_blank\" for any anchors pointing to a different origin.\n2. Append rel=\"noreferrer\" to any links with target=\"_blank\", but keep in mind that it prevents sending `Referer` in the request headers.\n3. Append rel=\"noopener\" to any links with target=\"_blank\".\n4. Install a tabnabbing prevention script.",
+          "id": "implicit_bias",
+          "remediation_advice": "Implement training programs to raise awareness and reduce the impact of unconscious biases among developers.",
           "references": [
-            "http://www.azarask.in/blog/post/a-new-type-of-phishing-attack/"
+            "https://implicit.harvard.edu/implicit/takeatest.html"
           ]
-        },
-        {
-          "id": "lack_of_security_speed_bump_page",
-          "remediation_advice": "As a best practice, consider adding a page to alert the user that they are going off-domain and let them make the decision to go off-domain. Present the redirection URL to the user to make it clear they are going off-domain."
         }
       ]
     },
@@ -1018,12 +884,8 @@
           "id": "browser_feature",
           "children": [
             {
-              "id": "plaintext_password_field",
-              "remediation_advice": "As a best practice, do not allow password fields to be shown in plain text instead of masked."
-            },
-            {
-              "id": "save_password",
-              "remediation_advice": "As a best practice, do not use \"remember me\" functionality to enable users to save their passwords. Attackers find an attack vector to access the browser's built in password manager and steal the credentials of the user."
+              "id": "aggressive_offline_caching",
+              "remediation_advice": "Avoid caching data unnecessarily, especially sensitive information."
             },
             {
               "id": "autocomplete_enabled",
@@ -1034,130 +896,33 @@
               "remediation_advice": "Should the autocorrect feature cause unintended issues, disable autocorrect."
             },
             {
-              "id": "aggressive_offline_caching",
-              "remediation_advice": "Avoid caching data unnecessarily, especially sensitive information."
+              "id": "plaintext_password_field",
+              "remediation_advice": "As a best practice, do not allow password fields to be shown in plain text instead of masked."
+            },
+            {
+              "id": "save_password",
+              "remediation_advice": "As a best practice, do not use \"remember me\" functionality to enable users to save their passwords. Attackers find an attack vector to access the browser's built in password manager and steal the credentials of the user."
             }
           ]
         }
       ]
     },
     {
-      "id": "insufficient_security_configurability",
+      "id": "indicators_of_compromise",
+      "remediation_advice": ""
+    },
+    {
+      "id": "insecure_data_storage",
+      "remediation_advice": "Consider encrypting data for storage, using the strongest encryption algorithms such as AES with a minimum of a 256-bit key size.",
       "references": [
-        "https://www.owasp.org/index.php/Top_10-2017_A6-Security_Misconfiguration"
+        "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Cryptographic_Storage_Cheat_Sheet.md",
+        "https://www.owasp.org/index.php/Top_10-2017_A3-Sensitive_Data_Exposure"
       ],
       "children": [
         {
-          "id": "weak_password_policy",
-          "remediation_advice": "1. Allow all characters to be used for passwords to avoid shortening the key space for brute-force guessing.\n2. Do not impose character restrictions such as \"must have at least X number of specific character type\" in the password. This will shorten the key space for brute-force guessing.\n3. Disallow short password lengths. 8 characters is generally considered a good minimum password length.\n4. Allow for a large maximum password length.\n5. Do not advertise the maximum password length as this will shorten the key space for brute-force guessing.\n6. Disallow previous passwords from being used.\n7. Disallow the password being the same as the email or username.",
-          "references": [
-            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Authentication_Cheat_Sheet.md#implement-proper-password-strength-controls"
-          ]
+          "id": "screen_caching_enabled",
+          "remediation_advice": "As a best practice, consider preventing background screen caching if the application displays sensitive data."
         },
-        {
-          "id": "no_password_policy",
-          "remediation_advice": "1. Allow all characters to be used for passwords to avoid shortening the key space for brute-force guessing.\n2. Do not impose character restrictions such as \"must have at least X number of specific character type\" in the password. This will shorten the key space for brute-force guessing.\n3. Disallow short password lengths. 8 characters is generally considered a good minimum password length.\n4. Allow for a large maximum password length.\n5. Do not advertise the maximum password length as this will shorten the key space for brute-force guessing.\n6. Disallow previous passwords from being used.\n7. Disallow the password being the same as the email or username.",
-          "references": [
-            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Authentication_Cheat_Sheet.md#implement-proper-password-strength-controls"
-          ]
-        },
-        {
-          "id": "password_policy_bypass",
-          "remediation_advice": "Consider eliminating any potential for users bypassing your platform's password policy enforcement. For instance if the password policy is only enforced on the client side, consider adding a corresponding validation on the server side."
-        },
-        {
-          "id": "weak_password_reset_implementation",
-          "references": [
-            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Forgot_Password_Cheat_Sheet.md#step-3-send-a-token-over-a-side-channel",
-            "http://projects.webappsec.org/w/page/13246942/Insufficient%20Password%20Recovery"
-          ],
-          "children": [
-            {
-              "id": "token_is_not_invalidated_after_use",
-              "remediation_advice": "The password reset token should be invalidated immediately after it is used."
-            },
-            {
-              "id": "token_is_not_invalidated_after_email_change",
-              "remediation_advice": "If the email address is changed and there is an active password reset token, the token should be invalidated."
-            },
-            {
-              "id": "token_is_not_invalidated_after_password_change",
-              "remediation_advice": "All existing password reset tokens should be invalidated once the password has been successfully changed."
-            },
-            {
-              "id": "token_has_long_timed_expiry",
-              "remediation_advice": "The password reset token should expire after a limited amount of time. Six hours should be a sufficient expiration time limit."
-            },
-            {
-              "id": "token_is_not_invalidated_after_new_token_is_requested",
-              "remediation_advice": "When a new password reset token is issued, all previous tokens should be invalidated and only the newest token should be active."
-            },
-            {
-              "id": "token_is_not_invalidated_after_login",
-              "remediation_advice": "When the user successfully authenticates, any unused password reset token should be invalidated."
-            }
-          ]
-        },
-        {
-          "id": "verification_of_contact_method_not_required",
-          "remediation_advice": "As a best practice, consider verifying a method of contact, such as email or phone number when a new account is created or when there is an update to the contact information on record."
-        },
-        {
-          "id": "lack_of_notification_email",
-          "remediation_advice": "As a best practice, consider sending a notification email when questionable activity occurs, such as multiple unsuccessful login attempts."
-        },
-        {
-          "id": "weak_registration_implementation",
-          "children": [
-            {
-              "id": "allows_disposable_email_addresses",
-              "remediation_advice": "As a best practice, consider disallowing registrations utilizing known disposable email addresses."
-            }
-          ]
-        },
-        {
-          "id": "weak_two_fa_implementation",
-          "remediation_advice": "Ensure that the second factor authentication is properly configured, has sufficient rate limiting, and cannot be bypassed. 2FA secret should be rotated every time 2FA is reenabled by the user and not remain obtainable after 2FA is turned on. Additionally consider providing a 2FA failsafe mechanism so the users can safely recover their accounts."
-        }
-      ]
-    },
-    {
-      "id": "using_components_with_known_vulnerabilities",
-      "references": [
-        "https://www.owasp.org/index.php/Top_10-2017_A9-Using_Components_with_Known_Vulnerabilities"
-      ],
-      "children": [
-        {
-          "id": "rosetta_flash",
-          "remediation_advice": "Since Flash files cannot start with comments, ensuring that `callback` parameters begin with a comment, such as: `/* */` is a sufficient protection.",
-          "references": [
-            "https://blog.avira.com/understanding-rosetta-flash-vulnerability/",
-            "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4671"
-          ]
-        },
-        {
-          "id": "outdated_software_version",
-          "remediation_advice": "As a best practice, keep all software up to date, especially if there exists a known vulnerability or weakness associated with an older version."
-        },
-        {
-          "id": "captcha_bypass",
-          "children": [
-            {
-              "id": "ocr_optical_character_recognition",
-              "remediation_advice": "As a best practice, consider using a CAPTCHA that is not known to be bypassable using automation, such as those that are easily recognizable by a machine."
-            }
-          ]
-        }
-      ]
-    },
-    {
-      "id": "insecure_data_storage",
-      "remediation_advice": "Consider encrypting data for storage, using the strongest encryption algorithms such as AES with a minimum of a 256-bit key size.",
-      "references": [
-        "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Cryptographic_Storage_Cheat_Sheet.md",
-        "https://www.owasp.org/index.php/Top_10-2017_A3-Sensitive_Data_Exposure"
-      ],
-      "children": [
         {
           "id": "sensitive_application_data_stored_unencrypted",
           "children": [
@@ -1170,21 +935,9 @@
         {
           "id": "server_side_credentials_storage",
           "remediation_advice": "1. Never try to create your own cryptographic functions.\n2. Always use well-known, strong, and secure cryptographic API functions.\n3. Never store cleartext password strings anywhere.\n4. Always salt password strings before running through a cryptographically safe hashing algorithm.\n5. Always use a random salt for each password string.\n6. Always store the salt and the cryptographically hashed password string in an encrypted database.\n7. Never use unsafe hashing functions such as `MD5` or `SHA1` which have low key spaces and have working proofs of concept that break these hashing functions.\n8. Only use cryptographically safe hashing functions such as `SHA-256` and above.\n9. Never use unsafe encryption functions that have working proofs of concept that prove that they are broken.\n10. Only use cryptographically safe encryption functions that have a very high work factor to discourage attackers from trying to break the encryption, such as `bcrypt`, `scrypt`, and `PBKDF2`."
-        },
-        {
-          "id": "screen_caching_enabled",
-          "remediation_advice": "As a best practice, consider preventing background screen caching if the application displays sensitive data."
         }
       ]
     },
-    {
-      "id": "lack_of_binary_hardening",
-      "remediation_advice": "To ensure security throughout the life cycle of an application, it is a good practice to harden binaries with memory protections, and significantly increase the cost of reverse engineering and code modification.",
-      "references": [
-        "https://wiki.debian.org/Hardening",
-        "https://www.owasp.org/index.php/Mobile_Top_10_2014-M10"
-      ]
-    },
     {
       "id": "insecure_data_transport",
       "remediation_advice": "1. Require `TLS` for all sensitive pages. Non-`TLS` requests to these pages should be redirected to the `TLS` page.\n2. Set the `Secure` flag on all sensitive cookies.\n3. Configure your `TLS` provider to only support strong (e.g., `FIPS 140-2` compliant) algorithms.\n4. Ensure your certificate is valid, not expired, not revoked, and matches all domains used by the site.\n5. Backend and other connections should also use `TLS` or other encryption technologies.",
@@ -1192,32 +945,6 @@
         "https://www.owasp.org/index.php/Top_10_2010-A9-Insufficient_Transport_Layer_Protection"
       ]
     },
-    {
-      "id": "physical_security_issues",
-      "children": [
-        {
-          "id": "bypass_of_physical_access_control",
-          "remediation_advice": " "
-        },
-        {
-          "id": "weakness_in_physical_access_control",
-          "children": [
-            {
-              "id": "cloneable_key",
-              "remediation_advice": "The 2 most effective are interative locking elements (which can be defeated still by a skilled attacker) or usage of digital key systems such as Assa eCLIQ or Pulse"
-            },
-            {
-              "id": "commonly_keyed_system",
-              "remediation_advice": "Unique keys should be used on any system which intends to be secure, otherwise if keyed to a common key system, the risk needs to be accepted that the key could be obtained if the lock doesn't secure a secure component."
-            },
-            {
-              "id": "master_key_identification",
-              "remediation_advice": "While physical lock systems require the key material to be inside the lock, electonic access control systems can use cryptographicly strong key mechanisms which prevent the key material from being accessable on the device"
-            }
-          ]
-        }
-      ]
-    },
     {
       "id": "insecure_os_firmware",
       "children": [
@@ -1232,14 +959,6 @@
             "https://www.cvedetails.com/vulnerability-list/opec-1/execute-code.html"
           ]
         },
-        {
-          "id": "hardcoded_password",
-          "remediation_advice": "1. Never use a hardcoded password within the source code. Many times, the application can be disassembled or decompiled after it has been compiled. This will likely reveal the hardcoded password string to an attacker.\n2. Never use a password string. Instead, use a random salt per user with the password string and run it through a cryptographically strong hashing algorithm.\n3. Store the salt and the hashed password server-side and do the check there. Never check the password on the client side.",
-          "references": [
-            "https://www.owasp.org/index.php/Password_Management:_Hardcoded_Password",
-            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Password_Storage_Cheat_Sheet.md"
-          ]
-        },
         {
           "id": "data_not_encrypted_at_rest",
           "children": [
@@ -1257,6 +976,14 @@
           "id": "failure_to_remove_sensitive_artifacts_from_disk",
           "remediation_advice": "Implement robust deletion functions which not only reference to the data, but write over the existing data to prevent digital forensic methods of recovery"
         },
+        {
+          "id": "hardcoded_password",
+          "remediation_advice": "1. Never use a hardcoded password within the source code. Many times, the application can be disassembled or decompiled after it has been compiled. This will likely reveal the hardcoded password string to an attacker.\n2. Never use a password string. Instead, use a random salt per user with the password string and run it through a cryptographically strong hashing algorithm.\n3. Store the salt and the hashed password server-side and do the check there. Never check the password on the client side.",
+          "references": [
+            "https://www.owasp.org/index.php/Password_Management:_Hardcoded_Password",
+            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Password_Storage_Cheat_Sheet.md"
+          ]
+        },
         {
           "id": "kiosk_escape_or_breakout",
           "remediation_advice": "1. Implement vigirous QA testing of applications prior to deployment\n2. Implement robust error logging and catching within the application to prevent crashes\n3. Initiate application restarts in the event of a application crash.\n4. Use Lower Privleged accounts with minimal permissions to lower the impact of a potential kiosk escape"
@@ -1305,640 +1032,845 @@
       ]
     },
     {
-      "id": "cryptographic_weakness",
+      "id": "insufficient_security_configurability",
+      "references": [
+        "https://www.owasp.org/index.php/Top_10-2017_A6-Security_Misconfiguration"
+      ],
       "children": [
         {
-          "id": "insufficient_entropy",
+          "id": "lack_of_notification_email",
+          "remediation_advice": "As a best practice, consider sending a notification email when questionable activity occurs, such as multiple unsuccessful login attempts."
+        },
+        {
+          "id": "no_password_policy",
+          "remediation_advice": "1. Allow all characters to be used for passwords to avoid shortening the key space for brute-force guessing.\n2. Do not impose character restrictions such as \"must have at least X number of specific character type\" in the password. This will shorten the key space for brute-force guessing.\n3. Disallow short password lengths. 8 characters is generally considered a good minimum password length.\n4. Allow for a large maximum password length.\n5. Do not advertise the maximum password length as this will shorten the key space for brute-force guessing.\n6. Disallow previous passwords from being used.\n7. Disallow the password being the same as the email or username.",
+          "references": [
+            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Authentication_Cheat_Sheet.md#implement-proper-password-strength-controls"
+          ]
+        },
+        {
+          "id": "password_policy_bypass",
+          "remediation_advice": "Consider eliminating any potential for users bypassing your platform's password policy enforcement. For instance if the password policy is only enforced on the client side, consider adding a corresponding validation on the server side."
+        },
+        {
+          "id": "verification_of_contact_method_not_required",
+          "remediation_advice": "As a best practice, consider verifying a method of contact, such as email or phone number when a new account is created or when there is an update to the contact information on record."
+        },
+        {
+          "id": "weak_password_policy",
+          "remediation_advice": "1. Allow all characters to be used for passwords to avoid shortening the key space for brute-force guessing.\n2. Do not impose character restrictions such as \"must have at least X number of specific character type\" in the password. This will shorten the key space for brute-force guessing.\n3. Disallow short password lengths. 8 characters is generally considered a good minimum password length.\n4. Allow for a large maximum password length.\n5. Do not advertise the maximum password length as this will shorten the key space for brute-force guessing.\n6. Disallow previous passwords from being used.\n7. Disallow the password being the same as the email or username.",
+          "references": [
+            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Authentication_Cheat_Sheet.md#implement-proper-password-strength-controls"
+          ]
+        },
+        {
+          "id": "weak_password_reset_implementation",
+          "references": [
+            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Forgot_Password_Cheat_Sheet.md#step-3-send-a-token-over-a-side-channel",
+            "http://projects.webappsec.org/w/page/13246942/Insufficient%20Password%20Recovery"
+          ],
           "children": [
             {
-              "id": "limited_rng_entropy_source",
-              "remediation_advice": "1. When using the native entropy sources in a Linux environment, be sure to use /dev/random instead of /dev/urandom.  This is because, in the event of depletion of the kernel entropy pool, /dev/random blocks until the level of entropy in the system entropy pool is high enough to ensure high entropy random number generation.  In contrast, /dev/urandom does not block and will return low-entropy random numbers in the event of depletion of the system entropy pool.\n\n2. In Windows environments, ensure all elements of the Windows entropy pool exhibit appropriately high levels of randomness.\n\n3. In applications that require large volumes of high-entropy random numbers to be generated, consider using alternative RNGs, such as Intel's Digital Random Number Generator (DRNG).",
-              "references": [
-                "https://www.redhat.com/en/blog/understanding-random-number-generators-and-their-limitations-linux#:~:text=A%20source%20of%20entropy%20(RNG)&text=Random%20number%20generators%20or%20RNGS,unpredictable%20numbers%20as%20its%20output.",
-                "https://blog.cloudflare.com/ensuring-randomness-with-linuxs-random-number-generator/",
-                "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-90B.pdf",
-                "https://download.microsoft.com/download/1/c/9/1c9813b8-089c-4fef-b2ad-ad80e79403ba/Whitepaper%20-%20The%20Windows%2010%20random%20number%20generation%20infrastructure.pdf"
-              ]
-            },
-            {
-              "id": "use_of_trng_for_nonsecurity_purpose",
-              "remediation_advice": "1. The random number generation rate of most RNGs is limited, so it is important to draw from RNGs only when entropy is needed for security purposes.\n\n2. Applications should ensure resiliency when drawing from TRNGs by properly handling blocking conditions that may arise when the TRNG blocks due to depletion of the entropy source.\n\n3. Increase potential random number generation rate by integrating multiple, diverse, entropy sources in a secure manner.",
-              "references": [
-                "https://blog.cloudflare.com/ensuring-randomness-with-linuxs-random-number-generator/",
-                "https://cwe.mitre.org/documents/sources/TheCLASPApplicationSecurityProcess.pdf"
-              ]
+              "id": "token_has_long_timed_expiry",
+              "remediation_advice": "The password reset token should expire after a limited amount of time. Six hours should be a sufficient expiration time limit."
             },
             {
-              "id": "prng_seed_reuse",
-              "remediation_advice": "Pseudo-Random Number Generators (PRNG) use complex algorithms to produce a stream of random bits but require an initial 'seeding,' which determines the outcome of all random numbers generated by the PRNG.  Therefore, if an attacker knows the seed value used to initialize the PRNG, it is possible to determine all future random numbers produced by the PRNG.  Do not use the same seed value for multiple invocations of PRNG initialization.",
-              "references": [
-                "https://www.sciencedirect.com/science/article/pii/S2212017316304972"
-              ]
+              "id": "token_is_not_invalidated_after_email_change",
+              "remediation_advice": "If the email address is changed and there is an active password reset token, the token should be invalidated."
             },
             {
-              "id": "predictable_prng_seed",
-              "remediation_advice": "Pseudo-Random Number Generators (PRNG) use complex algorithms to produce a stream of random bits but require an initial 'seeding,' which determines the outcome of all random numbers generated by the PRNG.  Therefore, if an attacker can predict all or a portion of the seed value used to initialize the PRNG, it is possible to predict the random number stream produced by the PRNG.  Per FIPS 140-3, \"Security Requirements for Cryptographic Modules,\" it is acceptable to use the output of a trustworthy PRNG as the seed value for another PRNG.  Ensure applications use a randomly-generated seed value by drawing from a trustworth entropy source, such as /dev/random.",
-              "references": [
-                "https://www.sciencedirect.com/science/article/pii/S2212017316304972",
-                "https://csrc.nist.gov/csrc/media/publications/fips/140/2/final/documents/fips1402.pdf",
-                "https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.140-3.pdf",
-                "https://www.appmarq.com/public/robustness,1039006,CWE-336-Avoid-using-predictable-SecureRandom-Seeds"
-              ]
+              "id": "token_is_not_invalidated_after_login",
+              "remediation_advice": "When the user successfully authenticates, any unused password reset token should be invalidated."
             },
             {
-              "id": "small_seed_space_in_prng",
-              "remediation_advice": "Pseudo-Random Number Generators (PRNG) use complex algorithms to produce a stream of random bits but require an initial 'seeding,' which determines the outcome of all random numbers generated by the PRNG.  An insufficiently-sized seed value allows an attacker to brute force the random number stream produced by the PRNG by brute forcing all possible seed values.  Ensure the value used as a PRNG seed has a length (in terms of bit size) to guarantee a sufficiently large work-factor to render such brute force attacks infeasible.  As a general rule, the number of steps (iterations) required to compromise the seed value should be at least as large as the number of steps (iterations) required to compromise the cryptographic entity (e.g. key) that relies upon the PRNG.",
-              "references": [
-                "https://csrc.nist.gov/csrc/media/publications/fips/140/2/final/documents/fips1402.pdf",
-                "https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.140-3.pdf",
-                "https://wiki.sei.cmu.edu/confluence/display/c/MSC32-C.+Properly+seed+pseudorandom+number+generators"
-              ]
+              "id": "token_is_not_invalidated_after_new_token_is_requested",
+              "remediation_advice": "When a new password reset token is issued, all previous tokens should be invalidated and only the newest token should be active."
             },
             {
-              "id": "initialization_vector_reuse",
-              "remediation_advice": "Many cryptographic algorithms rely upon an initial block of data, called the 'initialization vector' (IV), in addition to the plaintext being encrypted.  If an application reuses the same IV for multiple invocations of an encryption routine, an attacker can use this knowledge to glean the original plaintext from an encrypted stream.  Ensure each invocation of an encryption routine uses a different IV.",
-              "references": [
-                "https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf",
-                "https://www.openssl.org/~bodo/tls-cbc.txt",
-                "https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38d.pdf",
-                "http://www.isaac.cs.berkeley.edu/isaac/mobicom.pdf"
-              ]
+              "id": "token_is_not_invalidated_after_password_change",
+              "remediation_advice": "All existing password reset tokens should be invalidated once the password has been successfully changed."
             },
             {
-              "id": "predictable_initialization_vector",
-              "remediation_advice": "Many cryptographic algorithms rely upon an initial block of data, called the 'initialization vector' (IV), in addition to the plaintext being encrypted.  It is critical that it be impossible to predict the IV associated with the plaintext for any given invocation of the encryption routine.  This is best achieved by using a newly-generated random number, produced by a trustworthy RNG, for each invocation of the encryption routine.",
-              "references": [
-                "https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf",
-                "https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38d.pdf",
-                "https://www.cve.org/CVERecord?id=CVE-2011-3389"
-              ]
+              "id": "token_is_not_invalidated_after_use",
+              "remediation_advice": "The password reset token should be invalidated immediately after it is used."
             }
           ]
         },
         {
-          "id": "insecure_implementation",
+          "id": "weak_registration_implementation",
           "children": [
             {
-              "id": "missing_cryptographic_step",
-              "remediation_advice": "Oftentimes cryptographic algorithms involve complex and time-consuming mathematical operations to ensure the security of the product (e.g. ciphertext, hash value).  In some instances, such as in limited power systems, costly cryptographic steps may be skipped.  As a general rule, cryptographic alorithms are difficult to properly implement and developers should rely on well-vetted cryptographic libraries rather than homegrown implementations.  When it is necessary to develop a homegrown implementation, always thoroughly review the algorithm specification and properly implement each computational step.",
-              "references": [
-                "https://www.rfc-editor.org/rfc/rfc3565",
-                "https://nvd.nist.gov/vuln/detail/CVE-2022-29053",
-                "https://www.fortiguard.com/psirt/FG-IR-22-158"
-              ]
-            },
-            {
-              "id": "improper_following_of_specification",
-              "remediation_advice": "As a general rule, cryptographic alorithms are difficult to properly implement and developers should rely on well-vetted cryptographic libraries rather than homegrown implementations.  When it is necessary to develop a homegrown implementation, ensure the implementation adheres to all requirements for the cryptographic parameters.",
-              "references": [
-                "https://www.rfc-editor.org/rfc/rfc7696",
-                "https://www.rfc-editor.org/rfc/rfc3565"
-              ]
+              "id": "allows_disposable_email_addresses",
+              "remediation_advice": "As a best practice, consider disallowing registrations utilizing known disposable email addresses."
             }
           ]
         },
         {
-          "id": "weak_hash",
-          "children": [
-            {
-              "id": "lack_of_salt",
-              "remediation_advice": "A hash computed without the addition of a salt value is vulnerable to rainbow table attacks.  To prevent such attacks, ensure a unique and randonly-generated salt value is concatenated with the plaintext prior to computing the hash.",
-              "references": [
-                "https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html#salting",
-                "https://www.rfc-editor.org/rfc/rfc2898#page-6"
-              ]
-            },
-            {
-              "id": "use_of_predictable_salt",
-              "remediation_advice": "When a hash is computing using a predictable salt, the protections afforded by the salt are diminished, leaving the hash vulnerable to rainbow table attacks.  Always use a unique and randomly-generated value for the salt, and ensure the length of the salt (in terms of bits) is sufficiently large to prevent brute force attacks.  As a general rule, salts used in cryptographic operations should be at least 8 bytes (64 bits) in length.",
-              "references": [
-                "https://www.rfc-editor.org/rfc/rfc2898#page-7"
-              ]
-            },
-            {
-              "id": "predictable_hash_collision",
-              "remediation_advice": "Hash collisions occur when a hashing algorithm generates the same hash value for two (or more) different plaintext inputs.  This can be the result of mathematical errors in the algorithm itself, such those found in the MD5 and SHA-1 algorithms.  Hash collisions can also occur as the result of incorrect implementation of an otherwise secure algorithm.  Always ensure applications make use of unbroken and well-vetted hashing algorithms, and ensure implementations strictly adhere to the requirements of cryptographic parameters as indicated by the relevant specification(s).",
-              "references": [
-                "https://en.wikipedia.org/wiki/MD5#Collision_vulnerabilities",
-                "https://github.com/nim-lang/Nim/issues/10097",
-                "https://www.rfc-editor.org/rfc/rfc6234"
-              ]
-            }
+          "id": "weak_two_fa_implementation",
+          "remediation_advice": "Ensure that the second factor authentication is properly configured, has sufficient rate limiting, and cannot be bypassed. 2FA secret should be rotated every time 2FA is reenabled by the user and not remain obtainable after 2FA is turned on. Additionally consider providing a 2FA failsafe mechanism so the users can safely recover their accounts."
+        }
+      ]
+    },
+    {
+      "id": "lack_of_binary_hardening",
+      "remediation_advice": "To ensure security throughout the life cycle of an application, it is a good practice to harden binaries with memory protections, and significantly increase the cost of reverse engineering and code modification.",
+      "references": [
+        "https://wiki.debian.org/Hardening",
+        "https://www.owasp.org/index.php/Mobile_Top_10_2014-M10"
+      ]
+    },
+    {
+      "id": "misinterpretation_biases",
+      "children": [
+        {
+          "id": "context_ignorance",
+          "remediation_advice": "Include contextual information in the analysis and interpretation phases to avoid misinterpreting data or trends.",
+          "references": [
+            "https://contextualscience.org/contextualism"
+          ]
+        }
+      ]
+    },
+    {
+      "id": "mobile_security_misconfiguration",
+      "children": [
+        {
+          "id": "auto_backup_allowed_by_default",
+          "remediation_advice": "Consider disabling auto backup of any sensitive application data. In Android you can disable auto backup by setting `android:allowBackup` in your app manifest file to false.",
+          "references": [
+            "https://developer.android.com/guide/topics/data/autobackup"
           ]
         },
         {
-          "id": "insufficient_verification_of_data_authenticity",
-          "children": [
-            {
-              "id": "identity_check_value",
-              "remediation_advice": "An Integrity Check Value (ICV) is used to ensure data has not become corrupted during transmission and may incorporate keying material to ensure message authenticity in security sensitive applications.  Failure to properly validate the ICV can lead to data corruption and may allow an attacker to impersonate other senders in messages.  Ensure the application validates the ICV in all received messages and adheres to the relevant specification(s) with regard to the ICV validation steps.",
-              "references": [
-                "https://cwe.mitre.org/documents/sources/TheCLASPApplicationSecurityProcess.pdf",
-                "https://www.rfc-editor.org/rfc/rfc4302#section-2.6",
-                "https://www.rfc-editor.org/rfc/rfc4302#section-3.3.3"
-              ]
-            },
-            {
-              "id": "cryptographic_signature",
-              "remediation_advice": "A cryptographic signature is used to provide authenticity verification and non-repudiation of data received from another party.  Depending on the application context failure to properly validate the cryptographic signature can result in vulnerabilities ranging from unauthorized information disclosure, to user impersonation, or even unauthorized code execution.  Ensure the application verifies the cryptographic signature accompanying received data and deny requests containing an invalid cryptographic signature.",
-              "references": [
-                "https://www.internetsociety.org/resources/deploy360/2014/the-two-sides-of-dnssec-signing-and-validation/",
-                "https://vulnerabilityhistory.org/tags/89",
-                "https://www.cisco.com/c/en/us/support/docs/csa/cisco-sa-20180926-digsig.html"
-              ]
-            }
+          "id": "clipboard_enabled",
+          "remediation_advice": "Ensure that copy/paste functionality is disabled on sensitive content like credit card numbers, social security numbers etc. as other apps on the same device can access data stored in clipboard.\nThe example below disables clipboard for the `textField` TextView in Android:\n\n```java\ntextField.setCustomSelectionActionModeCallback(new ActionMode.Callback() {\n  public boolean onCreateActionMode(ActionMode actionMode, Menu menu) {\n    return false;\n  }\n\n  public boolean onPrepareActionMode(ActionMode actionMode, Menu menu) {\n    return false;\n  }\n\n  public boolean onActionItemClicked(ActionMode actionMode, MenuItem item) {\n    return false;\n  }\n\n  public void onDestroyActionMode(ActionMode actionMode) {\n  }\n});\ntextField.setLongClickable(false);\ntextField.setTextIsSelectable(false);\n```\n\nThe example below disables clipboard for UITextField in iOS:\n\n```swift\noverride public func canPerformAction(_ action: Selector, withSender sender: Any?) -> Bool {\n  if action == #selector(copy(_:)) || action == #selector(paste(_:)) {\n    return false\n  }\n  return true\n}\n```\n\n"
+        },
+        {
+          "id": "ssl_certificate_pinning",
+          "remediation_advice": "Establish a HTTP Public Key Pinning (HPKP) policy that is communicated to the client application and/or support HPKP in the client application if applicable.",
+          "references": [
+            "https://www.owasp.org/index.php/Certificate_and_Public_Key_Pinning",
+            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Pinning_Cheat_Sheet.md",
+            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Transport_Layer_Protection_Cheat_Sheet.md"
           ]
         },
         {
-          "id": "insecure_key_generation",
+          "id": "tapjacking",
+          "remediation_advice": "Ensure that the setting filterTouchesWhenObscured is set to true, or that the method onFilterTouchEventForSecurity() is implemented in your app.",
+          "references": [
+            "https://blog.devknox.io/tapjacking-android-prevent/"
+          ]
+        }
+      ]
+    },
+    {
+      "id": "network_security_misconfiguration",
+      "children": [
+        {
+          "id": "telnet_enabled",
+          "remediation_advice": "1. Turn off the `telnet` service as its traffic is unencrypted.\n2. Consider using an `ssh` service instead as its traffic is encrypted.",
+          "references": [
+            "https://technet.microsoft.com/en-us/library/cc755017(v=ws.10).aspx"
+          ]
+        }
+      ]
+    },
+    {
+      "id": "physical_security_issues",
+      "children": [
+        {
+          "id": "bypass_of_physical_access_control",
+          "remediation_advice": " "
+        },
+        {
+          "id": "weakness_in_physical_access_control",
           "children": [
             {
-              "id": "improper_asymmetric_prime_selection",
-              "remediation_advice": "When implementing an asymmetric cryptography algorithm that relies upon prime numbers for public/private keypair generation:\n\n(a). ensure that prime number selection allows sufficiently large prime numbers to be represented;\n(b) ensure there is not mathematical relationship between each of the prime numbers selected; and\n(c) always use uniquely-generated random numbers for prime selection.",
-              "references": [
-                "https://medium.com/curiositypapers/a-complete-explanation-of-rsa-asymmetric-encryption-742c5971e0f",
-                "https://www.schneier.com/blog/archives/2022/03/breaking-rsa-through-insufficiently-random-primes.html",
-                "https://arstechnica.com/information-technology/2022/03/researcher-uses-600-year-old-algorithm-to-crack-crypto-keys-found-in-the-wild/",
-                "https://www.rfc-editor.org/rfc/rfc8017#page-36"
-              ]
-            },
-            {
-              "id": "improper_asymmetric_exponent_selection",
-              "remediation_advice": "When implementing an asymmetric cryptography algorithm that relies upon exponentiation:\n\n(a) ensure that private exponent selection allows for a sufficiently large number to be chosen; and\n(b) always use a uniquely-generated random number for the private exponent.",
-              "references": [
-                "https://medium.com/curiositypapers/a-complete-explanation-of-rsa-asymmetric-encryption-742c5971e0f",
-                "https://www.iacr.org/archive/eurocrypt2000/1807/18070374-new.pdf",
-                "https://www.rfc-editor.org/rfc/rfc8017"
-              ]
-            },
-            {
-              "id": "insufficient_key_stretching",
-              "remediation_advice": "Key stretching is a technique used to increase the entropy of low-entropy keys, such as user-supplied passwords.  The technique is usually based on many iterative rounds of cryptographic computations upon the initial low-entropy key and brute forcing vulnerabilities arise if an insufficient number of iterations are applied.  Ensure the application adheres to all relevant specification(s) and performs a sufficiently large number of iterations to render the work-factor of brute force attacks infeasible.",
-              "references": [
-                "https://link.springer.com/chapter/10.1007/BFb0030415",
-                "https://www.rfc-editor.org/rfc/rfc2898"
-              ]
+              "id": "cloneable_key",
+              "remediation_advice": "The 2 most effective are interative locking elements (which can be defeated still by a skilled attacker) or usage of digital key systems such as Assa eCLIQ or Pulse"
             },
             {
-              "id": "insufficient_key_space",
-              "remediation_advice": "Most modern cryptogaphic algorithms allow implementers to specify the length of the key used by the algorithm.  If an insufficient key length is specified, an attacker can use offline brute force techniques to decrypt the ciphertext without any user input.  Ensure the application specifies a sufficiently large minimum cryptographic key length as appropriate for the context or as indicated by relevant regulations and standards.  As a general rule, AES-128, RSA-2048, and SHA-256 should be used, at a minimum.",
-              "references": [
-                "https://codeql.github.com/codeql-query-help/cpp/cpp-insufficient-key-size/",
-                "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar2.pdf"
-              ]
+              "id": "commonly_keyed_system",
+              "remediation_advice": "Unique keys should be used on any system which intends to be secure, otherwise if keyed to a common key system, the risk needs to be accepted that the key could be obtained if the lock doesn't secure a secure component."
             },
             {
-              "id": "key_exchange_without_entity_authentication",
-              "remediation_advice": "When a key exchange is performed without validating the authenticity of the opposite entity, an attacker is able to impersonate a trusted entity and compromise the confidentiality of the encrypted data.  Ensure the application properly verifies the identity of the opposite party during key exchange using context appropriate mechanisms, as indiciated in the relevant standard(s) and specification(s).",
-              "references": [
-                "https://cwe.mitre.org/documents/sources/TheCLASPApplicationSecurityProcess.pdf",
-                "https://www.rfc-editor.org/rfc/rfc6071#page-17",
-                "https://www.rfc-editor.org/rfc/rfc5246"
-              ]
+              "id": "master_key_identification",
+              "remediation_advice": "While physical lock systems require the key material to be inside the lock, electonic access control systems can use cryptographicly strong key mechanisms which prevent the key material from being accessable on the device"
             }
           ]
+        }
+      ]
+    },
+    {
+      "id": "privacy_concerns",
+      "remediation_advice": "1. Avoid storing unnecessary data where possible.\n2. Purge all known unnecessary data when identified on the device or application.\n3. Purge all known unnecessary data in known cached locations.\n4. Purge all known unnecessary data on known backup locations.",
+      "references": [
+        "https://www.owasp.org/index.php/Privacy_Violation",
+        "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/User_Privacy_Protection_Cheat_Sheet.md"
+      ]
+    },
+    {
+      "id": "protocol_specific_misconfiguration",
+      "remediation_advice": "1. Conduct formal verification of protocol logic and consensus rules.\n2. Regularly audit and test protocol configurations under various conditions.\n3. Implement failsafes to detect and mitigate abnormal behaviors.\n4. Use robust cryptographic primitives to secure protocol operations.",
+      "references": [
+        "https://nordlayer.com/blog/blockchain-security-issues/"
+      ]
+    },
+    {
+      "id": "sensitive_data_exposure",
+      "remediation_advice": "Do the following, at a minimum, and consult the references:\n\n1. Classify data processed, stored or transmitted by an application. Identify which data is sensitive according to privacy laws, regulatory requirements, or business needs.\n2. Apply controls as per the classification.\n3. Don't store sensitive data unnecessarily. Discard it as soon as possible or use PCI DSS compliant tokenization or even truncation. Data that is not retained cannot be stolen.\n4. Make sure to encrypt all sensitive data at rest.\n5. Ensure up-to-date and strong standard algorithms, protocols, and keys are in place; use proper key management.\n6. Encrypt all data in transit with secure protocols such as TLS with perfect forward secrecy (PFS) ciphers, cipher prioritization by the server, and secure parameters. Enforce encryption using directives like `HTTP Strict Transport Security` (HSTS).\n7. Disable caching for response that contain sensitive data.\n8. Store passwords using strong adaptive and salted hashing functions with a work factor (delay factor), such as `Argon2`, `scrypt`, `bcrypt` or `PBKDF2`.\n9. Verify independently the effectiveness of configuration and settings.",
+      "references": [
+        "https://www.owasp.org/index.php/Top_10-2017_A3-Sensitive_Data_Exposure",
+        "http://projects.webappsec.org/Information-Leakage",
+        "https://blog.detectify.com/2016/07/01/owasp-top-10-sensitive-data-exposure-6/",
+        "https://www.cvedetails.com/vulnerability-list/opginf-1/gain-information.html"
+      ],
+      "children": [
+        {
+          "id": "disclosure_of_known_public_information",
+          "remediation_advice": "As a best practice, avoid disclosing known public information unnecessarily."
         },
         {
-          "id": "key_reuse",
+          "id": "disclosure_of_secrets",
+          "remediation_advice": "1. Do not store secrets in source code that is publicly accessible such as in a public GitHub repository.\n2. Critically sensitive data should not be transmitted in cleartext. Make sure to only use `HTTPS` whenever transmitting passwords and private API keys.\n3. Set appropriate headers to prevent caching of sensitive data when served to end-user."
+        },
+        {
+          "id": "exif_geolocation_data_not_stripped_from_uploaded_images",
+          "remediation_advice": "Remove all sensitive data from `EXIF` geolocation data from images after being uploaded to the server to prevent sensitive data exposure.",
+          "references": [
+            "http://resources.infosecinstitute.com/metadata-and-information-security/"
+          ]
+        },
+        {
+          "id": "json_hijacking",
+          "remediation_advice": "Follow the JSON specification which requires an object as top level entity. If the top level object is an array, the response will be a valid Java Script code that might be parsed using a `<script>` tag.",
+          "references": [
+            "http://www.thespanner.co.uk/2011/05/30/json-hijacking/"
+          ]
+        },
+        {
+          "id": "mixed_content",
+          "remediation_advice": "To protect all elements of a page from sniffers and man-in-the-middle attacks, ensure that all content such as scripts, images, iframes, etc, are sourced over HTTPS rather than HTTP.",
+          "references": [
+            "https://www.owasp.org/index.php/Transport_Layer_Protection_Cheat_Sheet#Rule_-_Do_Not_Mix_TLS_and_Non-TLS_Content",
+            "https://developer.mozilla.org/en-US/docs/Web/Security/Mixed_content"
+          ]
+        },
+        {
+          "id": "non_sensitive_token_in_url",
+          "remediation_advice": "Avoid putting tokens in the URLs. The token can be found in cleartext wherever the URL is stored (eg: within unencrypted log files or browser cache). Instead, tokens should be sent in the HTTPS headers. Ensure all sensitive data is only transmitted via `HTTPS`."
+        },
+        {
+          "id": "sensitive_data_hardcoded",
           "children": [
             {
-              "id": "lack_of_perfect_forward_secrecy",
-              "remediation_advice": "Perfect Forward Secrecy (PFS) is a technique used to minimize the impact of compromise of an entity's longterm private key by negotiating an ephemeral keypair for each new session between two parties.  Without PFS, compromise of an entity's longterm private key results in compromise of all historical and future session keys based thereupon, meaning any recorded encrypted traffic can then be decrypted.  Ensure the application enables PFS for the encryption protocols implemented, as indicated by the relevant standard(s) and specification(s).",
+              "id": "oauth_secret",
+              "remediation_advice": "Consider using OAuth Implicit Grant to avoid hardcoding the OAuth secret key within the application.",
               "references": [
-                "https://avinetworks.com/glossary/perfect-forward-secrecy/#:~:text=Without%20perfect%20forward%20secrecy%2C%20an,primary%20secret%20with%20each%20client.",
-                "https://medium.com/asecuritysite-when-bob-met-alice/forward-secrecy-and-ephemeral-keys-guarding-against-data-breaches-in-the-future-b709295c6e5a",
-                "https://www.rfc-editor.org/rfc/rfc7525#page-18"
+                "https://tools.ietf.org/html/rfc6749#section-4.2"
               ]
-            },
-            {
-              "id": "intra_environment",
-              "remediation_advice": "Cryptographic key reuse occurs when the same key is used for more than one purpose.  When the same key is used for multiple purposes within the context of a single environment (e.g. individual customer in a multi-tenant application) an attacker can leverage knowledge of the key to gain unauthorized access to other information or privileges protected by the same key.  Ensure all application components, such as information and authentication tokens, are appropriately grouped into separate trust zones and protected by separate cryptographic keys."
-            },
-            {
-              "id": "inter_environment",
-              "remediation_advice": "Cryptographic key reuse occurs when the same key is used for more than one purpose.  When the same key is used between multiple application contexts, such as different customer environments in a multi-tenancy application, an attacker can gain unauthorized access to other users' information and may be able to impersonate other users to achieve privilege escalation.  Ensure the application uses unique cryptographic keys for each application context and do not reuse keys across trust zones."
             }
           ]
         },
         {
-          "id": "broken_cryptography",
+          "id": "sensitive_token_in_url",
+          "remediation_advice": "Avoid putting any sensitive token in the URLs. The token can be found in cleartext wherever the URL is stored (eg: within unencrypted log files or browser cache). Instead, sensitive tokens should be sent in the HTTPS headers. Ensure all sensitive data is only transmitted via `HTTPS`."
+        },
+        {
+          "id": "token_leakage_via_referer",
+          "remediation_advice": "Do not expose a sensitive token through insecure requests, as to not send the token in the `Referer` header, over cleartext HTTP or when going off-site to a 3rd party."
+        },
+        {
+          "id": "via_localstorage_sessionstorage",
+          "remediation_advice": "Do not store anything sensitive in localStorage and any critical data in sessionStorage. Stick with properly secured cookies utilizing HTTPOnly and Secure flags",
+          "references": [
+            "http://michael-coates.blogspot.com/2010/07/html5-local-storage-and-xss.html"
+          ]
+        },
+        {
+          "id": "visible_detailed_error_page",
+          "remediation_advice": "Turn off visible detailed error pages on production servers. Replace detailed error messages with generic error messages. This will be unuseful to attackers trying to get more reconnaissance information about the application or the server.",
+          "references": [
+            "https://www.owasp.org/index.php/Improper_Error_Handling"
+          ]
+        },
+        {
+          "id": "weak_password_reset_implementation",
+          "references": [
+            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Forgot_Password_Cheat_Sheet.md",
+            "http://projects.webappsec.org/Insufficient-Password-Recovery"
+          ],
           "children": [
             {
-              "id": "use_of_broken_cryptographic_primitive",
-              "remediation_advice": "The use of broken, weak, or flawed cryptographic algorithms can allow an attacker to decrypt sensistive information.  Ensure the application makes use of only trustworthy cryprographic algorithms as indicated by relevant security standard(s) and regulation(s).",
-              "references": [
-                "https://codeql.github.com/codeql-query-help/java/java-weak-cryptographic-algorithm/",
-                "https://csrc.nist.gov/csrc/media/publications/fips/140/2/final/documents/fips1402annexa.pdf",
-                "https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar2.pdf"
-              ]
+              "id": "password_reset_token_sent_over_http",
+              "remediation_advice": "Avoid sending a password reset token over `HTTP`. A password reset token must always be transmitted via `HTTPS`."
             },
             {
-              "id": "use_of_vulnerable_cryptographic_library",
-              "remediation_advice": "The identification, patching, and disclosure of vulnerabilities in third-party libraries, including cryptographic libraries, is a daily occurrence.  In some cases, cryptographic libraries are deemed 'broken' and deprecated.  Ensure the application is updated to include the latest secure version of all third-party cryptographic libraries and replace known 'broken' cryptographic libraries with secure alternatives.",
+              "id": "token_leakage_via_host_header_poisoning",
+              "remediation_advice": "If the web application makes use of the host header value when composing the reset link, an attacker can poison the password reset link that is sent to a victim. If the victim clicks on the poisoned reset link in the email, the attacker will obtain the password reset token and can go ahead and reset the victim\u2019s password. To protect your systems from this type of attack never trust the host header as it is controlled by the users.",
               "references": [
-                "https://www.ubiqsecurity.com/bouncy-castle-and-the-impact-of-cryptographic-vulnerabilities/",
-                "https://blog.cryptographyengineering.com/2013/09/20/rsa-warns-developers-against-its-own/"
+                "https://www.acunetix.com/blog/articles/automated-detection-of-host-header-attacks/"
               ]
             }
           ]
         },
         {
-          "id": "side_channel_attack",
+          "id": "xssi",
+          "remediation_advice": "1. Avoid placing sensitive content inside JavaScript files, and also not in `JSONP`.\n2. Consider using a CSRF token.\n3. Sensitive scripts should only respond to POST requests.\n4. Append some non-executable prefix to the response body.\n5. Usage of the response header `X-Content-Type-Options: nosniff` and usage of the correct `Content-Type` is also helpful in reducing the chance of XSSI.",
+          "references": [
+            "https://www.scip.ch/en/?labs.20160414"
+          ]
+        }
+      ]
+    },
+    {
+      "id": "server_security_misconfiguration",
+      "references": [
+        "https://www.owasp.org/index.php/Top_10-2017_A6-Security_Misconfiguration",
+        "http://projects.webappsec.org/w/page/13246959/Server%20Misconfiguration"
+      ],
+      "children": [
+        {
+          "id": "bitsquatting",
+          "remediation_advice": "As a best practice, consider registering any potential bitsquatting domain names.",
+          "references": [
+            "http://dinaburg.org/bitsquatting.html"
+          ]
+        },
+        {
+          "id": "cache_poisoning",
+          "remediation_advice": "The most robust defense against cache poisoning is to disable caching. This is plainly unrealistic advice for some, but it's likely that some websites that start using a service like Cloudflare for DDoS protection or easy SSL end up vulnerable to cache poisoning simply because caching is enabled by default.\n\nRestricting caching to purely static responses is also effective, provided you're sufficiently wary about what you define as 'static'.\n\nLikewise, avoiding taking input from headers and cookies is an effective way to prevent cache poisoning, but it's hard to know if other layers and frameworks are sneaking in support for extra headers. You might want to audit every page of your application with Param Miner to flush out unkeyed inputs.\n\nOnce you've identified unkeyed inputs in your application, the ideal solution is to outright disable them. Failing that, you could strip the inputs at the cache layer, or add them to the cache key. Some caches let you use the Vary header to key unkeyed inputs, and others let you define custom cache keys but may restrict this feature to 'enterprise' customers.\n\nFinally, regardless of whether your application has a cache, some of your clients may have a cache at their end and as such client-side vulnerabilities like XSS in HTTP headers should never be ignored.",
+          "references": [
+            "https://portswigger.net/blog/practical-web-cache-poisoning"
+          ]
+        },
+        {
+          "id": "captcha",
           "children": [
             {
-              "id": "padding_oracle_attack",
-              "remediation_advice": "A padding oracle attack occurs when the application reveals information about the validity of padding in data provided for decryption.  By making repeated attempts to decrypt attacker-controlled data, an attacker can use the information gleaned from the padding oracle to derive the encryption key.  Ensure the application produces non-descript error messages when decrypting user-supplied data.  Application responses also must not vary between different types of failure, such that an attacker cannot glean from the error that a padding exception has occurred.",
-              "references": [
-                "https://archiv.infsec.ethz.ch/education/fs08/secsem/Manger01.pdf",
-                "https://research.nccgroup.com/2021/02/17/cryptopals-exploiting-cbc-padding-oracles/",
-                "https://flast101.github.io/padding-oracle-attack-explained/"
-              ]
+              "id": "brute_force",
+              "remediation_advice": "As a best practice, consider disallowing multiple attempts to guess the same CAPTCHA."
             },
             {
-              "id": "timing_attack",
-              "remediation_advice": "A timing attack occurs when the amount of time the application takes to complete a cryptographic operation is related to the data provided by the user.  By making repeated attempts to decrypt attacker-controlled data, an attacker can use the information gleaned from this attack to derive the encryption key.  Ensure the application implements constant-time cryptographic algorithms, which always take the same amount of time to complete regardless of the input.",
-              "references": [
-                "https://research.kudelskisecurity.com/2013/12/13/timing-attacks-part-1/",
-                "https://www.bearssl.org/constanttime.html",
-                "https://www.chosenplaintext.ca/articles/beginners-guide-constant-time-cryptography.html"
-              ]
+              "id": "implementation_vulnerability",
+              "remediation_advice": "1. Introduce a proper server-side check for the `CAPTCHA`.\n2. Make sure that the user input matches the `CAPTCHA`.\n3. Make sure that the `CAPTCHA` is difficult to solve by computers."
             },
             {
-              "id": "power_analysis_attack",
-              "remediation_advice": "Power analysis attacks are made possible when the power consumption of a system or individual circuit is dependent upon the outcome or state of specific steps of the cryptographic algorithm implementation.  Ensure the outcome of an individual step, or a group of steps, in a cryptographic algorithm implementation cannot be directly observed via the electrical state of any given circuit board trace or component.  Ensure power consumption of the system as a whole is decoupled from the state of cryptographic operations performed by the system through the use of power supply capacitance measures.",
-              "references": [
-                "https://www.proquest.com/openview/45733f2da135a88fba879f038db4d319/1?pq-origsite=gscholar&cbl=18750&diss=y",
-                "https://web.wpi.edu/Pubs/E-project/Available/E-project-122211-215512/unrestricted/Power_analysis.pdf",
-                "https://eprint.iacr.org/2014/204.pdf",
-                "https://ieeexplore.ieee.org/document/6730921"
-              ]
+              "id": "missing",
+              "remediation_advice": "As a best practice, consider using CAPTCHAs to prevent automated software from engaging in abusive activities on your site."
+            }
+          ]
+        },
+        {
+          "id": "clickjacking",
+          "references": [
+            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Clickjacking_Defense_Cheat_Sheet.md",
+            "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#xfo_bp"
+          ],
+          "children": [
+            {
+              "id": "form_input",
+              "remediation_advice": "1. Use the `X-Frame-Options: DENY` HTTP response header on pages with sensitive information, to disallow framing of the page on external resources.\n2. In the case where `DENY` is not an option, use `X-Frame-Options: SAMEORIGIN`.\n3. In the case where `SAMEORIGIN` is not an option, `X-Frame-Options: ALLOW-FROM https://example.com/`."
             },
             {
-              "id": "emanations_attack",
-              "remediation_advice": "Emanations attacks are made possible when the outcome or state of specific steps of the cryptographic algorithm implementation result in changes to the electromagnetic emanations produced by the physical system on which the application is running.  Remediation of emanations leakage vulnerabilities is highly-dependent upon the application context but some general countermeasures are effective in most instances.  Ensure the application's implementation of each step of cryptographic algorithm processing results in uniform use of processor cycles, power, and features.  In some cases, this may involve the incorporation of less efficient code, in order to achieve a uniform emanations profile for all possible outcomes of each cryptographic step.  Additionally, incorporate EMF shielding into the physical device design to reduce detectable emanations from the device.",
-              "references": [
-                "https://www.cs.tau.ac.il/~tromer/mobilesc/",
-                "https://www.cs.tau.ac.il/~tromer/ecdh/",
-                "https://eprint.iacr.org/2016/231.pdf",
-                "https://eprint.iacr.org/2016/129.pdf"
-              ]
+              "id": "non_sensitive_action",
+              "remediation_advice": "As a best practice, consider adding the `X-FRAME-OPTIONS: SAMEORIGIN` HTTP response header to all responses going to the user's browser to avoid unnecessary cross-origin iframe access."
             },
             {
-              "id": "differential_fault_analysis",
-              "remediation_advice": "Differential fault analysis attacks are made possible when the outcome or state of specific steps of the cryptographic algorithm implementation can be gleaned by changes in the application's (or system's) response to specially-crafted fault conditions.  To prevent such attacks, applications and systems should always revert to a known and uniform state upon the occurrence of faults.  This may be achieved using a variety of methods, the effectiveness of which will vary depending upon context, such as uniform exception handling, restoration of a saved state, or system reset.",
-              "references": [
-                "https://link.springer.com/content/pdf/10.1007/BFb0052259.pdf?pdf=inline%20link",
-                "https://ieeexplore.ieee.org/document/6976633"
-              ]
+              "id": "sensitive_action",
+              "remediation_advice": "1. Use the `X-Frame-Options: DENY` HTTP response header on pages with sensitive information, to disallow framing of the page on external resources.\n2. In the case where `DENY` is not an option, use `X-Frame-Options: SAMEORIGIN`.\n3. In the case where `SAMEORIGIN` is not an option, `X-Frame-Options: ALLOW-FROM https://example.com/`."
             }
           ]
         },
         {
-          "id": "use_of_expired_cryptographic_key_or_cert",
-          "remediation_advice": "This vulnerabily occurs when:\n\n (a). the application fails to verify the expiration date of a certificate provided by another entity has not passed;\n(b) the application fails to verify the certificate provided by another entity has not been revoked by the issuing authority; or\n(c). the application relies upon manual key management and does not provide a means of verifying the lifecycle of keys in use.  Ensure the application verifies the certificate produced by the opposite entity has not expired or been revoked, and provide the application user with sufficient information about how to proceed.  Ensure the application implements mechanisms to determine the lifecycle of manually-managed cryptographic keys and reject attempts to use expired keys.",
+          "id": "cookie_scoped_to_parent_domain",
+          "remediation_advice": "If possible do not set the domain for the session cookie. If domain is not set, so by default, the cookie will be a host only cookie, meaning accessible explicitly to the domain from which it was set.",
           "references": [
-            "https://cwe.mitre.org/documents/sources/TheCLASPApplicationSecurityProcess.pdf"
+            "https://tools.ietf.org/html/rfc6265"
           ]
         },
         {
-          "id": "incomplete_cleanup_of_keying_material",
-          "remediation_advice": "Ensure the application erases all non-volatile copies of sensitive cryptographic data in memory or other non-volatile storage when no longer needed by the application.  Ensure the application does not retain sensitive cryptographic data in memory longer than necessary by storing the data in protected volatile storage (e.g. TPM) and open/close handles to the data upon each new invocation of the cryptographic routine.",
-          "references": [
-            "https://documentation-service.arm.com/static/624af896b059dc5ff9a8fbda"
+          "id": "dbms_misconfiguration",
+          "children": [
+            {
+              "id": "excessively_privileged_user_dba",
+              "remediation_advice": "Ensure that the current DBMS session user has the least amount of privilege necessary.",
+              "references": [
+                "https://www.owasp.org/index.php/Least_privilege"
+              ]
+            }
           ]
-        }
-      ]
-    },
-    {
-      "id": "privacy_concerns",
-      "remediation_advice": "1. Avoid storing unnecessary data where possible.\n2. Purge all known unnecessary data when identified on the device or application.\n3. Purge all known unnecessary data in known cached locations.\n4. Purge all known unnecessary data on known backup locations.",
-      "references": [
-        "https://www.owasp.org/index.php/Privacy_Violation",
-        "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/User_Privacy_Protection_Cheat_Sheet.md"
-      ]
-    },
-    {
-      "id": "network_security_misconfiguration",
-      "children": [
+        },
         {
-          "id": "telnet_enabled",
-          "remediation_advice": "1. Turn off the `telnet` service as its traffic is unencrypted.\n2. Consider using an `ssh` service instead as its traffic is encrypted.",
+          "id": "directory_listing_enabled",
+          "remediation_advice": "Restrict directory listings being displayed from the server configuration.  \n\nExample for Apache:\n\n1. Edit the server configuration file or edit/create directory .htaccess\n2. Add the following line:\nOptions -Indexes\n3. If it is the last line, make sure you have a new line after it.",
           "references": [
-            "https://technet.microsoft.com/en-us/library/cc755017(v=ws.10).aspx"
+            "http://projects.webappsec.org/w/page/13246922/Directory%20Indexing"
           ]
-        }
-      ]
-    },
-    {
-      "id": "mobile_security_misconfiguration",
-      "children": [
+        },
         {
-          "id": "ssl_certificate_pinning",
-          "remediation_advice": "Establish a HTTP Public Key Pinning (HPKP) policy that is communicated to the client application and/or support HPKP in the client application if applicable.",
+          "id": "email_verification_bypass",
+          "remediation_advice": "1. **Implement Robust Token Validation:** Ensure that any token used for email verification is securely generated and validated. Tokens should be long, random, and use secure hashing algorithms to prevent guessing attacks.\n2. **Secure Transmission:** Use HTTPS to protect the transmission of tokens over the network. Ensure that the tokens are not leaked via URLs in the `Referer` header by instructing users to avoid clicking on links from untrusted sources or by implementing measures to strip sensitive information from URLs.\n3. **Expire Tokens Quickly:** Set a short expiration time for verification tokens to limit the window of opportunity for an attacker. Once a token is used or expires, it should be invalidated immediately to prevent reuse.",
           "references": [
-            "https://www.owasp.org/index.php/Certificate_and_Public_Key_Pinning",
-            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Pinning_Cheat_Sheet.md",
-            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Transport_Layer_Protection_Cheat_Sheet.md"
+            "https://owasp.org/www-community/attacks/Email_Injection",
+            "https://portswigger.net/web-security/email-security"
           ]
         },
         {
-          "id": "tapjacking",
-          "remediation_advice": "Ensure that the setting filterTouchesWhenObscured is set to true, or that the method onFilterTouchEventForSecurity() is implemented in your app.",
-          "references": [
-            "https://blog.devknox.io/tapjacking-android-prevent/"
+          "id": "exposed_admin_portal",
+          "children": [
+            {
+              "id": "to_internet",
+              "remediation_advice": "As a best practice, consider restricting admin portal access to internal users only."
+            }
           ]
         },
         {
-          "id": "clipboard_enabled",
-          "remediation_advice": "Ensure that copy/paste functionality is disabled on sensitive content like credit card numbers, social security numbers etc. as other apps on the same device can access data stored in clipboard.\nThe example below disables clipboard for the `textField` TextView in Android:\n\n```java\ntextField.setCustomSelectionActionModeCallback(new ActionMode.Callback() {\n  public boolean onCreateActionMode(ActionMode actionMode, Menu menu) {\n    return false;\n  }\n\n  public boolean onPrepareActionMode(ActionMode actionMode, Menu menu) {\n    return false;\n  }\n\n  public boolean onActionItemClicked(ActionMode actionMode, MenuItem item) {\n    return false;\n  }\n\n  public void onDestroyActionMode(ActionMode actionMode) {\n  }\n});\ntextField.setLongClickable(false);\ntextField.setTextIsSelectable(false);\n```\n\nThe example below disables clipboard for UITextField in iOS:\n\n```swift\noverride public func canPerformAction(_ action: Selector, withSender sender: Any?) -> Bool {\n  if action == #selector(copy(_:)) || action == #selector(paste(_:)) {\n    return false\n  }\n  return true\n}\n```\n\n"
+          "id": "fingerprinting_banner_disclosure",
+          "remediation_advice": "As a best practice, do not expose the specific software version."
         },
         {
-          "id": "auto_backup_allowed_by_default",
-          "remediation_advice": "Consider disabling auto backup of any sensitive application data. In Android you can disable auto backup by setting `android:allowBackup` in your app manifest file to false.",
-          "references": [
-            "https://developer.android.com/guide/topics/data/autobackup"
+          "id": "insecure_ssl",
+          "children": [
+            {
+              "id": "certificate_error",
+              "remediation_advice": "As a best practice, consider resolving any SSL certificate errors in order to establish trust and allow secure connections.",
+              "references": [
+                "https://cheapsslsecurity.com/blog/google-chrome-ssl-certificate-errors-troubleshoot-guide/"
+              ]
+            },
+            {
+              "id": "insecure_cipher_suite",
+              "remediation_advice": "As a best practice, consider supporting only cipher suites that are known to be secure.",
+              "references": [
+                "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Transport_Layer_Protection_Cheat_Sheet.md#rule---only-support-strong-cryptographic-ciphers"
+              ]
+            },
+            {
+              "id": "lack_of_forward_secrecy",
+              "remediation_advice": "As a best practice, consider using Forward Secrecy. This ensures that broad decrypting of recorded HTTPS sessions can not happen, should the private key become publicly accessible.",
+              "references": [
+                "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Transport_Layer_Protection_Cheat_Sheet.md#rule---prefer-ephemeral-key-exchanges"
+              ]
+            }
           ]
-        }
-      ]
-    },
-    {
-      "id": "client_side_injection",
-      "children": [
+        },
         {
-          "id": "binary_planting",
-          "remediation_advice": "1. Use fully qualified paths when loading binaries.\n2. Remove the current working directory (CWD) from the binary search path or if the application depends on loading a binary from the current directory, the path should be obtained first and used to pass in a fully qualified path.\n3. Secure access permissions on a local directory as to not allow a local attacker to plant a malicious binary in a trusted location.",
-          "references": [
-            "http://www.binaryplanting.com/guidelinesDevelopers.htm"
+          "id": "lack_of_password_confirmation",
+          "children": [
+            {
+              "id": "change_email_address",
+              "remediation_advice": "1. Use a password confirmation if the email address associated with the account is going to be changed.\n2. As a best practice, send the original email address a confirmation that the email address on their account is being changed. Have the user confirm that they want to change their email address as well as prompting the user for their password."
+            },
+            {
+              "id": "change_password",
+              "remediation_advice": "Use a password confirmation if the original password associated with the account is going to be changed."
+            },
+            {
+              "id": "delete_account",
+              "remediation_advice": "Use a password confirmation if there is a request to delete the account."
+            },
+            {
+              "id": "manage_two_fa",
+              "remediation_advice": "Use a password confirmation when managing 2FA settings."
+            }
           ]
-        }
-      ]
-    },
-    {
-      "id": "automotive_security_misconfiguration",
-      "remediation_advice": "",
-      "children": [
+        },
         {
-          "id": "infotainment_radio_head_unit",
+          "id": "lack_of_security_headers",
           "children": [
             {
-              "id": "sensitive_data_leakage_exposure",
-              "remediation_advice": "Do not store sensitive data such as call logs, text messages, and contact lists or names as plaintext in the infotainment system.",
+              "id": "cache_control_for_a_non_sensitive_page",
+              "remediation_advice": "As a best practice, consider using the `Cache-Control: no-store` as it will help insure that the browser does not cache pages. Although the page may not currently contain sensitive data, sensitive data may be unintentionally placed there in the future.",
               "references": [
-                "https://www.prnewswire.com/news-releases/carsblues-vehicle-hack-exploits-vehicle-infotainment-systems-allowing-access-to-call-logs-text-messages-and-more-300751244.html"
+                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cache-Control"
               ]
             },
             {
-              "id": "ota_firmware_manipulation",
-              "remediation_advice": "Implement key signing and firmware verification.",
+              "id": "cache_control_for_a_sensitive_page",
+              "remediation_advice": "Add the `Cache-Control` HTTP response header such as `Cache-Control: no-store`, as it will help insure that the browser does not cache sensitive pages."
+            },
+            {
+              "id": "content_security_policy",
+              "remediation_advice": "As a best practice, consider using the `Content-Security-Policy` header as it will help prevent Cross Site Scripting as well as other types of injection attacks. However, be aware that Content Security Policy has a significant impact on how the browser renders pages, so careful tuning is required.",
               "references": [
-                "https://www.wired.com/2015/02/firmware-vulnerable-hacking-can-done/"
+                "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#csp",
+                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy"
               ]
             },
             {
-              "id": "code_execution_can_bus_pivot",
-              "remediation_advice": "Filter arbitrary commands and apply input validation to any media devices to prevent executing from the infotainment system. Make sure that the infotainment system is on a sandbox module and does not have direct interaction to the CANbus network.",
+              "id": "content_security_policy_report_only",
+              "remediation_advice": "As a best practice, consider using the `Content-Security-Policy-Report-Only` header as it will help when testing out the implementation of a Content Security Policy, to prevent Cross Site Scripting as well as other types of injection attacks.",
               "references": [
-                "https://motherboard.vice.com/en_us/article/3kvw8y/researchers-hack-car-infotainment-system-and-find-sensitive-user-data-inside",
-                "https://www.bleepingcomputer.com/news/security/you-can-hack-some-mazda-cars-with-a-usb-flash-drive/",
-                "http://illmatics.com/carhacking.html"
+                "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#csp",
+                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy-Report-Only"
               ]
             },
             {
-              "id": "code_execution_no_can_bus_pivot",
-              "remediation_advice": "Filter arbitrary commands and apply input validation to any media devices to prevent executing from the infotainment system.",
+              "id": "public_key_pins",
+              "remediation_advice": "As a best practice, consider using the `Public-Key-Pins` header as it will help prevent website impersonation by mis-issued or otherwise fraudulent certificates. It is important to note that if this header is used incorrectly, it may prevent users from accessing a resource for an extended period of time.",
               "references": [
-                "https://motherboard.vice.com/en_us/article/3kvw8y/researchers-hack-car-infotainment-system-and-find-sensitive-user-data-inside",
-                "https://www.bleepingcomputer.com/news/security/you-can-hack-some-mazda-cars-with-a-usb-flash-drive/",
-                "http://illmatics.com/carhacking.html"
+                "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#hpkp",
+                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Public-Key-Pins"
               ]
             },
             {
-              "id": "unauthorized_access_to_services",
-              "remediation_advice": "Filter services that allow you to control the vehicle or infotainment system from being accessed by unauthorized users. Apply authentication mechanisms to certain endpoints.",
+              "id": "strict_transport_security",
+              "remediation_advice": "As a best practice, consider using the `Strict-Transport-Security` header as it will help ensure protection against TLS protocol downgrade attacks and cookie hijacking. The header also ensures that browsers are only serving requests using a secure HTTPS connection.",
               "references": [
-                "https://www.troyhunt.com/controlling-vehicle-features-of-nissan/"
+                "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#hsts",
+                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security"
               ]
             },
             {
-              "id": "source_code_dump",
-              "remediation_advice": "Obfuscate the code and find creative ways to break disassemblers and debuggers.",
+              "id": "x_content_security_policy",
+              "remediation_advice": "As a best practice, consider using the `X-Content-Security-Policy` header as it will help prevent Cross Site Scripting as well as other types of injection attacks. However, be aware that Content Security Policy has a significant impact on how the browser renders pages, so careful tuning is required.",
               "references": [
-                "https://en.wikipedia.org/wiki/Security_through_obscurity",
-                "https://www.researchgate.net/publication/320859156_Source_Code_Vulnerabilities_in_IoT_Software_Systems"
+                "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#csp",
+                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy"
               ]
             },
             {
-              "id": "dos_brick",
-              "remediation_advice": "Filter malicious payloads or string attacks. Apply rate limiting on the app level side.",
+              "id": "x_content_type_options",
+              "remediation_advice": "As a best practice, consider using the `X-Content-Type-Options: nosniff` header as it will help prevent ambiguous handling of file types via Content Sniffing. Adding this header will prevent Cross Site Scripting attacks on files that do not have an explicit file type of \"text/html\".",
               "references": [
-                "https://www.owasp.org/index.php/Application_Denial_of_Service",
-                "https://www.forbes.com/sites/leemathews/2017/04/10/a-malware-outbreak-is-bricking-insecure-iot-devices/#36603e4a29a3",
-                "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Denial_of_Service_Cheat_Sheet.md"
+                "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#xcto",
+                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Content-Type-Options"
               ]
             },
             {
-              "id": "default_credentials",
-              "remediation_advice": "Do not ship infotainment systems with any configured accounts or with default and common usernames and passwords. Do not hard code any backdoor accounts or special access mechanisms.",
+              "id": "x_frame_options",
+              "remediation_advice": "As a best practice, consider using the X-Frame-Options header as it will help mitigate against potential Clickjacking or other UI redressing attacks.",
               "references": [
-                "https://www.owasp.org/index.php/Testing_for_default_credentials_(OTG-AUTHN-002)",
-                "https://www.owasp.org/index.php/Configuration#Default_passwords"
+                "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#xfo_bp",
+                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options"
+              ]
+            },
+            {
+              "id": "x_webkit_csp",
+              "remediation_advice": "As a best practice, consider using the `X-Webkit-CSP` header as it will help prevent Cross Site Scripting as well as other types of injection attacks. However, be aware that Content Security Policy has a significant impact on how the browser renders pages, so careful tuning is required.",
+              "references": [
+                "https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#csp",
+                "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy"
               ]
+            },
+            {
+              "id": "x_xss_protection",
+              "remediation_advice": ""
             }
           ]
         },
         {
-          "id": "rf_hub",
+          "id": "mail_server_misconfiguration",
           "children": [
             {
-              "id": "key_fob_cloning",
-              "remediation_advice": "Implement key fob encryption.",
-              "references": [
-                "https://electronics.howstuffworks.com/gadgets/automotive/unlock-car-door-remote1.htm",
-                "https://www.wired.com/story/hackers-steal-tesla-model-s-seconds-key-fob/"
-              ]
-            },
-            {
-              "id": "can_injection_interaction",
-              "remediation_advice": "Implement a secure gateway that prevents CAN Injection from the RF Hub.",
+              "id": "email_spoofing_on_non_email_domain",
+              "remediation_advice": "Consider adding email spoofing protections for all your domains as attackers may resort to spoofing those, regardless of whether emails originate from them or not. Victims can still be fooled by seeing your domain.",
               "references": [
-                "https://www.reddit.com/r/CarHacking/comments/73qs0x/chrysler_sgw_security_gateway/"
+                "https://mxtoolbox.com/DMARCRecordGenerator.aspx",
+                "https://dmarc.org/2016/03/best-practices-for-email-senders/",
+                "https://www.ftc.gov/system/files/documents/reports/businesses-can-help-stop-phishing-protect-their-brands-using-email-authentication-ftc-staff/email_authentication_staff_perspective.pdf"
               ]
             },
             {
-              "id": "data_leakage_pull_encryption_mechanism",
-              "remediation_advice": "Inspect outgoing traffic from the RF Hub and make sure encryption mechanism cannot be extracted.",
+              "id": "email_spoofing_to_inbox_due_to_missing_or_misconfigured_dmarc_on_email_domain",
+              "remediation_advice": "SPF is not a sufficient email spoofing protection in case of some of the largest email providers. Emails spoofed for domains having properly configured hard fail SPF records may still be delivered to the recipient's inbox. In order to fully prevent email spoofing create a DMARC record with \u201cp=reject\u201d policy. Please note that if your DMARC policy is not set up properly it may result in email delivery issues.",
               "references": [
-                "https://www.networkworld.com/article/2284289/data-leak-prevention-and-encryption--tools-that-can-work-together.html"
+                "https://mxtoolbox.com/DMARCRecordGenerator.aspx",
+                "https://dmarc.org/2016/03/best-practices-for-email-senders/",
+                "https://www.ftc.gov/system/files/documents/reports/businesses-can-help-stop-phishing-protect-their-brands-using-email-authentication-ftc-staff/email_authentication_staff_perspective.pdf"
               ]
             },
             {
-              "id": "unauthorized_access_turn_on",
-              "remediation_advice": ""
-            },
-            {
-              "id": "roll_jam",
-              "remediation_advice": "Update how rolling codes work in vehicles and do over-the-air update capabilities.",
+              "id": "email_spoofing_to_spam_folder",
+              "remediation_advice": "In order to fully prevent email spoofing create a DMARC record with \u201cp=reject\u201d policy. Please note that if your DMARC policy is not set up properly it will result in email delivery issues.",
               "references": [
-                "https://makezine.com/2015/08/11/anatomy-of-the-rolljam-wireless-car-hack/"
+                "https://dmarc.org/wiki/FAQ#My_mail_is_going_to_the_spam_folder_now.2C_is_DMARC_the_problem.3F",
+                "https://mxtoolbox.com/DMARCRecordGenerator.aspx",
+                "http://www.openspf.org/SPF_Record_Syntax"
               ]
             },
             {
-              "id": "replay",
-              "remediation_advice": "Block the transmission of unwanted radio signals and block all forms of the amplification attacks.",
+              "id": "missing_or_misconfigured_spf_and_or_dkim",
+              "remediation_advice": "1. Consider adding email spoofing protections for all your domains as attackers may resort to spoofing those, regardless of whether emails originate from them or not. Victims can still be fooled by seeing your domain.\n2. Consider using -all instead of ~all in the SPF record. Please be aware that using -all may result in email delivery issues.\n3. Since there is a limit of 10 DNS lookups per SPF record, specifying an IP address or address range is preferable for long lists of outgoing mail servers.",
               "references": [
-                "https://www.wired.com/2017/04/just-pair-11-radio-gadgets-can-steal-car/",
-                "https://www.wired.com/2016/03/study-finds-24-car-models-open-unlocking-ignition-hack/"
+                "http://www.openspf.org/SPF_Record_Syntax",
+                "http://www.openspf.org/FAQ/Common_mistakes#include"
               ]
             },
             {
-              "id": "relay",
-              "remediation_advice": "Block the transmission of unwanted radio signals and block all forms of the amplification attacks.",
+              "id": "no_spoofing_protection_on_email_domain",
+              "remediation_advice": "Create a DMARC policy to prevent email spoofing. Please note that if your DMARC policy is not set up properly it may result in email delivery issues.",
               "references": [
-                "https://www.wired.com/2017/04/just-pair-11-radio-gadgets-can-steal-car/",
-                "https://www.wired.com/2016/03/study-finds-24-car-models-open-unlocking-ignition-hack/"
+                "https://mxtoolbox.com/DMARCRecordGenerator.aspx",
+                "https://dmarc.org/2016/03/best-practices-for-email-senders/",
+                "https://www.ftc.gov/system/files/documents/reports/businesses-can-help-stop-phishing-protect-their-brands-using-email-authentication-ftc-staff/email_authentication_staff_perspective.pdf"
               ]
             }
           ]
         },
         {
-          "id": "can",
+          "id": "misconfigured_dns",
           "children": [
             {
-              "id": "injection_battery_management_system",
-              "remediation_advice": "Filter malicious CANBus requests or codes that can be injected into the battery management system.",
+              "id": "missing_caa_record",
+              "remediation_advice": "As the domain name holder you can modify the DNS zone file to specify one or more Certification Authorities (CAs) authorized to issue certificates for that domain.",
               "references": [
-                "https://i.blackhat.com/USA-20/Wednesday/us-20-Kiley-Reverse-Engineering-The-Tesla-Battery-Management-System-To-Increase-Power-Available.pdf"
+                "https://tools.ietf.org/html/rfc6844"
               ]
             },
             {
-              "id": "injection_steering_control",
-              "remediation_advice": "Filter malicious CANBus requests or codes that can be injected into the steering control.",
+              "id": "subdomain_takeover",
+              "remediation_advice": "1. Set up your external service so it fully listens to your wildcard DNS.\n2. Keep your DNS-entries constantly vetted and restricted.",
               "references": [
-                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
+                "https://labs.detectify.com/2014/10/21/hostile-subdomain-takeover-using-herokugithubdesk-more/"
               ]
             },
             {
-              "id": "injection_pyrotechnical_device_deployment_tool",
-              "remediation_advice": "Countermeasures of this attack include selection of suitable technologies, hard-wired plausibility checks, usage of cryptography, and hardening against brute force attacks of the keys or algorithms.",
+              "id": "zone_transfer",
+              "remediation_advice": "Do not allow DNS zone transfers.",
               "references": [
-                "https://www.rapid7.com/db/modules/post/hardware/automotive/pdt/"
+                "https://www.sans.org/reading-room/whitepapers/dns/securing-dns-zone-transfer-868",
+                "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-1999-0532"
               ]
+            }
+          ]
+        },
+        {
+          "id": "missing_dnssec",
+          "remediation_advice": "As a best practice, consider utilizing the Domain Name System Security Extensions, as this will help the DNS protocol to be less susceptible to certain attacks.",
+          "references": [
+            "https://www.icann.org/resources/pages/dnssec-qaa-2014-01-29-en"
+          ]
+        },
+        {
+          "id": "missing_secure_or_httponly_cookie_flag",
+          "references": [
+            "https://www.owasp.org/index.php/SecureFlag",
+            "https://www.owasp.org/index.php/HttpOnly"
+          ],
+          "children": [
+            {
+              "id": "non_session_cookie",
+              "remediation_advice": "Consider setting the `Secure` and `HTTPOnly` cookie flags for sensitive cookies."
             },
             {
-              "id": "injection_headlights",
-              "remediation_advice": "Filter malicious CANBus requests or codes that can be injected into the headlights.",
-              "references": [
-                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
-              ]
+              "id": "session_token",
+              "remediation_advice": "Set the `Secure` and `HTTPOnly` cookie flags for the session token."
+            }
+          ]
+        },
+        {
+          "id": "missing_subresource_integrity",
+          "remediation_advice": "1. **Implement SRI:** Add an `integrity` attribute with a base64-encoded hash to `<script>` and `<link>` tags for external resources. \n2. **Validate Hashes:** Always check the hashes of resources yourself before implementation to ensure they haven't been altered. \n3. **Update Hashes Regularly:** Monitor and update the hashes to reflect changes in the external libraries or resources you use.",
+          "references": [
+            "https://developer.mozilla.org/en-US/docs/Web/Security/Subresource_Integrity",
+            "https://www.w3.org/TR/SRI/"
+          ]
+        },
+        {
+          "id": "no_rate_limiting_on_form",
+          "references": [
+            "https://www.owasp.org/index.php?title=OWASP_Periodic_Table_of_Vulnerabilities_-_Brute_Force_(Generic)_/_Insufficient_Anti-automation&setlang=en",
+            "http://projects.webappsec.org/w/page/13246938/Insufficient%20Anti-automation"
+          ],
+          "children": [
+            {
+              "id": "change_password",
+              "remediation_advice": "1. Use a `CAPTCHA` to limit current password check requests sent when changing account password.\n2. Use a rate limit per IP address to throttle the amount of said requests that can be made in a certain amount of time."
             },
             {
-              "id": "injection_sensors",
-              "remediation_advice": "Filter malicious CANBus requests or codes that can be used to manipulate the sensors.",
-              "references": [
-                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
-              ]
+              "id": "email_triggering",
+              "remediation_advice": "1. Use a `CAPTCHA` to limit email triggering requests.\n2. Use a rate limit per IP address to throttle the amount of email triggering requests that can be made in a certain amount of time."
             },
             {
-              "id": "injection_vehicle_anti_theft_systems",
-              "remediation_advice": "Filter malicious CANBus requests or codes that can be used to manipulate the Vehicle Anti-theft Systems.",
-              "references": [
-                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
-              ]
+              "id": "login",
+              "remediation_advice": "1. Use a `CAPTCHA` to limit login attempts.\n2. Use a rate limit per IP address to throttle the amount of login requests that can be made in a certain amount of time.\n3. Be careful about locking a user account out as a result of rate limiting."
             },
             {
-              "id": "injection_powertrain",
-              "remediation_advice": "Filter malicious CANBus requests or codes that can be used to manipulate the Powertrain.",
-              "references": [
-                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
-              ]
+              "id": "registration",
+              "remediation_advice": "1. Use a `CAPTCHA` to limit user registration requests.\n2. Use a rate limit per IP address to throttle the amount of user registration requests that can be made in a certain amount of time."
             },
             {
-              "id": "injection_basic_safety_message",
-              "remediation_advice": "Filter malicious CANBus requests or codes that can be used to manipulate the Basic Safety Message.",
-              "references": [
-                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
-              ]
+              "id": "sms_triggering",
+              "remediation_advice": "1. Use a `CAPTCHA` to limit SMS triggering requests.\n2. Use a rate limit per IP address to throttle the amount of SMS triggering requests that can be made in a certain amount of time."
+            }
+          ]
+        },
+        {
+          "id": "oauth_misconfiguration",
+          "children": [
+            {
+              "id": "account_squatting",
+              "remediation_advice": "In case of OAuth based account registration, ensure that if there is a preexisting account for the same email address and is to be merged, that it will no longer be accessible with its old password."
             },
             {
-              "id": "injection_disallowed_messages",
-              "remediation_advice": "Filter malicious CANbus requests or codes especially if not included in the DBC file by implementing a secure gateway.",
+              "id": "account_takeover",
+              "remediation_advice": "Ensure correct implementation of OAuth protocol in order to protect client secrets and tokens, and provide secure access controls.",
               "references": [
-                "https://news.voyage.auto/an-introduction-to-the-can-bus-how-to-programmatically-control-a-car-f1b18be4f377"
+                "https://tools.ietf.org/html/rfc6819"
               ]
             },
             {
-              "id": "injection_dos",
-              "remediation_advice": "Filter malicious CANbus requests or codes by implementing a secure gateway, as well as limit access to input ports (specifically OBD-II) on automobiles as pointed out by CERT.",
+              "id": "insecure_redirect_uri",
+              "remediation_advice": "When the application starts the OAuth flow, it will direct the user to your service\u2019s authorization endpoint. The request will have several parameters in the URL, including a redirect URL.\n\nAt this point, the authorization server must validate the redirect URL to ensure the URL in the request matches one of the registered URLs for the application. The request will also have a client_id parameter, so the service should look up the redirect URLs based on that. It is entirely possible for an attacker to craft an authorization request with one app\u2019s client ID and the attacker\u2019s redirect URL, which is why registration is required.\n\nThe service should look for an exact match of the URL, and avoid matching on only part of the specific URL. (The client can use the state parameter if it needs to customize each request.) Simple string matching is sufficient since the redirect URL can\u2019t be customized per request. All the server needs to do is check that the redirect URL in the request matches one of the redirect URLs the developer entered when registering their application.\n\nIf the redirect URL is not one of the registered redirect URLs, then the server must immediately show an error indicating such, and not redirect the user. This avoids having your authorization server be used as an open redirector.",
               "references": [
-                "https://ics-cert.us-cert.gov/alerts/ICS-ALERT-17-209-01",
-                "http://www.autoconnectedcar.com/2017/08/connect-car-can-bus-cant-handle-dos-hacksattacks-researchers-report-can-standard-can-be-changed/"
+                "https://www.oauth.com/oauth2-servers/redirect-uris/"
               ]
+            },
+            {
+              "id": "missing_state_parameter",
+              "remediation_advice": "The OAuth state parameter is a form of CSRF protection, ensure that it is in place and properly validated."
             }
           ]
         },
         {
-          "id": "battery_management_system",
+          "id": "path_traversal",
+          "remediation_advice": "1. Prefer working without user input when using file system calls\n2. Use indexes rather than actual portions of file names when templating or using language files (i.e. value 5 from the user submission = Czechoslovakian, rather than expecting the user to return \u201cCzechoslovakian\u201d)\n3. Ensure the user cannot supply all parts of the path \u2013 surround it with your path code\n4. Validate the user\u2019s input by only accepting known good \u2013 do not sanitize the data\n5. Use `chroot`ed jails and code access policies to restrict where the files can be obtained or saved to\n6. If forced to use user input for file operations, normalize the input before using in file I/O APIs, such as the [Java SE URI normalize() method](http://docs.oracle.com/javase/7/docs/api/java/net/URI.html#normalize).",
+          "references": [
+            "https://www.owasp.org/index.php/Path_Traversal",
+            "https://www.owasp.org/index.php/File_System#Path_traversal",
+            "http://projects.webappsec.org/w/page/13246952/Path%20Traversal"
+          ]
+        },
+        {
+          "id": "potentially_unsafe_http_method_enabled",
+          "references": [
+            "https://www.owasp.org/index.php/Test_HTTP_Methods_(OTG-CONFIG-006)"
+          ],
           "children": [
             {
-              "id": "firmware_dump",
-              "remediation_advice": "Implement secure boot, obfuscate the code, and compression algorithm with hardware-backed dictionary. Find creative ways to break disassemblers and debuggers.",
-              "references": [
-                "https://en.wikipedia.org/wiki/Security_through_obscurityhttps://www.researchgate.net/publication/320859156_Source_Code_Vulnerabilities_in_IoT_Software_Systems"
-              ]
+              "id": "options",
+              "remediation_advice": "As a best practice, consider turning off the `OPTIONS` HTTP request method, unless absolutely necessary. The OPTIONS method provides a list of the methods that are supported by the web server."
             },
             {
-              "id": "fraudulent_interface",
-              "remediation_advice": "Protect and make sure the battery management system provides prevention from operating outside its safe operating area.",
+              "id": "trace",
+              "remediation_advice": "As a best practice, consider turning off the `TRACE` HTTP request method unless absolutely necessary. Doing so will mitigate against potential Cross Site Tracing attacks.",
               "references": [
-                "https://en.wikipedia.org/wiki/Battery_management_system"
+                "https://www.owasp.org/index.php/Cross_Site_Tracing"
               ]
             }
           ]
         },
         {
-          "id": "gnss_gps",
-          "children": [
-            {
-              "id": "spoofing",
-              "remediation_advice": "Implement a system that detects GPS spoofing which evaluates or prevents the system from believing and acting on false data.",
-              "references": [
-                "https://www.kaspersky.com/blog/gps-spoofing-protection/26837/"
-              ]
-            }
+          "id": "race_condition",
+          "remediation_advice": "The key to preventing a race condition is to find a way to synchronize or otherwise strictly control the order of operations in potentially vulnerable functions and actions. The best way to do this is through locks. Most programming languages have a built-in locking functionality for data; for example, Python has \u201cthreading.Lock\u201d, and Go has \u201csync.Mutex\u201d. Refer to the documentation for your programming language of choice for more information. If the language has multi-threaded or asynchronous capabilities built-in, it should have some form of locking mechanism available to you.",
+          "references": [
+            "https://lightningsecurity.io/blog/race-conditions/",
+            "https://blog.securitycompass.com/moving-beyond-the-owasp-top-10-part-1-race-conditions-912dccbb7c14",
+            "https://medium.com/in-the-weeds/fixing-a-race-condition-c8b475fbb994",
+            "https://blog.arkency.com/2015/09/testing-race-conditions/",
+            "http://www.javacreed.com/what-is-race-condition-and-how-to-prevent-it/",
+            "https://blog.golang.org/race-detector"
+          ]
+        },
+        {
+          "id": "request_smuggling",
+          "remediation_advice": "Implement a robust security configuration, including secure parsing and handling of HTTP requests, and consider deploying a Web Application Firewall (WAF) to detect and mitigate potential smuggling attacks.",
+          "references": [
+            "https://cheatsheetseries.owasp.org/cheatsheets/HTTP_Request_Smuggling_Prevention_Cheat_Sheet.html"
+          ]
+        },
+        {
+          "id": "rfd",
+          "remediation_advice": "1. Sanitize your API inputs (in this case they should just allow alphanumerics). Escaping is not sufficient.\n2. Add `Content-Disposition: attachment; filename=\"foo.bar\"` on APIs that are not going to be rendered.\n3. Add `X-Content-Type-Options: nosniff` header to API responses.",
+          "references": [
+            "https://www.owasp.org/index.php/Reflected_File_Download"
+          ]
+        },
+        {
+          "id": "same_site_scripting",
+          "remediation_advice": "As a best practice, do not resolve targets or hostnames to 127.0.0.1 or similar addresses.",
+          "references": [
+            "http://seclists.org/bugtraq/2008/Jan/270"
+          ]
+        },
+        {
+          "id": "server_side_request_forgery_ssrf",
+          "remediation_advice": "1. **Error handling and messages:** Display generic error messages to the client in case something goes wrong. If content type validation fails, display generic errors to the client like _\u201cInvalid Data retrieved\u201d_. Also ensure that the message is the same when the request fails on the backend and if invalid data is received. This will prevent the application from being abused as distinct error messages will be absent for closed and open ports. Under no circumstance should the raw response received from the remote server be displayed to the client.\n2. **Response Handling:** Validating responses received from remote resources on the server side is the most basic mitigation that can be readily implemented. If a web application expects specific content type on the server, programmatically ensure that the data received satisfies checks imposed on the server before displaying or processing the data for the client.\n3. **Disable unwanted protocols:** Allow only `http` and `https` to make requests to remote servers. Whitelisting these protocols will prevent the web application from making requests over other protocols like `file:///`, `gopher://`, `ftp://` and other URI schemes.\n4. **Blacklist IP addresses:** Internal IP addresses, localhost specifications and internal hostnames can all be blacklisted to prevent the web application from being abused to fetch data/attack these devices. Implementing this will protect servers from one time attack vectors. For example, even if the first fix (above) is implemented, the data is still being sent to the remote service. If an attack that does not need to see responses is executed (like a buffer overflow exploit) then this fix can actually prevent data from ever reaching the vulnerable device. Response handling is then not required at all as a request was never made.",
+          "references": [
+            "https://www.owasp.org/index.php/Top_10_2013-A7-Missing_Function_Level_Access_Control",
+            "http://projects.webappsec.org/w/page/13246913/Abuse%20of%20Functionality",
+            "http://resources.infosecinstitute.com/the-ssrf-vulnerability/",
+            "https://www.bishopfox.com/blog/2015/04/vulnerable-by-design-understanding-server-side-request-forgery/",
+            "http://niiconsulting.com/checkmate/2015/04/server-side-request-forgery-ssrf/"
+          ]
+        },
+        {
+          "id": "software_package_takeover",
+          "remediation_advice": "1. **Monitor Dependencies:** Regularly review and update the dependencies in your software projects to ensure they are secure and maintained. Use tools that can automatically check for outdated or vulnerable packages. \n2. **Secure Access Rights:** Restrict and monitor access to package management systems and repositories to prevent unauthorized changes. Use two-factor authentication and strong access controls. \n3. **Verify Package Integrity:** Before deployment, verify the integrity and authenticity of packages using signatures or other verification methods.",
+          "references": [
+            "https://owasp.org/www-community/attacks/Subdomain_Takeover",
+            "https://snyk.io/blog/ten-git-hub-security-best-practices/"
+          ]
+        },
+        {
+          "id": "ssl_attack_breach_poodle_etc",
+          "remediation_advice": "Disable SSL and use updated version of TLS that is not susceptible to the latest variation of the TLS attack.",
+          "references": [
+            "https://access.redhat.com/articles/1232123",
+            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Transport_Layer_Protection_Cheat_Sheet.md",
+            "http://projects.webappsec.org/w/page/13246945/Insufficient%20Transport%20Layer%20Protection"
+          ]
+        },
+        {
+          "id": "unsafe_cross_origin_resource_sharing",
+          "remediation_advice": "1. **Origin & Access-Control-Allow-Origin:** The Origin header is always sent by the browser in a `CORS` request and indicates the origin of the request. The Origin header can not be changed from JavaScript however relying on this header for Access Control checks is not a good idea as it may be spoofed outside the browser, so you still need to check that application-level protocols are used to protect sensitive data.\n2. **Access-Control-Allow-Origin** is a response header used by a server to indicate which domains are allowed to read the response. Based on the `CORS W3 Specification` it is up to the client to determine and enforce the restriction of whether the client has access to the response data based on this header.\n3. Make sure that there are no insecure configurations using a wildcard as value which looks like `Access-Control-Allow-Origin: *` as this header means all domains are allowed access to the resource. \n4. Make sure that when the server returns back the Origin header that there are additional checks so that access of sensitive data is not allowed.\n5. The `Access-Control-Request-Method` header is used when a browser performs a preflight `OPTIONS` request and let the client indicate the request method of the final request. On the other hand, the `Access-Control-Allow-Method` is a response header used by the server to describe the methods the clients are allowed to use.\n6. **Access-Control-Request-Headers & Access-Control-Allow-Headers:** These two headers are used between the browser and the server to determine which headers can be used to perform a cross-origin request.\n7. **Access-Control-Allow-Credentials:** This header as part of a preflight request indicates that the final request can include user credentials.\n8. **Input validation:** XMLHttpRequest L2 (or XHR L2) introduces the possibility of creating a cross-domain request using the XHR API for backwards compatibility. This can introduce security vulnerabilities that in XHR L1 were not present. Interesting points of the code to exploit would be URLs that are passed to XMLHttpRequest without validation, specially if absolute URLS are allowed because that could lead to code injection. Likewise, other part of the application that can be exploited is if the response data is not escaped and we can control it by providing user-supplied input.\n9. **Other headers:** There are other headers involved like Access-Control-Max-Age that determines the time a preflight request can be cached in the browser, or Access-Control-Expose-Headers that indicates which headers are safe to expose to the API of a CORS API specification, both are response headers specified in the CORS W3C document.",
+          "references": [
+            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/HTML5_Security_Cheat_Sheet.md#cross-origin-resource-sharing",
+            "https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS"
           ]
         },
         {
-          "id": "immobilizer",
+          "id": "unsafe_file_upload",
+          "references": [
+            "https://www.owasp.org/index.php/Unrestricted_File_Upload",
+            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Protect_FileUpload_Against_Malicious_File.md"
+          ],
           "children": [
             {
-              "id": "engine_start",
-              "remediation_advice": "Implement a secure gateway to protect against immobilizer attacks, assign significant bytes in data and a method to send an abnormal signal overwriting the false data when a communication error has occurred.",
-              "references": [
-                "https://www.kaspersky.com/blog/36c3-immobilizers/32419/"
-              ]
+              "id": "file_extension_filter_bypass",
+              "remediation_advice": "As a best practice, consider using a whitelist of accepted file extensions in order to mitigate against a bypass."
+            },
+            {
+              "id": "no_antivirus",
+              "remediation_advice": "As a best practice, consider using endpoint protection to check uploaded files for malware and viruses."
+            },
+            {
+              "id": "no_size_limit",
+              "remediation_advice": "Have a server-side check for the size limit of file uploads."
             }
           ]
         },
         {
-          "id": "abs",
+          "id": "username_enumeration",
           "children": [
             {
-              "id": "unintended_acceleration_brake",
-              "remediation_advice": "Implement a secure gateway to protect against ABS attacks.",
+              "id": "brute_force",
+              "remediation_advice": "Login: When an authentication request fails, ensure that all responses are identical, regardless of whether it was the username or the password that caused the authentication to fail. The HTTP response needs to be the same as well. There should not be a single byte or bit difference.\n\nReset Password: There can not be a discrepancy in the form responses when using the reset a password functionality. The same message should be sent, back to the user, regardless of whether the username or email exists as an account or not.\n\nRegistration: As a best practice to prevent usernames from being enumerated when creating an account, the username should be an email address. When an attempt is made to create a new user account, the same message can be displayed regardless of whether the email address exists in the system or not. For example: \"A confirmation has been sent to the email provided.\"",
               "references": [
-                "https://jwcn-eurasipjournals.springeropen.com/articles/10.1186/s13638-019-1484-3"
+                "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Authentication_Cheat_Sheet.md#authentication-and-error-messages"
               ]
             }
           ]
         },
         {
-          "id": "rsu",
+          "id": "using_default_credentials",
+          "remediation_advice": "1. If possible consider disabling external access.\n2. Never use default credentials as it is trivial for an attacker to gain access by providing known or easy to guess credentials.\n3. Always change any kind of default credentials as the first step of setting up any kind of environment.\n4. Passwords should meet or exceed proper password strength requirements.",
+          "references": [
+            "https://www.owasp.org/index.php/Testing_for_default_credentials_(OTG-AUTHN-002)",
+            "https://www.owasp.org/index.php/Configuration#Default_passwords",
+            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Authentication_Cheat_Sheet.md"
+          ]
+        },
+        {
+          "id": "waf_bypass",
           "children": [
             {
-              "id": "sybil_attack",
-              "remediation_advice": "Known approaches to Sybil attack prevention include identity validation, social trust graph algorithms, or economic costs, personhood validation, and application-specific defenses.",
+              "id": "direct_server_access",
+              "remediation_advice": "To ensure that your origin servers cannot be accessed directly, only accept traffic coming from your Web Application Firewall provider's IP ranges, rather than trusting that your servers remain inaccessible due to their IP's being secret.",
               "references": [
-                "https://en.wikipedia.org/wiki/Sybil_attack"
+                "https://blog.christophetd.fr/bypassing-cloudflare-using-internet-wide-scan-data/"
               ]
             }
           ]
@@ -1946,86 +1878,155 @@
       ]
     },
     {
-      "id": "ai_application_security",
+      "id": "server_side_injection",
+      "remediation_advice": "Preventing injection requires keeping untrusted data separate from commands and queries.",
+      "references": [
+        "https://www.owasp.org/index.php/Top_10-2017_A1-Injection"
+      ],
       "children": [
         {
-          "id": "llm_security",
+          "id": "content_spoofing",
+          "remediation_advice": "1. Always treat all user input as untrusted data.\n2. Always input or output encode all data coming into or out of the application.\n3. Always whitelist allowed characters and seldom use blacklisting of characters unless in certain use cases.\n4. Always use a well known and security encoding API for input and output encoding such as the `OWASP ESAPI`.\n5. Never try to write input and output encoders unless absolutely necessary. Chances are that someone has already written a good one.",
+          "references": [
+            "http://projects.webappsec.org/w/page/13246917/Content%20Spoofing"
+          ],
           "children": [
             {
-              "id": "prompt_injection",
-              "remediation_advice": "Implement robust input sanitization to prevent malicious or unintended prompt execution. Establish strict access controls and usage monitoring to detect and prevent unauthorized or anomalous interactions with the LLM. Regularly review and update the model's training data and algorithms to reduce vulnerabilities. Educate users and developers on safe interaction practices with AI systems.",
+              "id": "email_html_injection",
+              "remediation_advice": "Always ensure that email contents cannot be tampered with. Limit what the user can insert into the email by filtering special characters and limiting the amount of characters that can be inserted. Additionally, filter out any URLs as they are often rendered as links by email providers.",
               "references": [
-                "https://developer.nvidia.com/blog/securing-llm-systems-against-prompt-injection"
+                "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Input_Validation_Cheat_Sheet.md"
               ]
             },
             {
-              "id": "llm_output_handling",
-              "remediation_advice": "Implement output filtering and validation to ensure the LLM's responses are appropriate and secure. Use context-aware controls to manage how the LLM processes and responds to various inputs. Regularly audit and update the LLM to handle new types of outputs and emerging security threats. Train users on the potential risks associated with LLM outputs, particularly in sensitive applications.",
+              "id": "email_hyperlink_injection_based_on_email_provider",
+              "remediation_advice": "Always ensure that email contents cannot be tampered with. Limit what the user can insert into the email by filtering special characters and limiting the amount of characters that can be inserted. Filter out any URLs as they are often rendered as links by email providers.",
               "references": [
-                "https://whylabs.ai/blog/posts/safeguard-monitor-large-language-model-llm-applications"
+                "https://www.owasp.org/index.php/Input_Validation_Cheat_Sheet"
               ]
             },
             {
-              "id": "training_data_poisoning",
-              "remediation_advice": "Implement robust anomaly detection systems to identify and address poisoned data in real-time. Regularly retrain the LLM with clean, diverse, and representative datasets to correct any potential biases or vulnerabilities. Engage in continuous monitoring and auditing of the training process and data sources.",
+              "id": "external_authentication_injection",
+              "remediation_advice": "Even if unsafe HTML tags like `<script>` or `<iframe>` are filtered out from user input, it is possible to inject `HTTP 401` authentication prompt into a HTML page via tags like `<img>`. In order to prevent this type of injection consider the following solutions:\n\n1. Always treat all user input as untrusted data.\n2. Always input or output encode all data coming into or out of the application.\n3. Always whitelist allowed characters and seldom use blacklisting of characters unless in certain use cases.\n4. Always use a well known and security encoding API for input and output encoding such as the `OWASP ESAPI`.\n5. Never try to write input and output encoders unless absolutely necessary. Chances are that someone has already written a good one.",
               "references": [
-                "https://owasp.org/www-project-top-10-for-large-language-model-applications/#:~:text=,security%2C%20accuracy%2C%20or%20ethical%20behavior",
-                "https://owasp.org/www-project-top-10-for-large-language-model-applications/Archive/0_1_vulns/Training_Data_Poisoning.html"
+                "https://www.exploit-db.com/papers/12898/"
               ]
             },
             {
-              "id": "excessive_agency_permission_manipulation",
-              "remediation_advice": "Implement stringent access controls and define clear user permissions for interacting with the LLM. Employ regular audits and monitoring to detect and prevent unauthorized or excessive permission changes. Use role-based access control systems to manage user permissions effectively. Educate users and administrators about the risks of permission manipulation and establish protocols for safely managing access rights.",
+              "id": "flash_based_external_authentication_injection",
+              "remediation_advice": "Even if unsafe HTML tags like `<script>` or `<iframe>` are filtered out from user input, it is possible to inject `HTTP 401` authentication prompt into Flash content. In order to prevent this type of injection consider the following solutions:\n\n1. Always treat all user input as untrusted data.\n2. Always input or output encode all data coming into or out of the application.\n3. Always whitelist allowed characters and seldom use blacklisting of characters unless in certain use cases.\n4. Always use a well known and security encoding API for input and output encoding such as the `OWASP ESAPI`.\n5. Never try to write input and output encoders unless absolutely necessary. Chances are that someone has already written a good one."
+            },
+            {
+              "id": "homograph_idn_based",
+              "remediation_advice": "If disallowing URLs originating from user input is not an option, allow Unicode URLs only if all the characters belong to the same language that is chosen by user settings; display punycode URL otherwise. Some modern browsers will display these characters as punycode, e.g. spoofed `\u0430\u0440\u0440\u04cf\u0435.com` being `xn--80ak6aa92e.com`. However there are some best practices like use of an identity or password manager that can be recommended to users to help protect them against phishing.",
               "references": [
-                "https://owasp.org/www-project-ai-security-and-privacy-guide/#:~:text=,auditability%2C%20bias%20countermeasures%20and%20oversight"
+                "https://www.icann.org/news/announcement-2005-02-23-en",
+                "http://www.securityfocus.com/bid/12461",
+                "https://www.cvedetails.com/cve/CVE-2005-0238/"
+              ]
+            },
+            {
+              "id": "html_content_injection",
+              "remediation_advice": "Ensure proper input validation and output encoding to prevent HTML content injection attacks and protect against potential malicious code execution."
+            },
+            {
+              "id": "iframe_injection",
+              "references": [
+                "http://resources.infosecinstitute.com/iframe-security-risk/"
               ]
+            },
+            {
+              "id": "impersonation_via_broken_link_hijacking",
+              "remediation_advice": "In order to prevent this type of injection consider the following solutions:\n\n1. Keep track of company's public 3rd party accounts, that includes social media. Whenever one is deleted, make sure it is not referenced in the application\n2. Monitor all hyperlinks pointing to 3rd party resources, as well as any other external references for that matter, and make sure that they do not become invalid, e.g. check for change in HTTP response code. In many cases it may be possible for anyone to claim such URL's and share new content.\n3. Always treat all user input as untrusted data."
+            },
+            {
+              "id": "rtlo",
+              "remediation_advice": "1. If possible avoid allowing Right to Left Override `\u202e` character in filenames and URLs.\n2. Avoid mixing right-to-left and left-to-right characters in a single name.",
+              "references": [
+                "https://dl.packetstormsecurity.net/papers/general/righttoleften-override.pdf"
+              ]
+            },
+            {
+              "id": "text_injection",
+              "remediation_advice": "As a best practice, handle dynamic text input and use a whitelist of proper inputs."
             }
           ]
-        }
-      ]
-    },
-    {
-      "id": "indicators_of_compromise",
-      "remediation_advice": ""
-    },
-    {
-      "id": "data_biases",
-      "children": [
+        },
         {
-          "id": "representation_bias",
-          "remediation_advice": "Diversify data sources and ensure the dataset represents all relevant groups proportionally to prevent skewing model outcomes.",
+          "id": "file_inclusion",
+          "remediation_advice": "1. Don't allow user input in file paths. If hard-coding is not an option, select input from a limited list via an index variable.\n2. If dynamic path concatenation is a must have. Only accept required characters. Allow `a-z 0-9` and do not allow `..` or `/` or `%00` (null byte) or any unexpected characters.\n3. For API's allow only inclusion for a specific directory and those below it, this stops traversal attacks.",
           "references": [
-            "https://fairmlbook.org"
+            "http://resources.infosecinstitute.com/file-inclusion-attacks/",
+            "https://en.wikipedia.org/wiki/File_inclusion_vulnerability",
+            "https://www.cvedetails.com/vulnerability-list/opfileinc-1/file-inclusion.html"
           ]
         },
         {
-          "id": "pre_existing_bias",
-          "remediation_advice": "Identify and correct biases in the data collection phase, and review historical data for any inherent biases that could affect outcomes.",
+          "id": "http_response_manipulation",
+          "children": [
+            {
+              "id": "response_splitting_crlf",
+              "remediation_advice": "Apply proper input validation and check for `CRLF` characters and `null byte` characters whenever user supplied input is used in HTTP response headers.",
+              "references": [
+                "https://www.owasp.org/index.php/CRLF_Injection",
+                "http://projects.webappsec.org/w/page/13246931/HTTP%20Response%20Splitting",
+                "https://www.cvedetails.com/vulnerability-list/ophttprs-1/http-response-splitting.html"
+              ]
+            }
+          ]
+        },
+        {
+          "id": "ldap_injection",
+          "remediation_advice": "Implement input validation and sanitization techniques to filter and escape user input before using it in LDAP queries, and utilize parameterized queries or prepared statements to prevent injection attacks.",
           "references": [
-            "https://ai.google/responsibilities/responsible-ai-practices/"
+            "https://owasp.org/www-community/attacks/LDAP_Injection",
+            "https://cheatsheetseries.owasp.org/cheatsheets/LDAP_Injection_Prevention_Cheat_Sheet.html"
           ]
-        }
-      ]
-    },
-    {
-      "id": "algorithmic_biases",
-      "children": [
+        },
         {
-          "id": "processing_bias",
-          "remediation_advice": "Design algorithms to process all data fairly, implementing checks to detect and mitigate biases that arise during data processing.",
+          "id": "remote_code_execution_rce",
+          "remediation_advice": "The most effective method of eliminating Code Injection vulnerabilities is to avoid code evaluation at all costs unless absolutely and explicitly necessary (i.e. there is no possibility of achieving the same result without code evaluation). In the event where code evaluation is necessary, it is crucial for any user input to be very strongly validated, with as many restrictions as possible on user input.",
           "references": [
-            "https://paperswithcode.com/task/fairness-in-ml"
+            "https://www.owasp.org/index.php/Command_Injection",
+            "https://www.cvedetails.com/vulnerability-list/opec-1/execute-code.html"
           ]
         },
         {
-          "id": "aggregation_bias",
-          "remediation_advice": "Ensure that data aggregation methods maintain the integrity of subgroups, preventing dilution of minority data.",
+          "id": "sql_injection",
+          "remediation_advice": "Ensure that proper server-side input validation is performed on all sources of user input. Various protections should be implemented using the following in order of effectiveness:\n\n1. **Errors:** Ensure that SQL errors are turned off and not reflected back to a user when an error occurs as to not expose valuable information to an attacker.\n2. **Parameterize Queries:** Ensure that when a user\u2019s input is added to a backend SQL query, it is not string appended but placed into the specific SQL parameter.  The method to perform this varies from language to language.\n3. **Server-Side Input Length:** Limit the length of each field depending on its type. For example, a name should be less than **_16 characters long_**, and an ID should be less than **_5 characters long_**.\n4. **Whitelist:** Create character ranges (ie. Numeric, alpha, alphanumeric, alphanumeric with specific characters) and ensure that each input is restricted to the minimum length whitelist necessary.\n5. **Blacklist:** Disallow common injection characters such as `\"<>\\/?*()&`, `SQL` and `SCRIPT` commands such as `SELECT`, `INSERT`, `UPDATE`, `DROP`, and `SCRIPT`, newlines `%0A`, carriage returns `%0D`, null characters `%00` and unnecessary or bad encoding schemas (malformed `ASCII`, `UTF-7`, `UTF-8`, `UTF-16`, `Unicode`, etc.).\n6. **Logging and Web Specific IDS/IPS (Intrusion Detection/Prevention System):** Ensure that proper logging is taking place and is being reviewed, and any malicious traffic which generates an alert is promptly throttled and eventually blacklisted.",
           "references": [
-            "https://www.microsoft.com/en-us/ai/responsible-ai-resources"
+            "https://www.owasp.org/index.php/SQL_Injection",
+            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/SQL_Injection_Prevention_Cheat_Sheet.md",
+            "http://projects.webappsec.org/SQL-Injection",
+            "https://www.cvedetails.com/vulnerability-list/opsqli-1/sql-injection.html"
+          ]
+        },
+        {
+          "id": "ssti",
+          "remediation_advice": "1. Wherever possible, avoid creating templates from user input. Passing user input into templates as parameters is normally a safe alternative.\n2.If supporting user-submitted templates is a business requirement, consider using a simple logic-less template engine such as Mustache or one provided by the native language like Python's Template. If this is not an option, review the chosen template engine's documentation for hardening advice, and consider rendering the template within a sandboxed execution environment.",
+          "references": [
+            "https://portswigger.net/kb/issues/00101080_server-side-template-injection"
+          ]
+        },
+        {
+          "id": "xml_external_entity_injection_xxe",
+          "remediation_advice": "Because user supplied XML input comes from an \"untrusted source\" it is very difficult to properly validate the XML document in a manner to prevent against this type of attack. \n\nInstead, the XML processor should be configured to use only locally defined `Document Type Definition (DTD)` and disallow any inline DTD that is specified within user supplied XML documents. \n\nDue to the fact that there are numerous XML parsing engines available for different programming languages, each has its own mechanism for disabling inline DTD to prevent XXE. You may need to search your XML parser's documentation for how to `disable inline DTD` specifically.",
+          "references": [
+            "https://www.owasp.org/index.php/XML_External_Entity_(XXE)_Processing",
+            "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/XML_External_Entity_Prevention_Cheat_Sheet.md",
+            "http://projects.webappsec.org/XML-External-Entities",
+            "https://www.gracefulsecurity.com/xml-external-entity-injection-xxe-vulnerabilities/"
           ]
         }
       ]
     },
+    {
+      "id": "smart_contract_misconfiguration",
+      "remediation_advice": "1. Conduct security audits and code reviews of smart contracts.\n2. Implement automated tools to detect common vulnerabilities.\n3. Use modifiers and access control patterns to enforce secure logic.\n4. Test contracts extensively with edge cases and different stress scenarios.",
+      "references": [
+        "https://nordlayer.com/blog/blockchain-security-issues/"
+      ]
+    },
     {
       "id": "societal_biases",
       "children": [
@@ -2046,28 +2047,62 @@
       ]
     },
     {
-      "id": "misinterpretation_biases",
+      "id": "unvalidated_redirects_and_forwards",
+      "remediation_advice": "1. Avoid using redirects or forwards and only use them in specific use cases.\n2. Use input validation to check the origin of the URL in the parameter being passed. If the URL is not the same origin as the current domain, do not redirect off-domain.\n3. If the redirection is part of intended functionality, alert the user that they are going off-domain and let them make the decision to go off-domain. Present the redirection URL to the user to make it clear they are going off-domain.\n4. Whitelist valid domains that users should be allowed to be redirected to.",
+      "references": [
+        "https://www.owasp.org/index.php/Top_10_2013-A10-Unvalidated_Redirects_and_Forwards",
+        "https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Unvalidated_Redirects_and_Forwards_Cheat_Sheet.md",
+        "http://projects.webappsec.org/w/page/13246981/URL%20Redirector%20Abuse"
+      ],
       "children": [
         {
-          "id": "context_ignorance",
-          "remediation_advice": "Include contextual information in the analysis and interpretation phases to avoid misinterpreting data or trends.",
+          "id": "lack_of_security_speed_bump_page",
+          "remediation_advice": "As a best practice, consider adding a page to alert the user that they are going off-domain and let them make the decision to go off-domain. Present the redirection URL to the user to make it clear they are going off-domain."
+        },
+        {
+          "id": "tabnabbing",
+          "remediation_advice": "There are a handful of solutions, however they might not be supported by all browsers:\n\n1. Remove or disallow target=\"_blank\" for any anchors pointing to a different origin.\n2. Append rel=\"noreferrer\" to any links with target=\"_blank\", but keep in mind that it prevents sending `Referer` in the request headers.\n3. Append rel=\"noopener\" to any links with target=\"_blank\".\n4. Install a tabnabbing prevention script.",
           "references": [
-            "https://contextualscience.org/contextualism"
+            "http://www.azarask.in/blog/post/a-new-type-of-phishing-attack/"
           ]
         }
       ]
     },
     {
-      "id": "developer_biases",
+      "id": "using_components_with_known_vulnerabilities",
+      "references": [
+        "https://www.owasp.org/index.php/Top_10-2017_A9-Using_Components_with_Known_Vulnerabilities"
+      ],
       "children": [
         {
-          "id": "implicit_bias",
-          "remediation_advice": "Implement training programs to raise awareness and reduce the impact of unconscious biases among developers.",
+          "id": "captcha_bypass",
+          "children": [
+            {
+              "id": "ocr_optical_character_recognition",
+              "remediation_advice": "As a best practice, consider using a CAPTCHA that is not known to be bypassable using automation, such as those that are easily recognizable by a machine."
+            }
+          ]
+        },
+        {
+          "id": "outdated_software_version",
+          "remediation_advice": "As a best practice, keep all software up to date, especially if there exists a known vulnerability or weakness associated with an older version."
+        },
+        {
+          "id": "rosetta_flash",
+          "remediation_advice": "Since Flash files cannot start with comments, ensuring that `callback` parameters begin with a comment, such as: `/* */` is a sufficient protection.",
           "references": [
-            "https://implicit.harvard.edu/implicit/takeatest.html"
+            "https://blog.avira.com/understanding-rosetta-flash-vulnerability/",
+            "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4671"
           ]
         }
       ]
+    },
+    {
+      "id": "zero_knowledge_security_misconfiguration",
+      "remediation_advice": "1. Regularly audit zero-knowledge implementations and parameter settings.\n2. Use well-established cryptographic libraries for proof generation and validation.\n3. Implement rigorous input validation to detect malformed proofs.\n4. Employ formal verification to ensure proof logic integrity. ",
+      "references": [
+        "https://nordlayer.com/blog/blockchain-security-issues/"
+      ]
     }
   ]
-}
+}
\ No newline at end of file
diff --git a/sort_all_jsons.py b/sort_all_jsons.py
new file mode 100644
index 00000000..e4dafcd3
--- /dev/null
+++ b/sort_all_jsons.py
@@ -0,0 +1,4 @@
+from lib.utils.utils import sort_jsons
+
+if __name__ == '__main__':
+    sort_jsons()
\ No newline at end of file
diff --git a/third-party-mappings/remediation_training/secure-code-warrior-links.json b/third-party-mappings/remediation_training/secure-code-warrior-links.json
index 1a4b1eb7..4a7a8f98 100755
--- a/third-party-mappings/remediation_training/secure-code-warrior-links.json
+++ b/third-party-mappings/remediation_training/secure-code-warrior-links.json
@@ -1,437 +1,489 @@
 {
-  "server_security_misconfiguration": null,
-  "server_security_misconfiguration.server_side_request_forgery_ssrf": null,
-  "server_security_misconfiguration.server_side_request_forgery_ssrf.internal_high_impact": null,
-  "server_security_misconfiguration.server_side_request_forgery_ssrf.internal_scan_and_or_medium_impact": null,
-  "server_security_misconfiguration.server_side_request_forgery_ssrf.external_low_impact": null,
-  "server_security_misconfiguration.server_side_request_forgery_ssrf.external_dns_query_only": null,
-  "server_security_misconfiguration.unsafe_cross_origin_resource_sharing": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:unsafe_cross_origin_resource_sharing&redirect=true",
-  "server_security_misconfiguration.request_smuggling": null,
-  "server_security_misconfiguration.path_traversal": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:path_traversal&redirect=true",
-  "server_security_misconfiguration.directory_listing_enabled": null,
-  "server_security_misconfiguration.directory_listing_enabled.sensitive_data_exposure": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:directory_listing_enabled:sensitive_data_exposure&redirect=true",
-  "server_security_misconfiguration.directory_listing_enabled.non_sensitive_data_exposure": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:directory_listing_enabled:non_sensitive_data_exposure&redirect=true",
-  "server_security_misconfiguration.same_site_scripting": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:same_site_scripting&redirect=true",
-  "server_security_misconfiguration.ssl_attack_breach_poodle_etc": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:ssl_attack_breach_poodle_etc&redirect=true",
-  "server_security_misconfiguration.using_default_credentials": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:using_default_credentials&redirect=true",
-  "server_security_misconfiguration.misconfigured_dns": null,
-  "server_security_misconfiguration.misconfigured_dns.subdomain_takeover": null,
-  "server_security_misconfiguration.misconfigured_dns.zone_transfer": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:misconfigured_dns:zone_transfer&redirect=true",
-  "server_security_misconfiguration.misconfigured_dns.missing_caa_record": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:misconfigured_dns:missing_caa_record&redirect=true",
-  "server_security_misconfiguration.mail_server_misconfiguration": null,
-  "server_security_misconfiguration.mail_server_misconfiguration.no_spoofing_protection_on_email_domain": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:mail_server_misconfiguration:no_spoofing_protection_on_email_domain&redirect=true",
-  "server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_to_inbox_due_to_missing_or_misconfigured_dmarc_on_email_domain": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:mail_server_misconfiguration:email_spoofing_to_inbox_due_to_missing_or_misconfigured_dmarc_on_email_domain&redirect=true",
-  "server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_to_spam_folder": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:mail_server_misconfiguration:email_spoofing_to_spam_folder&redirect=true",
-  "server_security_misconfiguration.mail_server_misconfiguration.missing_or_misconfigured_spf_and_or_dkim": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:mail_server_misconfiguration:missing_or_misconfigured_spf_and_or_dkim&redirect=true",
-  "server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_on_non_email_domain": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:mail_server_misconfiguration:email_spoofing_on_non_email_domain&redirect=true",
-  "server_security_misconfiguration.dbms_misconfiguration": null,
-  "server_security_misconfiguration.dbms_misconfiguration.excessively_privileged_user_dba": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:dbms_misconfiguration:excessively_privileged_user_dba&redirect=true",
-  "server_security_misconfiguration.lack_of_password_confirmation": null,
-  "server_security_misconfiguration.lack_of_password_confirmation.change_email_address": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_password_confirmation:change_email_address&redirect=true",
-  "server_security_misconfiguration.lack_of_password_confirmation.change_password": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_password_confirmation:change_password&redirect=true",
-  "server_security_misconfiguration.lack_of_password_confirmation.delete_account": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_password_confirmation:delete_account&redirect=true",
-  "server_security_misconfiguration.lack_of_password_confirmation.manage_two_fa": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_password_confirmation:manage_two_fa&redirect=true",
-  "server_security_misconfiguration.no_rate_limiting_on_form": null,
-  "server_security_misconfiguration.no_rate_limiting_on_form.registration": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:no_rate_limiting_on_form:registration&redirect=true",
-  "server_security_misconfiguration.no_rate_limiting_on_form.login": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:no_rate_limiting_on_form:login&redirect=true",
-  "server_security_misconfiguration.no_rate_limiting_on_form.email_triggering": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:no_rate_limiting_on_form:email_triggering&redirect=true",
-  "server_security_misconfiguration.no_rate_limiting_on_form.sms_triggering": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:no_rate_limiting_on_form:sms_triggering&redirect=true",
-  "server_security_misconfiguration.no_rate_limiting_on_form.change_password": null,
-  "server_security_misconfiguration.unsafe_file_upload": null,
-  "server_security_misconfiguration.unsafe_file_upload.no_antivirus": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:unsafe_file_upload:no_antivirus&redirect=true",
-  "server_security_misconfiguration.unsafe_file_upload.no_size_limit": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:unsafe_file_upload:no_size_limit&redirect=true",
-  "server_security_misconfiguration.unsafe_file_upload.file_extension_filter_bypass": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:unsafe_file_upload:file_extension_filter_bypass&redirect=true",
-  "server_security_misconfiguration.cookie_scoped_to_parent_domain": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:cookie_scoped_to_parent_domain&redirect=true",
-  "server_security_misconfiguration.missing_secure_or_httponly_cookie_flag": null,
-  "server_security_misconfiguration.missing_secure_or_httponly_cookie_flag.session_token": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:missing_secure_or_httponly_cookie_flag:session_token&redirect=true",
-  "server_security_misconfiguration.missing_secure_or_httponly_cookie_flag.non_session_cookie": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:missing_secure_or_httponly_cookie_flag:non_session_cookie&redirect=true",
-  "server_security_misconfiguration.clickjacking": null,
-  "server_security_misconfiguration.clickjacking.sensitive_action": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:clickjacking:sensitive_action&redirect=true",
-  "server_security_misconfiguration.clickjacking.form_input": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:clickjacking:form_input&redirect=true",
-  "server_security_misconfiguration.clickjacking.non_sensitive_action": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:clickjacking:non_sensitive_action&redirect=true",
-  "server_security_misconfiguration.oauth_misconfiguration": null,
-  "server_security_misconfiguration.oauth_misconfiguration.account_takeover": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:oauth_misconfiguration:account_takeover&redirect=true",
-  "server_security_misconfiguration.oauth_misconfiguration.account_squatting": null,
-  "server_security_misconfiguration.oauth_misconfiguration.missing_state_parameter": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:oauth_misconfiguration:missing_state_parameter&redirect=true",
-  "server_security_misconfiguration.oauth_misconfiguration.insecure_redirect_uri": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:oauth_misconfiguration:insecure_redirect_uri&redirect=true",
-  "server_security_misconfiguration.captcha": null,
-  "server_security_misconfiguration.captcha.implementation_vulnerability": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:captcha:implementation_vulnerability&redirect=true",
-  "server_security_misconfiguration.captcha.brute_force": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:captcha:brute_force&redirect=true",
-  "server_security_misconfiguration.captcha.missing": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:captcha:missing&redirect=true",
-  "server_security_misconfiguration.exposed_admin_portal": null,
-  "server_security_misconfiguration.exposed_admin_portal.to_internet": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:exposed_admin_portal:to_internet&redirect=true",
-  "server_security_misconfiguration.missing_dnssec": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:missing_dnssec&redirect=true",
-  "server_security_misconfiguration.fingerprinting_banner_disclosure": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:fingerprinting_banner_disclosure&redirect=true",
-  "server_security_misconfiguration.username_enumeration": null,
-  "server_security_misconfiguration.username_enumeration.brute_force": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:username_enumeration:brute_force&redirect=true",
-  "server_security_misconfiguration.potentially_unsafe_http_method_enabled": null,
-  "server_security_misconfiguration.potentially_unsafe_http_method_enabled.options": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:potentially_unsafe_http_method_enabled:options&redirect=true",
-  "server_security_misconfiguration.potentially_unsafe_http_method_enabled.trace": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:potentially_unsafe_http_method_enabled:trace&redirect=true",
-  "server_security_misconfiguration.insecure_ssl": null,
-  "server_security_misconfiguration.insecure_ssl.lack_of_forward_secrecy": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:insecure_ssl:lack_of_forward_secrecy&redirect=true",
-  "server_security_misconfiguration.insecure_ssl.insecure_cipher_suite": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:insecure_ssl:insecure_cipher_suite&redirect=true",
-  "server_security_misconfiguration.insecure_ssl.certificate_error": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:insecure_ssl:certificate_error&redirect=true",
-  "server_security_misconfiguration.rfd": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:rfd&redirect=true",
-  "server_security_misconfiguration.lack_of_security_headers": null,
-  "server_security_misconfiguration.lack_of_security_headers.x_frame_options": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:x_frame_options&redirect=true",
-  "server_security_misconfiguration.lack_of_security_headers.cache_control_for_a_non_sensitive_page": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:cache_control_for_a_non_sensitive_page&redirect=true",
-  "server_security_misconfiguration.lack_of_security_headers.x_xss_protection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:x_xss_protection&redirect=true",
-  "server_security_misconfiguration.lack_of_security_headers.strict_transport_security": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:strict_transport_security&redirect=true",
-  "server_security_misconfiguration.lack_of_security_headers.x_content_type_options": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:x_content_type_options&redirect=true",
-  "server_security_misconfiguration.lack_of_security_headers.content_security_policy": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:content_security_policy&redirect=true",
-  "server_security_misconfiguration.lack_of_security_headers.public_key_pins": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:public_key_pins&redirect=true",
-  "server_security_misconfiguration.lack_of_security_headers.x_content_security_policy": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:x_content_security_policy&redirect=true",
-  "server_security_misconfiguration.lack_of_security_headers.x_webkit_csp": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:x_webkit_csp&redirect=true",
-  "server_security_misconfiguration.lack_of_security_headers.content_security_policy_report_only": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:content_security_policy_report_only&redirect=true",
-  "server_security_misconfiguration.lack_of_security_headers.cache_control_for_a_sensitive_page": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:cache_control_for_a_sensitive_page&redirect=true",
-  "server_security_misconfiguration.waf_bypass": null,
-  "server_security_misconfiguration.waf_bypass.direct_server_access": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:waf_bypass:direct_server_access&redirect=true",
-  "server_security_misconfiguration.race_condition": null,
-  "server_security_misconfiguration.email_verification_bypass": null,
-  "server_security_misconfiguration.missing_subresource_integrity": null,
-  "server_security_misconfiguration.software_package_takeover": null,
-  "server_security_misconfiguration.cache_poisoning": null,
-  "server_security_misconfiguration.bitsquatting": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:bitsquatting&redirect=true",
-  "server_side_injection": null,
-  "server_side_injection.file_inclusion": null,
-  "server_side_injection.file_inclusion.local": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:file_inclusion:local&redirect=true",
-  "server_side_injection.parameter_pollution": null,
-  "server_side_injection.parameter_pollution.social_media_sharing_buttons": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:parameter_pollution:social_media_sharing_buttons&redirect=true",
-  "server_side_injection.remote_code_execution_rce": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:remote_code_execution_rce&redirect=true",
-  "server_side_injection.ldap_injection": null,
-  "server_side_injection.sql_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:sql_injection&redirect=true",
-  "server_side_injection.xml_external_entity_injection_xxe": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:xml_external_entity_injection_xxe&redirect=true",
-  "server_side_injection.http_response_manipulation": null,
-  "server_side_injection.http_response_manipulation.response_splitting_crlf": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:http_response_manipulation:response_splitting_crlf&redirect=true",
-  "server_side_injection.content_spoofing": null,
-  "server_side_injection.content_spoofing.iframe_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:iframe_injection&redirect=true",
-  "server_side_injection.content_spoofing.impersonation_via_broken_link_hijacking": null,
-  "server_side_injection.content_spoofing.external_authentication_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:external_authentication_injection&redirect=true",
-  "server_side_injection.content_spoofing.flash_based_external_authentication_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:flash_based_external_authentication_injection&redirect=true",
-  "server_side_injection.content_spoofing.html_content_injection": null,
-  "server_side_injection.content_spoofing.email_html_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:email_html_injection&redirect=true",
-  "server_side_injection.content_spoofing.email_hyperlink_injection_based_on_email_provider": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:email_hyperlink_injection_based_on_email_provider&redirect=true",
-  "server_side_injection.content_spoofing.text_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:text_injection&redirect=true",
-  "server_side_injection.content_spoofing.homograph_idn_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:homograph_idn_based&redirect=true",
-  "server_side_injection.content_spoofing.rtlo": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:rtlo&redirect=true",
-  "server_side_injection.ssti": null,
-  "server_side_injection.ssti.basic": null,
-  "server_side_injection.ssti.custom": null,
+  "ai_application_security": null,
+  "ai_application_security.llm_security": null,
+  "ai_application_security.llm_security.excessive_agency_permission_manipulation": null,
+  "ai_application_security.llm_security.llm_output_handling": null,
+  "ai_application_security.llm_security.prompt_injection": null,
+  "ai_application_security.llm_security.training_data_poisoning": null,
+  "algorithmic_biases": null,
+  "algorithmic_biases.aggregation_bias": null,
+  "algorithmic_biases.processing_bias": null,
+  "application_level_denial_of_service_dos": null,
+  "application_level_denial_of_service_dos.app_crash": null,
+  "application_level_denial_of_service_dos.app_crash.malformed_android_intents": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=application_level_denial_of_service_dos:app_crash:malformed_android_intents&redirect=true",
+  "application_level_denial_of_service_dos.app_crash.malformed_ios_url_schemes": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=application_level_denial_of_service_dos:app_crash:malformed_ios_url_schemes&redirect=true",
+  "application_level_denial_of_service_dos.critical_impact_and_or_easy_difficulty": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=application_level_denial_of_service_dos:critical_impact_and_or_easy_difficulty&redirect=true",
+  "application_level_denial_of_service_dos.excessive_resource_consumption": null,
+  "application_level_denial_of_service_dos.excessive_resource_consumption.injection_prompt": null,
+  "application_level_denial_of_service_dos.high_impact_and_or_medium_difficulty": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=application_level_denial_of_service_dos:high_impact_and_or_medium_difficulty&redirect=true",
+  "automotive_security_misconfiguration": null,
+  "automotive_security_misconfiguration.abs": null,
+  "automotive_security_misconfiguration.abs.unintended_acceleration_brake": null,
+  "automotive_security_misconfiguration.battery_management_system": null,
+  "automotive_security_misconfiguration.battery_management_system.firmware_dump": null,
+  "automotive_security_misconfiguration.battery_management_system.fraudulent_interface": null,
+  "automotive_security_misconfiguration.can": null,
+  "automotive_security_misconfiguration.can.injection_basic_safety_message": null,
+  "automotive_security_misconfiguration.can.injection_battery_management_system": null,
+  "automotive_security_misconfiguration.can.injection_disallowed_messages": null,
+  "automotive_security_misconfiguration.can.injection_dos": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:can:injection_dos&redirect=true",
+  "automotive_security_misconfiguration.can.injection_headlights": null,
+  "automotive_security_misconfiguration.can.injection_powertrain": null,
+  "automotive_security_misconfiguration.can.injection_pyrotechnical_device_deployment_tool": null,
+  "automotive_security_misconfiguration.can.injection_sensors": null,
+  "automotive_security_misconfiguration.can.injection_steering_control": null,
+  "automotive_security_misconfiguration.can.injection_vehicle_anti_theft_systems": null,
+  "automotive_security_misconfiguration.gnss_gps": null,
+  "automotive_security_misconfiguration.gnss_gps.spoofing": null,
+  "automotive_security_misconfiguration.immobilizer": null,
+  "automotive_security_misconfiguration.immobilizer.engine_start": null,
+  "automotive_security_misconfiguration.infotainment_radio_head_unit": null,
+  "automotive_security_misconfiguration.infotainment_radio_head_unit.code_execution_can_bus_pivot": null,
+  "automotive_security_misconfiguration.infotainment_radio_head_unit.code_execution_no_can_bus_pivot": null,
+  "automotive_security_misconfiguration.infotainment_radio_head_unit.default_credentials": null,
+  "automotive_security_misconfiguration.infotainment_radio_head_unit.dos_brick": null,
+  "automotive_security_misconfiguration.infotainment_radio_head_unit.ota_firmware_manipulation": null,
+  "automotive_security_misconfiguration.infotainment_radio_head_unit.sensitive_data_leakage_exposure": null,
+  "automotive_security_misconfiguration.infotainment_radio_head_unit.source_code_dump": null,
+  "automotive_security_misconfiguration.infotainment_radio_head_unit.unauthorized_access_to_services": null,
+  "automotive_security_misconfiguration.rf_hub": null,
+  "automotive_security_misconfiguration.rf_hub.can_injection_interaction": null,
+  "automotive_security_misconfiguration.rf_hub.data_leakage_pull_encryption_mechanism": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:rf_hub:data_leakage_pull_encryption_mechanism&redirect=true",
+  "automotive_security_misconfiguration.rf_hub.key_fob_cloning": null,
+  "automotive_security_misconfiguration.rf_hub.relay": null,
+  "automotive_security_misconfiguration.rf_hub.replay": null,
+  "automotive_security_misconfiguration.rf_hub.roll_jam": null,
+  "automotive_security_misconfiguration.rf_hub.unauthorized_access_turn_on": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:rf_hub:unauthorized_access_turn_on&redirect=true",
+  "automotive_security_misconfiguration.rsu": null,
+  "automotive_security_misconfiguration.rsu.sybil_attack": null,
+  "blockchain_infrastructure_misconfiguration": null,
+  "blockchain_infrastructure_misconfiguration.improper_bridge_validation_and_verification_logic": null,
+  "broken_access_control": null,
+  "broken_access_control.exposed_sensitive_android_intent": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:exposed_sensitive_android_intent&redirect=true",
+  "broken_access_control.exposed_sensitive_ios_url_scheme": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:exposed_sensitive_ios_url_scheme&redirect=true",
+  "broken_access_control.idor": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:idor&redirect=true",
+  "broken_access_control.idor.edit_delete_sensitive_information_iterable_object_identifiers": null,
+  "broken_access_control.idor.read_edit_delete_non_sensitive_information": null,
+  "broken_access_control.idor.read_edit_delete_sensitive_information_guid": null,
+  "broken_access_control.idor.read_edit_delete_sensitive_information_iterable_object_identifiers": null,
+  "broken_access_control.idor.read_sensitive_information_iterable_object_identifiers": null,
+  "broken_access_control.privilege_escalation": null,
+  "broken_access_control.username_enumeration": null,
+  "broken_access_control.username_enumeration.non_brute_force": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:username_enumeration:non_brute_force&redirect=true",
   "broken_authentication_and_session_management": null,
   "broken_authentication_and_session_management.authentication_bypass": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:authentication_bypass&redirect=true",
-  "broken_authentication_and_session_management.two_fa_bypass": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:two_fa_bypass&redirect=true",
   "broken_authentication_and_session_management.cleartext_transmission_of_session_token": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:cleartext_transmission_of_session_token&redirect=true",
-  "broken_authentication_and_session_management.weak_login_function": null,
-  "broken_authentication_and_session_management.weak_login_function.not_operational": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:weak_login_function:not_operational&redirect=true",
-  "broken_authentication_and_session_management.weak_login_function.other_plaintext_protocol_no_secure_alternative": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:weak_login_function:other_plaintext_protocol_no_secure_alternative&redirect=true",
-  "broken_authentication_and_session_management.weak_login_function.over_http": null,
-  "broken_authentication_and_session_management.session_fixation": null,
-  "broken_authentication_and_session_management.session_fixation.remote_attack_vector": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:session_fixation:remote_attack_vector&redirect=true",
-  "broken_authentication_and_session_management.session_fixation.local_attack_vector": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:session_fixation:local_attack_vector&redirect=true",
+  "broken_authentication_and_session_management.concurrent_logins": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:concurrent_logins&redirect=true",
   "broken_authentication_and_session_management.failure_to_invalidate_session": null,
+  "broken_authentication_and_session_management.failure_to_invalidate_session.all_sessions": null,
+  "broken_authentication_and_session_management.failure_to_invalidate_session.long_timeout": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:failure_to_invalidate_session:long_timeout&redirect=true",
+  "broken_authentication_and_session_management.failure_to_invalidate_session.on_email_change": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:failure_to_invalidate_session:on_email_change&redirect=true",
   "broken_authentication_and_session_management.failure_to_invalidate_session.on_logout": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:failure_to_invalidate_session:on_logout&redirect=true",
-  "broken_authentication_and_session_management.failure_to_invalidate_session.permission_change": null,
   "broken_authentication_and_session_management.failure_to_invalidate_session.on_logout_server_side_only": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:failure_to_invalidate_session:on_logout_server_side_only&redirect=true",
   "broken_authentication_and_session_management.failure_to_invalidate_session.on_password_change": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:failure_to_invalidate_session:on_password_change&redirect=true",
-  "broken_authentication_and_session_management.failure_to_invalidate_session.all_sessions": null,
-  "broken_authentication_and_session_management.failure_to_invalidate_session.on_email_change": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:failure_to_invalidate_session:on_email_change&redirect=true",
   "broken_authentication_and_session_management.failure_to_invalidate_session.on_two_fa_activation_change": null,
-  "broken_authentication_and_session_management.failure_to_invalidate_session.long_timeout": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:failure_to_invalidate_session:long_timeout&redirect=true",
-  "broken_authentication_and_session_management.concurrent_logins": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:concurrent_logins&redirect=true",
+  "broken_authentication_and_session_management.failure_to_invalidate_session.permission_change": null,
+  "broken_authentication_and_session_management.session_fixation": null,
+  "broken_authentication_and_session_management.session_fixation.local_attack_vector": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:session_fixation:local_attack_vector&redirect=true",
+  "broken_authentication_and_session_management.session_fixation.remote_attack_vector": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:session_fixation:remote_attack_vector&redirect=true",
+  "broken_authentication_and_session_management.two_fa_bypass": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:two_fa_bypass&redirect=true",
+  "broken_authentication_and_session_management.weak_login_function": null,
+  "broken_authentication_and_session_management.weak_login_function.not_operational": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:weak_login_function:not_operational&redirect=true",
+  "broken_authentication_and_session_management.weak_login_function.other_plaintext_protocol_no_secure_alternative": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:weak_login_function:other_plaintext_protocol_no_secure_alternative&redirect=true",
+  "broken_authentication_and_session_management.weak_login_function.over_http": null,
   "broken_authentication_and_session_management.weak_registration_implementation": null,
   "broken_authentication_and_session_management.weak_registration_implementation.over_http": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:weak_registration_implementation:over_http&redirect=true",
-  "sensitive_data_exposure": null,
-  "sensitive_data_exposure.disclosure_of_secrets": null,
-  "sensitive_data_exposure.disclosure_of_secrets.for_publicly_accessible_asset": null,
-  "sensitive_data_exposure.disclosure_of_secrets.pii_leakage_exposure": null,
-  "sensitive_data_exposure.disclosure_of_secrets.for_internal_asset": null,
-  "sensitive_data_exposure.disclosure_of_secrets.pay_per_use_abuse": null,
-  "sensitive_data_exposure.disclosure_of_secrets.intentionally_public_sample_or_invalid": null,
-  "sensitive_data_exposure.disclosure_of_secrets.data_traffic_spam": null,
-  "sensitive_data_exposure.disclosure_of_secrets.non_corporate_user": null,
-  "sensitive_data_exposure.exif_geolocation_data_not_stripped_from_uploaded_images": null,
-  "sensitive_data_exposure.exif_geolocation_data_not_stripped_from_uploaded_images.automatic_user_enumeration": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:exif_geolocation_data_not_stripped_from_uploaded_images:automatic_user_enumeration&redirect=true",
-  "sensitive_data_exposure.exif_geolocation_data_not_stripped_from_uploaded_images.manual_user_enumeration": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:exif_geolocation_data_not_stripped_from_uploaded_images:manual_user_enumeration&redirect=true",
-  "sensitive_data_exposure.visible_detailed_error_page": null,
-  "sensitive_data_exposure.visible_detailed_error_page.detailed_server_configuration": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:visible_detailed_error_page:detailed_server_configuration&redirect=true",
-  "sensitive_data_exposure.visible_detailed_error_page.full_path_disclosure": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:visible_detailed_error_page:full_path_disclosure&redirect=true",
-  "sensitive_data_exposure.visible_detailed_error_page.descriptive_stack_trace": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:visible_detailed_error_page:descriptive_stack_trace&redirect=true",
-  "sensitive_data_exposure.disclosure_of_known_public_information": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:disclosure_of_known_public_information&redirect=true",
-  "sensitive_data_exposure.token_leakage_via_referer": null,
-  "sensitive_data_exposure.token_leakage_via_referer.trusted_third_party": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:token_leakage_via_referer:trusted_third_party&redirect=true",
-  "sensitive_data_exposure.token_leakage_via_referer.untrusted_third_party": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:token_leakage_via_referer:untrusted_third_party&redirect=true",
-  "sensitive_data_exposure.token_leakage_via_referer.over_http": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:token_leakage_via_referer:over_http&redirect=true",
-  "sensitive_data_exposure.token_leakage_via_referer.password_reset_token": null,
-  "sensitive_data_exposure.sensitive_token_in_url": null,
-  "sensitive_data_exposure.sensitive_token_in_url.user_facing": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_token_in_url:user_facing&redirect=true",
-  "sensitive_data_exposure.sensitive_token_in_url.in_the_background": null,
-  "sensitive_data_exposure.sensitive_token_in_url.on_password_reset": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_token_in_url:on_password_reset&redirect=true",
-  "sensitive_data_exposure.non_sensitive_token_in_url": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:non_sensitive_token_in_url&redirect=true",
-  "sensitive_data_exposure.weak_password_reset_implementation": null,
-  "sensitive_data_exposure.weak_password_reset_implementation.password_reset_token_sent_over_http": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:weak_password_reset_implementation:password_reset_token_sent_over_http&redirect=true",
-  "sensitive_data_exposure.weak_password_reset_implementation.token_leakage_via_host_header_poisoning": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:weak_password_reset_implementation:token_leakage_via_host_header_poisoning&redirect=true",
-  "sensitive_data_exposure.mixed_content": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:mixed_content&redirect=true",
-  "sensitive_data_exposure.sensitive_data_hardcoded": null,
-  "sensitive_data_exposure.sensitive_data_hardcoded.oauth_secret": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_data_hardcoded:oauth_secret&redirect=true",
-  "sensitive_data_exposure.sensitive_data_hardcoded.file_paths": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_data_hardcoded:file_paths&redirect=true",
-  "sensitive_data_exposure.internal_ip_disclosure": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:internal_ip_disclosure&redirect=true",
-  "sensitive_data_exposure.xssi": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:xssi&redirect=true",
-  "sensitive_data_exposure.json_hijacking": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:json_hijacking&redirect=true",
-  "sensitive_data_exposure.via_localstorage_sessionstorage": null,
-  "sensitive_data_exposure.via_localstorage_sessionstorage.sensitive_token": null,
-  "sensitive_data_exposure.via_localstorage_sessionstorage.non_sensitive_token": null,
-  "cross_site_scripting_xss": null,
-  "cross_site_scripting_xss.stored": null,
-  "cross_site_scripting_xss.stored.non_admin_to_anyone": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:stored:non_admin_to_anyone&redirect=true",
-  "cross_site_scripting_xss.stored.privileged_user_to_privilege_elevation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:stored:privileged_user_to_privilege_elevation&redirect=true",
-  "cross_site_scripting_xss.stored.privileged_user_to_no_privilege_elevation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:stored:privileged_user_to_no_privilege_elevation&redirect=true",
-  "cross_site_scripting_xss.stored.url_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:stored:url_based&redirect=true",
-  "cross_site_scripting_xss.stored.self": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:stored:self&redirect=true",
-  "cross_site_scripting_xss.reflected": null,
-  "cross_site_scripting_xss.reflected.non_self": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:reflected:non_self&redirect=true",
-  "cross_site_scripting_xss.reflected.self": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:reflected:self&redirect=true",
-  "cross_site_scripting_xss.flash_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:flash_based&redirect=true",
-  "cross_site_scripting_xss.cookie_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:cookie_based&redirect=true",
-  "cross_site_scripting_xss.ie_only": null,
-  "cross_site_scripting_xss.referer": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:referer&redirect=true",
-  "cross_site_scripting_xss.trace_method": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:trace_method&redirect=true",
-  "cross_site_scripting_xss.universal_uxss": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:universal_uxss&redirect=true",
-  "cross_site_scripting_xss.off_domain": null,
-  "cross_site_scripting_xss.off_domain.data_uri": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:off_domain:data_uri&redirect=true",
-  "broken_access_control": null,
-  "broken_access_control.idor": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:idor&redirect=true",
-  "broken_access_control.idor.read_edit_delete_non_sensitive_information": null,
-  "broken_access_control.idor.read_edit_delete_sensitive_information_guid": null,
-  "broken_access_control.idor.read_sensitive_information_iterable_object_identifiers": null,
-  "broken_access_control.idor.edit_delete_sensitive_information_iterable_object_identifiers": null,
-  "broken_access_control.idor.read_edit_delete_sensitive_information_iterable_object_identifiers": null,
-  "broken_access_control.username_enumeration": null,
-  "broken_access_control.username_enumeration.non_brute_force": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:username_enumeration:non_brute_force&redirect=true",
-  "broken_access_control.exposed_sensitive_android_intent": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:exposed_sensitive_android_intent&redirect=true",
-  "broken_access_control.privilege_escalation": null,
-  "broken_access_control.exposed_sensitive_ios_url_scheme": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:exposed_sensitive_ios_url_scheme&redirect=true",
+  "client_side_injection": null,
+  "client_side_injection.binary_planting": null,
+  "client_side_injection.binary_planting.no_privilege_escalation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=client_side_injection:binary_planting:no_privilege_escalation&redirect=true",
+  "client_side_injection.binary_planting.non_default_folder_privilege_escalation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=client_side_injection:binary_planting:non_default_folder_privilege_escalation&redirect=true",
+  "client_side_injection.binary_planting.privilege_escalation": null,
   "cross_site_request_forgery_csrf": null,
-  "cross_site_request_forgery_csrf.application_wide": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_request_forgery_csrf:application_wide&redirect=true",
   "cross_site_request_forgery_csrf.action_specific": null,
   "cross_site_request_forgery_csrf.action_specific.authenticated_action": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_request_forgery_csrf:action_specific:authenticated_action&redirect=true",
-  "cross_site_request_forgery_csrf.action_specific.unauthenticated_action": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_request_forgery_csrf:action_specific:unauthenticated_action&redirect=true",
   "cross_site_request_forgery_csrf.action_specific.logout": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_request_forgery_csrf:action_specific:logout&redirect=true",
+  "cross_site_request_forgery_csrf.action_specific.unauthenticated_action": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_request_forgery_csrf:action_specific:unauthenticated_action&redirect=true",
+  "cross_site_request_forgery_csrf.application_wide": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_request_forgery_csrf:application_wide&redirect=true",
   "cross_site_request_forgery_csrf.csrf_token_not_unique_per_request": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_request_forgery_csrf:csrf_token_not_unique_per_request&redirect=true",
   "cross_site_request_forgery_csrf.flash_based": null,
-  "application_level_denial_of_service_dos": null,
-  "application_level_denial_of_service_dos.excessive_resource_consumption": null,
-  "application_level_denial_of_service_dos.excessive_resource_consumption.injection_prompt": null,
-  "application_level_denial_of_service_dos.critical_impact_and_or_easy_difficulty": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=application_level_denial_of_service_dos:critical_impact_and_or_easy_difficulty&redirect=true",
-  "application_level_denial_of_service_dos.high_impact_and_or_medium_difficulty": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=application_level_denial_of_service_dos:high_impact_and_or_medium_difficulty&redirect=true",
-  "application_level_denial_of_service_dos.app_crash": null,
-  "application_level_denial_of_service_dos.app_crash.malformed_android_intents": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=application_level_denial_of_service_dos:app_crash:malformed_android_intents&redirect=true",
-  "application_level_denial_of_service_dos.app_crash.malformed_ios_url_schemes": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=application_level_denial_of_service_dos:app_crash:malformed_ios_url_schemes&redirect=true",
-  "unvalidated_redirects_and_forwards": null,
-  "unvalidated_redirects_and_forwards.open_redirect": null,
-  "unvalidated_redirects_and_forwards.open_redirect.get_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:open_redirect:get_based&redirect=true",
-  "unvalidated_redirects_and_forwards.open_redirect.post_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:open_redirect:post_based&redirect=true",
-  "unvalidated_redirects_and_forwards.open_redirect.header_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:open_redirect:header_based&redirect=true",
-  "unvalidated_redirects_and_forwards.open_redirect.flash_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:open_redirect:flash_based&redirect=true",
-  "unvalidated_redirects_and_forwards.tabnabbing": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:tabnabbing&redirect=true",
-  "unvalidated_redirects_and_forwards.lack_of_security_speed_bump_page": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:lack_of_security_speed_bump_page&redirect=true",
+  "cross_site_scripting_xss": null,
+  "cross_site_scripting_xss.cookie_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:cookie_based&redirect=true",
+  "cross_site_scripting_xss.flash_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:flash_based&redirect=true",
+  "cross_site_scripting_xss.ie_only": null,
+  "cross_site_scripting_xss.off_domain": null,
+  "cross_site_scripting_xss.off_domain.data_uri": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:off_domain:data_uri&redirect=true",
+  "cross_site_scripting_xss.referer": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:referer&redirect=true",
+  "cross_site_scripting_xss.reflected": null,
+  "cross_site_scripting_xss.reflected.non_self": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:reflected:non_self&redirect=true",
+  "cross_site_scripting_xss.reflected.self": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:reflected:self&redirect=true",
+  "cross_site_scripting_xss.stored": null,
+  "cross_site_scripting_xss.stored.non_admin_to_anyone": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:stored:non_admin_to_anyone&redirect=true",
+  "cross_site_scripting_xss.stored.privileged_user_to_no_privilege_elevation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:stored:privileged_user_to_no_privilege_elevation&redirect=true",
+  "cross_site_scripting_xss.stored.privileged_user_to_privilege_elevation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:stored:privileged_user_to_privilege_elevation&redirect=true",
+  "cross_site_scripting_xss.stored.self": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:stored:self&redirect=true",
+  "cross_site_scripting_xss.stored.url_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:stored:url_based&redirect=true",
+  "cross_site_scripting_xss.trace_method": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:trace_method&redirect=true",
+  "cross_site_scripting_xss.universal_uxss": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=cross_site_scripting_xss:universal_uxss&redirect=true",
+  "cryptographic_weakness": null,
+  "cryptographic_weakness.broken_cryptography": null,
+  "cryptographic_weakness.broken_cryptography.use_of_broken_cryptographic_primitive": null,
+  "cryptographic_weakness.broken_cryptography.use_of_vulnerable_cryptographic_library": null,
+  "cryptographic_weakness.incomplete_cleanup_of_keying_material": null,
+  "cryptographic_weakness.insecure_implementation": null,
+  "cryptographic_weakness.insecure_implementation.improper_following_of_specification": null,
+  "cryptographic_weakness.insecure_implementation.missing_cryptographic_step": null,
+  "cryptographic_weakness.insecure_key_generation": null,
+  "cryptographic_weakness.insecure_key_generation.improper_asymmetric_exponent_selection": null,
+  "cryptographic_weakness.insecure_key_generation.improper_asymmetric_prime_selection": null,
+  "cryptographic_weakness.insecure_key_generation.insufficient_key_space": null,
+  "cryptographic_weakness.insecure_key_generation.insufficient_key_stretching": null,
+  "cryptographic_weakness.insecure_key_generation.key_exchange_without_entity_authentication": null,
+  "cryptographic_weakness.insufficient_entropy": null,
+  "cryptographic_weakness.insufficient_entropy.initialization_vector_reuse": null,
+  "cryptographic_weakness.insufficient_entropy.limited_rng_entropy_source": null,
+  "cryptographic_weakness.insufficient_entropy.predictable_initialization_vector": null,
+  "cryptographic_weakness.insufficient_entropy.predictable_prng_seed": null,
+  "cryptographic_weakness.insufficient_entropy.prng_seed_reuse": null,
+  "cryptographic_weakness.insufficient_entropy.small_seed_space_in_prng": null,
+  "cryptographic_weakness.insufficient_entropy.use_of_trng_for_nonsecurity_purpose": null,
+  "cryptographic_weakness.insufficient_verification_of_data_authenticity": null,
+  "cryptographic_weakness.insufficient_verification_of_data_authenticity.cryptographic_signature": null,
+  "cryptographic_weakness.insufficient_verification_of_data_authenticity.identity_check_value": null,
+  "cryptographic_weakness.key_reuse": null,
+  "cryptographic_weakness.key_reuse.inter_environment": null,
+  "cryptographic_weakness.key_reuse.intra_environment": null,
+  "cryptographic_weakness.key_reuse.lack_of_perfect_forward_secrecy": null,
+  "cryptographic_weakness.side_channel_attack": null,
+  "cryptographic_weakness.side_channel_attack.differential_fault_analysis": null,
+  "cryptographic_weakness.side_channel_attack.emanations_attack": null,
+  "cryptographic_weakness.side_channel_attack.padding_oracle_attack": null,
+  "cryptographic_weakness.side_channel_attack.power_analysis_attack": null,
+  "cryptographic_weakness.side_channel_attack.timing_attack": null,
+  "cryptographic_weakness.use_of_expired_cryptographic_key_or_cert": null,
+  "cryptographic_weakness.weak_hash": null,
+  "cryptographic_weakness.weak_hash.lack_of_salt": null,
+  "cryptographic_weakness.weak_hash.predictable_hash_collision": null,
+  "cryptographic_weakness.weak_hash.use_of_predictable_salt": null,
+  "data_biases": null,
+  "data_biases.pre_existing_bias": null,
+  "data_biases.representation_bias": null,
+  "decentralized_application_misconfiguration": null,
+  "decentralized_application_misconfiguration.defi_security": null,
+  "decentralized_application_misconfiguration.defi_security.flash_loan_attack": null,
+  "decentralized_application_misconfiguration.defi_security.function_level_accounting_error": null,
+  "decentralized_application_misconfiguration.defi_security.improper_implementation_of_governance": null,
+  "decentralized_application_misconfiguration.defi_security.pricing_oracle_manipulation": null,
+  "decentralized_application_misconfiguration.improper_authorization": null,
+  "decentralized_application_misconfiguration.improper_authorization.insufficient_signature_validation": null,
+  "decentralized_application_misconfiguration.insecure_data_storage": null,
+  "decentralized_application_misconfiguration.insecure_data_storage.plaintext_private_key": null,
+  "decentralized_application_misconfiguration.insecure_data_storage.sensitive_information_exposure": null,
+  "decentralized_application_misconfiguration.marketplace_security": null,
+  "decentralized_application_misconfiguration.marketplace_security.denial_of_service": null,
+  "decentralized_application_misconfiguration.marketplace_security.improper_validation_and_checks_for_deposits_and_withdrawals": null,
+  "decentralized_application_misconfiguration.marketplace_security.malicious_order_offer": null,
+  "decentralized_application_misconfiguration.marketplace_security.miscalculated_accounting_logic": null,
+  "decentralized_application_misconfiguration.marketplace_security.ofac_bypass": null,
+  "decentralized_application_misconfiguration.marketplace_security.orderbook_manipulation": null,
+  "decentralized_application_misconfiguration.marketplace_security.price_or_fee_manipulation": null,
+  "decentralized_application_misconfiguration.marketplace_security.signer_account_takeover": null,
+  "decentralized_application_misconfiguration.marketplace_security.unauthorized_asset_transfer": null,
+  "decentralized_application_misconfiguration.protocol_security_misconfiguration": null,
+  "decentralized_application_misconfiguration.protocol_security_misconfiguration.node_level_denial_of_service": null,
+  "developer_biases": null,
+  "developer_biases.implicit_bias": null,
   "external_behavior": null,
   "external_behavior.browser_feature": null,
-  "external_behavior.browser_feature.plaintext_password_field": null,
-  "external_behavior.browser_feature.save_password": null,
+  "external_behavior.browser_feature.aggressive_offline_caching": null,
   "external_behavior.browser_feature.autocomplete_enabled": null,
   "external_behavior.browser_feature.autocorrect_enabled": null,
-  "external_behavior.browser_feature.aggressive_offline_caching": null,
-  "external_behavior.csv_injection": null,
+  "external_behavior.browser_feature.plaintext_password_field": null,
+  "external_behavior.browser_feature.save_password": null,
   "external_behavior.captcha_bypass": null,
   "external_behavior.captcha_bypass.crowdsourcing": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=external_behavior:captcha_bypass:crowdsourcing&redirect=true",
+  "external_behavior.csv_injection": null,
   "external_behavior.system_clipboard_leak": null,
   "external_behavior.system_clipboard_leak.shared_links": null,
   "external_behavior.user_password_persisted_in_memory": null,
+  "indicators_of_compromise": null,
+  "insecure_data_storage": null,
+  "insecure_data_storage.non_sensitive_application_data_stored_unencrypted": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_storage:non_sensitive_application_data_stored_unencrypted&redirect=true",
+  "insecure_data_storage.screen_caching_enabled": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_storage:screen_caching_enabled&redirect=true",
+  "insecure_data_storage.sensitive_application_data_stored_unencrypted": null,
+  "insecure_data_storage.sensitive_application_data_stored_unencrypted.on_external_storage": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_storage:sensitive_application_data_stored_unencrypted:on_external_storage&redirect=true",
+  "insecure_data_storage.sensitive_application_data_stored_unencrypted.on_internal_storage": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_storage:sensitive_application_data_stored_unencrypted:on_internal_storage&redirect=true",
+  "insecure_data_storage.server_side_credentials_storage": null,
+  "insecure_data_storage.server_side_credentials_storage.plaintext": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_storage:server_side_credentials_storage:plaintext&redirect=true",
+  "insecure_data_transport": null,
+  "insecure_data_transport.cleartext_transmission_of_sensitive_data": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_transport:cleartext_transmission_of_sensitive_data&redirect=true",
+  "insecure_data_transport.executable_download": null,
+  "insecure_data_transport.executable_download.no_secure_integrity_check": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_transport:executable_download:no_secure_integrity_check&redirect=true",
+  "insecure_data_transport.executable_download.secure_integrity_check": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_transport:executable_download:secure_integrity_check&redirect=true",
+  "insecure_os_firmware": null,
+  "insecure_os_firmware.command_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_os_firmware:command_injection&redirect=true",
+  "insecure_os_firmware.data_not_encrypted_at_rest": null,
+  "insecure_os_firmware.data_not_encrypted_at_rest.non_sensitive": null,
+  "insecure_os_firmware.data_not_encrypted_at_rest.sensitive": null,
+  "insecure_os_firmware.failure_to_remove_sensitive_artifacts_from_disk": null,
+  "insecure_os_firmware.hardcoded_password": null,
+  "insecure_os_firmware.hardcoded_password.non_privileged_user": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_os_firmware:hardcoded_password:non_privileged_user&redirect=true",
+  "insecure_os_firmware.hardcoded_password.privileged_user": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_os_firmware:hardcoded_password:privileged_user&redirect=true",
+  "insecure_os_firmware.kiosk_escape_or_breakout": null,
+  "insecure_os_firmware.local_administrator_on_default_environment": null,
+  "insecure_os_firmware.over_permissioned_credentials_on_storage": null,
+  "insecure_os_firmware.poorly_configured_disk_encryption": null,
+  "insecure_os_firmware.poorly_configured_operating_system_security": null,
+  "insecure_os_firmware.recovery_of_disk_contains_sensitive_material": null,
+  "insecure_os_firmware.shared_credentials_on_storage": null,
+  "insecure_os_firmware.weakness_in_firmware_updates": null,
+  "insecure_os_firmware.weakness_in_firmware_updates.firmware_cannot_be_updated": null,
+  "insecure_os_firmware.weakness_in_firmware_updates.firmware_does_not_validate_update_integrity": null,
+  "insecure_os_firmware.weakness_in_firmware_updates.firmware_is_not_encrypted": null,
   "insufficient_security_configurability": null,
-  "insufficient_security_configurability.weak_password_policy": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_policy&redirect=true",
+  "insufficient_security_configurability.lack_of_notification_email": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:lack_of_notification_email&redirect=true",
   "insufficient_security_configurability.no_password_policy": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:no_password_policy&redirect=true",
   "insufficient_security_configurability.password_policy_bypass": null,
+  "insufficient_security_configurability.verification_of_contact_method_not_required": null,
+  "insufficient_security_configurability.weak_password_policy": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_policy&redirect=true",
   "insufficient_security_configurability.weak_password_reset_implementation": null,
-  "insufficient_security_configurability.weak_password_reset_implementation.token_is_not_invalidated_after_use": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_reset_implementation:token_is_not_invalidated_after_use&redirect=true",
-  "insufficient_security_configurability.weak_password_reset_implementation.token_is_not_invalidated_after_email_change": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_reset_implementation:token_is_not_invalidated_after_email_change&redirect=true",
-  "insufficient_security_configurability.weak_password_reset_implementation.token_is_not_invalidated_after_password_change": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_reset_implementation:token_is_not_invalidated_after_password_change&redirect=true",
   "insufficient_security_configurability.weak_password_reset_implementation.token_has_long_timed_expiry": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_reset_implementation:token_has_long_timed_expiry&redirect=true",
-  "insufficient_security_configurability.weak_password_reset_implementation.token_is_not_invalidated_after_new_token_is_requested": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_reset_implementation:token_is_not_invalidated_after_new_token_is_requested&redirect=true",
+  "insufficient_security_configurability.weak_password_reset_implementation.token_is_not_invalidated_after_email_change": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_reset_implementation:token_is_not_invalidated_after_email_change&redirect=true",
   "insufficient_security_configurability.weak_password_reset_implementation.token_is_not_invalidated_after_login": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_reset_implementation:token_is_not_invalidated_after_login&redirect=true",
-  "insufficient_security_configurability.verification_of_contact_method_not_required": null,
-  "insufficient_security_configurability.lack_of_notification_email": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:lack_of_notification_email&redirect=true",
+  "insufficient_security_configurability.weak_password_reset_implementation.token_is_not_invalidated_after_new_token_is_requested": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_reset_implementation:token_is_not_invalidated_after_new_token_is_requested&redirect=true",
+  "insufficient_security_configurability.weak_password_reset_implementation.token_is_not_invalidated_after_password_change": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_reset_implementation:token_is_not_invalidated_after_password_change&redirect=true",
+  "insufficient_security_configurability.weak_password_reset_implementation.token_is_not_invalidated_after_use": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_password_reset_implementation:token_is_not_invalidated_after_use&redirect=true",
   "insufficient_security_configurability.weak_registration_implementation": null,
   "insufficient_security_configurability.weak_registration_implementation.allows_disposable_email_addresses": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_registration_implementation:allows_disposable_email_addresses&redirect=true",
   "insufficient_security_configurability.weak_two_fa_implementation": null,
-  "insufficient_security_configurability.weak_two_fa_implementation.two_fa_secret_cannot_be_rotated": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_two_fa_implementation:two_fa_secret_cannot_be_rotated&redirect=true",
-  "insufficient_security_configurability.weak_two_fa_implementation.two_fa_secret_remains_obtainable_after_two_fa_is_enabled": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_two_fa_implementation:two_fa_secret_remains_obtainable_after_two_fa_is_enabled&redirect=true",
   "insufficient_security_configurability.weak_two_fa_implementation.missing_failsafe": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_two_fa_implementation:missing_failsafe&redirect=true",
-  "insufficient_security_configurability.weak_two_fa_implementation.two_fa_code_is_not_updated_after_new_code_is_requested": null,
   "insufficient_security_configurability.weak_two_fa_implementation.old_two_fa_code_is_not_invalidated_after_new_code_is_generated": null,
-  "using_components_with_known_vulnerabilities": null,
-  "using_components_with_known_vulnerabilities.rosetta_flash": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=using_components_with_known_vulnerabilities:rosetta_flash&redirect=true",
-  "using_components_with_known_vulnerabilities.outdated_software_version": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=using_components_with_known_vulnerabilities:outdated_software_version&redirect=true",
-  "using_components_with_known_vulnerabilities.captcha_bypass": null,
-  "using_components_with_known_vulnerabilities.captcha_bypass.ocr_optical_character_recognition": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=using_components_with_known_vulnerabilities:captcha_bypass:ocr_optical_character_recognition&redirect=true",
-  "insecure_data_storage": null,
-  "insecure_data_storage.sensitive_application_data_stored_unencrypted": null,
-  "insecure_data_storage.sensitive_application_data_stored_unencrypted.on_external_storage": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_storage:sensitive_application_data_stored_unencrypted:on_external_storage&redirect=true",
-  "insecure_data_storage.sensitive_application_data_stored_unencrypted.on_internal_storage": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_storage:sensitive_application_data_stored_unencrypted:on_internal_storage&redirect=true",
-  "insecure_data_storage.server_side_credentials_storage": null,
-  "insecure_data_storage.server_side_credentials_storage.plaintext": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_storage:server_side_credentials_storage:plaintext&redirect=true",
-  "insecure_data_storage.non_sensitive_application_data_stored_unencrypted": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_storage:non_sensitive_application_data_stored_unencrypted&redirect=true",
-  "insecure_data_storage.screen_caching_enabled": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_storage:screen_caching_enabled&redirect=true",
+  "insufficient_security_configurability.weak_two_fa_implementation.two_fa_code_is_not_updated_after_new_code_is_requested": null,
+  "insufficient_security_configurability.weak_two_fa_implementation.two_fa_secret_cannot_be_rotated": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_two_fa_implementation:two_fa_secret_cannot_be_rotated&redirect=true",
+  "insufficient_security_configurability.weak_two_fa_implementation.two_fa_secret_remains_obtainable_after_two_fa_is_enabled": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insufficient_security_configurability:weak_two_fa_implementation:two_fa_secret_remains_obtainable_after_two_fa_is_enabled&redirect=true",
   "lack_of_binary_hardening": null,
   "lack_of_binary_hardening.lack_of_exploit_mitigations": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=lack_of_binary_hardening:lack_of_exploit_mitigations&redirect=true",
   "lack_of_binary_hardening.lack_of_jailbreak_detection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=lack_of_binary_hardening:lack_of_jailbreak_detection&redirect=true",
   "lack_of_binary_hardening.lack_of_obfuscation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=lack_of_binary_hardening:lack_of_obfuscation&redirect=true",
   "lack_of_binary_hardening.runtime_instrumentation_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=lack_of_binary_hardening:runtime_instrumentation_based&redirect=true",
-  "insecure_data_transport": null,
-  "insecure_data_transport.cleartext_transmission_of_sensitive_data": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_transport:cleartext_transmission_of_sensitive_data&redirect=true",
-  "insecure_data_transport.executable_download": null,
-  "insecure_data_transport.executable_download.no_secure_integrity_check": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_transport:executable_download:no_secure_integrity_check&redirect=true",
-  "insecure_data_transport.executable_download.secure_integrity_check": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_data_transport:executable_download:secure_integrity_check&redirect=true",
-  "data_biases": null,
-  "data_biases.representation_bias": null,
-  "data_biases.pre_existing_bias": null,
-  "algorithmic_biases": null,
-  "algorithmic_biases.processing_bias": null,
-  "algorithmic_biases.aggregation_bias": null,
-  "societal_biases": null,
-  "societal_biases.confirmation_bias": null,
-  "societal_biases.systemic_bias": null,
   "misinterpretation_biases": null,
   "misinterpretation_biases.context_ignorance": null,
-  "developer_biases": null,
-  "developer_biases.implicit_bias": null,
+  "mobile_security_misconfiguration": null,
+  "mobile_security_misconfiguration.auto_backup_allowed_by_default": null,
+  "mobile_security_misconfiguration.clipboard_enabled": null,
+  "mobile_security_misconfiguration.ssl_certificate_pinning": null,
+  "mobile_security_misconfiguration.ssl_certificate_pinning.absent": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=mobile_security_misconfiguration:ssl_certificate_pinning:absent&redirect=true",
+  "mobile_security_misconfiguration.ssl_certificate_pinning.defeatable": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=mobile_security_misconfiguration:ssl_certificate_pinning:defeatable&redirect=true",
+  "mobile_security_misconfiguration.tapjacking": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=mobile_security_misconfiguration:tapjacking&redirect=true",
+  "network_security_misconfiguration": null,
+  "network_security_misconfiguration.telnet_enabled": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=network_security_misconfiguration:telnet_enabled&redirect=true",
   "physical_security_issues": null,
   "physical_security_issues.bypass_of_physical_access_control": null,
   "physical_security_issues.weakness_in_physical_access_control": null,
   "physical_security_issues.weakness_in_physical_access_control.cloneable_key": null,
-  "physical_security_issues.weakness_in_physical_access_control.master_key_identification": null,
   "physical_security_issues.weakness_in_physical_access_control.commonly_keyed_system": null,
-  "insecure_os_firmware": null,
-  "insecure_os_firmware.command_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_os_firmware:command_injection&redirect=true",
-  "insecure_os_firmware.hardcoded_password": null,
-  "insecure_os_firmware.hardcoded_password.privileged_user": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_os_firmware:hardcoded_password:privileged_user&redirect=true",
-  "insecure_os_firmware.hardcoded_password.non_privileged_user": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=insecure_os_firmware:hardcoded_password:non_privileged_user&redirect=true",
-  "insecure_os_firmware.weakness_in_firmware_updates": null,
-  "insecure_os_firmware.weakness_in_firmware_updates.firmware_cannot_be_updated": null,
-  "insecure_os_firmware.weakness_in_firmware_updates.firmware_does_not_validate_update_integrity": null,
-  "insecure_os_firmware.weakness_in_firmware_updates.firmware_is_not_encrypted": null,
-  "insecure_os_firmware.kiosk_escape_or_breakout": null,
-  "insecure_os_firmware.poorly_configured_disk_encryption": null,
-  "insecure_os_firmware.shared_credentials_on_storage": null,
-  "insecure_os_firmware.over_permissioned_credentials_on_storage": null,
-  "insecure_os_firmware.local_administrator_on_default_environment": null,
-  "insecure_os_firmware.poorly_configured_operating_system_security": null,
-  "insecure_os_firmware.recovery_of_disk_contains_sensitive_material": null,
-  "insecure_os_firmware.failure_to_remove_sensitive_artifacts_from_disk": null,
-  "insecure_os_firmware.data_not_encrypted_at_rest": null,
-  "insecure_os_firmware.data_not_encrypted_at_rest.sensitive": null,
-  "insecure_os_firmware.data_not_encrypted_at_rest.non_sensitive": null,
-  "cryptographic_weakness": null,
-  "cryptographic_weakness.insufficient_entropy": null,
-  "cryptographic_weakness.insufficient_entropy.limited_rng_entropy_source": null,
-  "cryptographic_weakness.insufficient_entropy.use_of_trng_for_nonsecurity_purpose": null,
-  "cryptographic_weakness.insufficient_entropy.prng_seed_reuse": null,
-  "cryptographic_weakness.insufficient_entropy.predictable_prng_seed": null,
-  "cryptographic_weakness.insufficient_entropy.small_seed_space_in_prng": null,
-  "cryptographic_weakness.insufficient_entropy.initialization_vector_reuse": null,
-  "cryptographic_weakness.insufficient_entropy.predictable_initialization_vector": null,
-  "cryptographic_weakness.insecure_implementation": null,
-  "cryptographic_weakness.insecure_implementation.missing_cryptographic_step": null,
-  "cryptographic_weakness.insecure_implementation.improper_following_of_specification": null,
-  "cryptographic_weakness.weak_hash": null,
-  "cryptographic_weakness.weak_hash.lack_of_salt": null,
-  "cryptographic_weakness.weak_hash.use_of_predictable_salt": null,
-  "cryptographic_weakness.weak_hash.predictable_hash_collision": null,
-  "cryptographic_weakness.insufficient_verification_of_data_authenticity": null,
-  "cryptographic_weakness.insufficient_verification_of_data_authenticity.identity_check_value": null,
-  "cryptographic_weakness.insufficient_verification_of_data_authenticity.cryptographic_signature": null,
-  "cryptographic_weakness.insecure_key_generation": null,
-  "cryptographic_weakness.insecure_key_generation.improper_asymmetric_prime_selection": null,
-  "cryptographic_weakness.insecure_key_generation.improper_asymmetric_exponent_selection": null,
-  "cryptographic_weakness.insecure_key_generation.insufficient_key_stretching": null,
-  "cryptographic_weakness.insecure_key_generation.insufficient_key_space": null,
-  "cryptographic_weakness.insecure_key_generation.key_exchange_without_entity_authentication": null,
-  "cryptographic_weakness.key_reuse": null,
-  "cryptographic_weakness.key_reuse.lack_of_perfect_forward_secrecy": null,
-  "cryptographic_weakness.key_reuse.intra_environment": null,
-  "cryptographic_weakness.key_reuse.inter_environment": null,
-  "cryptographic_weakness.broken_cryptography": null,
-  "cryptographic_weakness.broken_cryptography.use_of_broken_cryptographic_primitive": null,
-  "cryptographic_weakness.broken_cryptography.use_of_vulnerable_cryptographic_library": null,
-  "cryptographic_weakness.side_channel_attack": null,
-  "cryptographic_weakness.side_channel_attack.padding_oracle_attack": null,
-  "cryptographic_weakness.side_channel_attack.timing_attack": null,
-  "cryptographic_weakness.side_channel_attack.power_analysis_attack": null,
-  "cryptographic_weakness.side_channel_attack.emanations_attack": null,
-  "cryptographic_weakness.side_channel_attack.differential_fault_analysis": null,
-  "cryptographic_weakness.use_of_expired_cryptographic_key_or_cert": null,
-  "cryptographic_weakness.incomplete_cleanup_of_keying_material": null,
+  "physical_security_issues.weakness_in_physical_access_control.master_key_identification": null,
   "privacy_concerns": null,
   "privacy_concerns.unnecessary_data_collection": null,
   "privacy_concerns.unnecessary_data_collection.wifi_ssid_password": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=privacy_concerns:unnecessary_data_collection:wifi_ssid_password&redirect=true",
-  "network_security_misconfiguration": null,
-  "network_security_misconfiguration.telnet_enabled": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=network_security_misconfiguration:telnet_enabled&redirect=true",
-  "mobile_security_misconfiguration": null,
-  "mobile_security_misconfiguration.ssl_certificate_pinning": null,
-  "mobile_security_misconfiguration.ssl_certificate_pinning.absent": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=mobile_security_misconfiguration:ssl_certificate_pinning:absent&redirect=true",
-  "mobile_security_misconfiguration.ssl_certificate_pinning.defeatable": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=mobile_security_misconfiguration:ssl_certificate_pinning:defeatable&redirect=true",
-  "mobile_security_misconfiguration.tapjacking": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=mobile_security_misconfiguration:tapjacking&redirect=true",
-  "mobile_security_misconfiguration.clipboard_enabled": null,
-  "mobile_security_misconfiguration.auto_backup_allowed_by_default": null,
-  "client_side_injection": null,
-  "client_side_injection.binary_planting": null,
-  "client_side_injection.binary_planting.privilege_escalation": null,
-  "client_side_injection.binary_planting.non_default_folder_privilege_escalation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=client_side_injection:binary_planting:non_default_folder_privilege_escalation&redirect=true",
-  "client_side_injection.binary_planting.no_privilege_escalation": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=client_side_injection:binary_planting:no_privilege_escalation&redirect=true",
-  "automotive_security_misconfiguration": null,
-  "automotive_security_misconfiguration.infotainment_radio_head_unit": null,
-  "automotive_security_misconfiguration.infotainment_radio_head_unit.sensitive_data_leakage_exposure": null,
-  "automotive_security_misconfiguration.infotainment_radio_head_unit.ota_firmware_manipulation": null,
-  "automotive_security_misconfiguration.infotainment_radio_head_unit.code_execution_can_bus_pivot": null,
-  "automotive_security_misconfiguration.infotainment_radio_head_unit.code_execution_no_can_bus_pivot": null,
-  "automotive_security_misconfiguration.infotainment_radio_head_unit.unauthorized_access_to_services": null,
-  "automotive_security_misconfiguration.infotainment_radio_head_unit.source_code_dump": null,
-  "automotive_security_misconfiguration.infotainment_radio_head_unit.dos_brick": null,
-  "automotive_security_misconfiguration.infotainment_radio_head_unit.default_credentials": null,
-  "automotive_security_misconfiguration.rf_hub": null,
-  "automotive_security_misconfiguration.rf_hub.key_fob_cloning": null,
-  "automotive_security_misconfiguration.rf_hub.can_injection_interaction": null,
-  "automotive_security_misconfiguration.rf_hub.data_leakage_pull_encryption_mechanism": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:rf_hub:data_leakage_pull_encryption_mechanism&redirect=true",
-  "automotive_security_misconfiguration.rf_hub.unauthorized_access_turn_on": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:rf_hub:unauthorized_access_turn_on&redirect=true",
-  "automotive_security_misconfiguration.rf_hub.roll_jam": null,
-  "automotive_security_misconfiguration.rf_hub.replay": null,
-  "automotive_security_misconfiguration.rf_hub.relay": null,
-  "automotive_security_misconfiguration.can": null,
-  "automotive_security_misconfiguration.can.injection_battery_management_system": null,
-  "automotive_security_misconfiguration.can.injection_steering_control": null,
-  "automotive_security_misconfiguration.can.injection_pyrotechnical_device_deployment_tool": null,
-  "automotive_security_misconfiguration.can.injection_headlights": null,
-  "automotive_security_misconfiguration.can.injection_sensors": null,
-  "automotive_security_misconfiguration.can.injection_vehicle_anti_theft_systems": null,
-  "automotive_security_misconfiguration.can.injection_powertrain": null,
-  "automotive_security_misconfiguration.can.injection_basic_safety_message": null,
-  "automotive_security_misconfiguration.can.injection_disallowed_messages": null,
-  "automotive_security_misconfiguration.can.injection_dos": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=automotive_security_misconfiguration:can:injection_dos&redirect=true",
-  "automotive_security_misconfiguration.battery_management_system": null,
-  "automotive_security_misconfiguration.battery_management_system.firmware_dump": null,
-  "automotive_security_misconfiguration.battery_management_system.fraudulent_interface": null,
-  "automotive_security_misconfiguration.gnss_gps": null,
-  "automotive_security_misconfiguration.gnss_gps.spoofing": null,
-  "automotive_security_misconfiguration.immobilizer": null,
-  "automotive_security_misconfiguration.immobilizer.engine_start": null,
-  "automotive_security_misconfiguration.abs": null,
-  "automotive_security_misconfiguration.abs.unintended_acceleration_brake": null,
-  "automotive_security_misconfiguration.rsu": null,
-  "automotive_security_misconfiguration.rsu.sybil_attack": null,
-  "ai_application_security": null,
-  "ai_application_security.llm_security": null,
-  "ai_application_security.llm_security.prompt_injection": null,
-  "ai_application_security.llm_security.llm_output_handling": null,
-  "ai_application_security.llm_security.training_data_poisoning": null,
-  "ai_application_security.llm_security.excessive_agency_permission_manipulation": null,
-  "indicators_of_compromise": null
+  "protocol_specific_misconfiguration": null,
+  "protocol_specific_misconfiguration.frontrunning_enabled_attack": null,
+  "protocol_specific_misconfiguration.improper_validation_and_finalization_logic": null,
+  "protocol_specific_misconfiguration.misconfigured_staking_logic": null,
+  "protocol_specific_misconfiguration.sandwich_enabled_attack": null,
+  "sensitive_data_exposure": null,
+  "sensitive_data_exposure.disclosure_of_known_public_information": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:disclosure_of_known_public_information&redirect=true",
+  "sensitive_data_exposure.disclosure_of_secrets": null,
+  "sensitive_data_exposure.disclosure_of_secrets.data_traffic_spam": null,
+  "sensitive_data_exposure.disclosure_of_secrets.for_internal_asset": null,
+  "sensitive_data_exposure.disclosure_of_secrets.for_publicly_accessible_asset": null,
+  "sensitive_data_exposure.disclosure_of_secrets.intentionally_public_sample_or_invalid": null,
+  "sensitive_data_exposure.disclosure_of_secrets.non_corporate_user": null,
+  "sensitive_data_exposure.disclosure_of_secrets.pay_per_use_abuse": null,
+  "sensitive_data_exposure.disclosure_of_secrets.pii_leakage_exposure": null,
+  "sensitive_data_exposure.exif_geolocation_data_not_stripped_from_uploaded_images": null,
+  "sensitive_data_exposure.exif_geolocation_data_not_stripped_from_uploaded_images.automatic_user_enumeration": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:exif_geolocation_data_not_stripped_from_uploaded_images:automatic_user_enumeration&redirect=true",
+  "sensitive_data_exposure.exif_geolocation_data_not_stripped_from_uploaded_images.manual_user_enumeration": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:exif_geolocation_data_not_stripped_from_uploaded_images:manual_user_enumeration&redirect=true",
+  "sensitive_data_exposure.internal_ip_disclosure": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:internal_ip_disclosure&redirect=true",
+  "sensitive_data_exposure.json_hijacking": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:json_hijacking&redirect=true",
+  "sensitive_data_exposure.mixed_content": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:mixed_content&redirect=true",
+  "sensitive_data_exposure.non_sensitive_token_in_url": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:non_sensitive_token_in_url&redirect=true",
+  "sensitive_data_exposure.sensitive_data_hardcoded": null,
+  "sensitive_data_exposure.sensitive_data_hardcoded.file_paths": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_data_hardcoded:file_paths&redirect=true",
+  "sensitive_data_exposure.sensitive_data_hardcoded.oauth_secret": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_data_hardcoded:oauth_secret&redirect=true",
+  "sensitive_data_exposure.sensitive_token_in_url": null,
+  "sensitive_data_exposure.sensitive_token_in_url.in_the_background": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_token_in_url:in_the_background&redirect=true",
+  "sensitive_data_exposure.sensitive_token_in_url.on_password_reset": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_token_in_url:on_password_reset&redirect=true",
+  "sensitive_data_exposure.sensitive_token_in_url.user_facing": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:sensitive_token_in_url:user_facing&redirect=true",
+  "sensitive_data_exposure.token_leakage_via_referer": null,
+  "sensitive_data_exposure.token_leakage_via_referer.over_http": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:token_leakage_via_referer:over_http&redirect=true",
+  "sensitive_data_exposure.token_leakage_via_referer.password_reset_token": null,
+  "sensitive_data_exposure.token_leakage_via_referer.trusted_third_party": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:token_leakage_via_referer:trusted_third_party&redirect=true",
+  "sensitive_data_exposure.token_leakage_via_referer.untrusted_third_party": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:token_leakage_via_referer:untrusted_third_party&redirect=true",
+  "sensitive_data_exposure.via_localstorage_sessionstorage": null,
+  "sensitive_data_exposure.via_localstorage_sessionstorage.non_sensitive_token": null,
+  "sensitive_data_exposure.via_localstorage_sessionstorage.sensitive_token": null,
+  "sensitive_data_exposure.visible_detailed_error_page": null,
+  "sensitive_data_exposure.visible_detailed_error_page.descriptive_stack_trace": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:visible_detailed_error_page:descriptive_stack_trace&redirect=true",
+  "sensitive_data_exposure.visible_detailed_error_page.detailed_server_configuration": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:visible_detailed_error_page:detailed_server_configuration&redirect=true",
+  "sensitive_data_exposure.visible_detailed_error_page.full_path_disclosure": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:visible_detailed_error_page:full_path_disclosure&redirect=true",
+  "sensitive_data_exposure.weak_password_reset_implementation": null,
+  "sensitive_data_exposure.weak_password_reset_implementation.password_reset_token_sent_over_http": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:weak_password_reset_implementation:password_reset_token_sent_over_http&redirect=true",
+  "sensitive_data_exposure.weak_password_reset_implementation.token_leakage_via_host_header_poisoning": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:weak_password_reset_implementation:token_leakage_via_host_header_poisoning&redirect=true",
+  "sensitive_data_exposure.xssi": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:xssi&redirect=true",
+  "server_security_misconfiguration": null,
+  "server_security_misconfiguration.bitsquatting": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:bitsquatting&redirect=true",
+  "server_security_misconfiguration.cache_poisoning": null,
+  "server_security_misconfiguration.captcha": null,
+  "server_security_misconfiguration.captcha.brute_force": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:captcha:brute_force&redirect=true",
+  "server_security_misconfiguration.captcha.implementation_vulnerability": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:captcha:implementation_vulnerability&redirect=true",
+  "server_security_misconfiguration.captcha.missing": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:captcha:missing&redirect=true",
+  "server_security_misconfiguration.clickjacking": null,
+  "server_security_misconfiguration.clickjacking.form_input": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:clickjacking:form_input&redirect=true",
+  "server_security_misconfiguration.clickjacking.non_sensitive_action": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:clickjacking:non_sensitive_action&redirect=true",
+  "server_security_misconfiguration.clickjacking.sensitive_action": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:clickjacking:sensitive_action&redirect=true",
+  "server_security_misconfiguration.cookie_scoped_to_parent_domain": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:cookie_scoped_to_parent_domain&redirect=true",
+  "server_security_misconfiguration.dbms_misconfiguration": null,
+  "server_security_misconfiguration.dbms_misconfiguration.excessively_privileged_user_dba": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:dbms_misconfiguration:excessively_privileged_user_dba&redirect=true",
+  "server_security_misconfiguration.directory_listing_enabled": null,
+  "server_security_misconfiguration.directory_listing_enabled.non_sensitive_data_exposure": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:directory_listing_enabled:non_sensitive_data_exposure&redirect=true",
+  "server_security_misconfiguration.directory_listing_enabled.sensitive_data_exposure": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:directory_listing_enabled:sensitive_data_exposure&redirect=true",
+  "server_security_misconfiguration.email_verification_bypass": null,
+  "server_security_misconfiguration.exposed_admin_portal": null,
+  "server_security_misconfiguration.exposed_admin_portal.to_internet": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:exposed_admin_portal:to_internet&redirect=true",
+  "server_security_misconfiguration.fingerprinting_banner_disclosure": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:fingerprinting_banner_disclosure&redirect=true",
+  "server_security_misconfiguration.insecure_ssl": null,
+  "server_security_misconfiguration.insecure_ssl.certificate_error": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:insecure_ssl:certificate_error&redirect=true",
+  "server_security_misconfiguration.insecure_ssl.insecure_cipher_suite": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:insecure_ssl:insecure_cipher_suite&redirect=true",
+  "server_security_misconfiguration.insecure_ssl.lack_of_forward_secrecy": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:insecure_ssl:lack_of_forward_secrecy&redirect=true",
+  "server_security_misconfiguration.lack_of_password_confirmation": null,
+  "server_security_misconfiguration.lack_of_password_confirmation.change_email_address": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_password_confirmation:change_email_address&redirect=true",
+  "server_security_misconfiguration.lack_of_password_confirmation.change_password": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_password_confirmation:change_password&redirect=true",
+  "server_security_misconfiguration.lack_of_password_confirmation.delete_account": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_password_confirmation:delete_account&redirect=true",
+  "server_security_misconfiguration.lack_of_password_confirmation.manage_two_fa": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_password_confirmation:manage_two_fa&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers": null,
+  "server_security_misconfiguration.lack_of_security_headers.cache_control_for_a_non_sensitive_page": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:cache_control_for_a_non_sensitive_page&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.cache_control_for_a_sensitive_page": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:cache_control_for_a_sensitive_page&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.content_security_policy": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:content_security_policy&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.content_security_policy_report_only": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:content_security_policy_report_only&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.public_key_pins": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:public_key_pins&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.strict_transport_security": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:strict_transport_security&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.x_content_security_policy": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:x_content_security_policy&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.x_content_type_options": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:x_content_type_options&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.x_frame_options": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:x_frame_options&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.x_webkit_csp": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:x_webkit_csp&redirect=true",
+  "server_security_misconfiguration.lack_of_security_headers.x_xss_protection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:lack_of_security_headers:x_xss_protection&redirect=true",
+  "server_security_misconfiguration.mail_server_misconfiguration": null,
+  "server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_on_non_email_domain": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:mail_server_misconfiguration:email_spoofing_on_non_email_domain&redirect=true",
+  "server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_to_inbox_due_to_missing_or_misconfigured_dmarc_on_email_domain": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:mail_server_misconfiguration:email_spoofing_to_inbox_due_to_missing_or_misconfigured_dmarc_on_email_domain&redirect=true",
+  "server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_to_spam_folder": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:mail_server_misconfiguration:email_spoofing_to_spam_folder&redirect=true",
+  "server_security_misconfiguration.mail_server_misconfiguration.missing_or_misconfigured_spf_and_or_dkim": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:mail_server_misconfiguration:missing_or_misconfigured_spf_and_or_dkim&redirect=true",
+  "server_security_misconfiguration.mail_server_misconfiguration.no_spoofing_protection_on_email_domain": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:mail_server_misconfiguration:no_spoofing_protection_on_email_domain&redirect=true",
+  "server_security_misconfiguration.misconfigured_dns": null,
+  "server_security_misconfiguration.misconfigured_dns.missing_caa_record": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:misconfigured_dns:missing_caa_record&redirect=true",
+  "server_security_misconfiguration.misconfigured_dns.subdomain_takeover": null,
+  "server_security_misconfiguration.misconfigured_dns.zone_transfer": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:misconfigured_dns:zone_transfer&redirect=true",
+  "server_security_misconfiguration.missing_dnssec": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:missing_dnssec&redirect=true",
+  "server_security_misconfiguration.missing_secure_or_httponly_cookie_flag": null,
+  "server_security_misconfiguration.missing_secure_or_httponly_cookie_flag.non_session_cookie": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:missing_secure_or_httponly_cookie_flag:non_session_cookie&redirect=true",
+  "server_security_misconfiguration.missing_secure_or_httponly_cookie_flag.session_token": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:missing_secure_or_httponly_cookie_flag:session_token&redirect=true",
+  "server_security_misconfiguration.missing_subresource_integrity": null,
+  "server_security_misconfiguration.no_rate_limiting_on_form": null,
+  "server_security_misconfiguration.no_rate_limiting_on_form.change_password": null,
+  "server_security_misconfiguration.no_rate_limiting_on_form.email_triggering": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:no_rate_limiting_on_form:email_triggering&redirect=true",
+  "server_security_misconfiguration.no_rate_limiting_on_form.login": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:no_rate_limiting_on_form:login&redirect=true",
+  "server_security_misconfiguration.no_rate_limiting_on_form.registration": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:no_rate_limiting_on_form:registration&redirect=true",
+  "server_security_misconfiguration.no_rate_limiting_on_form.sms_triggering": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:no_rate_limiting_on_form:sms_triggering&redirect=true",
+  "server_security_misconfiguration.oauth_misconfiguration": null,
+  "server_security_misconfiguration.oauth_misconfiguration.account_squatting": null,
+  "server_security_misconfiguration.oauth_misconfiguration.account_takeover": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:oauth_misconfiguration:account_takeover&redirect=true",
+  "server_security_misconfiguration.oauth_misconfiguration.insecure_redirect_uri": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:oauth_misconfiguration:insecure_redirect_uri&redirect=true",
+  "server_security_misconfiguration.oauth_misconfiguration.missing_state_parameter": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:oauth_misconfiguration:missing_state_parameter&redirect=true",
+  "server_security_misconfiguration.path_traversal": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:path_traversal&redirect=true",
+  "server_security_misconfiguration.potentially_unsafe_http_method_enabled": null,
+  "server_security_misconfiguration.potentially_unsafe_http_method_enabled.options": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:potentially_unsafe_http_method_enabled:options&redirect=true",
+  "server_security_misconfiguration.potentially_unsafe_http_method_enabled.trace": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:potentially_unsafe_http_method_enabled:trace&redirect=true",
+  "server_security_misconfiguration.race_condition": null,
+  "server_security_misconfiguration.request_smuggling": null,
+  "server_security_misconfiguration.rfd": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:rfd&redirect=true",
+  "server_security_misconfiguration.same_site_scripting": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:same_site_scripting&redirect=true",
+  "server_security_misconfiguration.server_side_request_forgery_ssrf": null,
+  "server_security_misconfiguration.server_side_request_forgery_ssrf.external_dns_query_only": null,
+  "server_security_misconfiguration.server_side_request_forgery_ssrf.external_low_impact": null,
+  "server_security_misconfiguration.server_side_request_forgery_ssrf.internal_high_impact": null,
+  "server_security_misconfiguration.server_side_request_forgery_ssrf.internal_scan_and_or_medium_impact": null,
+  "server_security_misconfiguration.software_package_takeover": null,
+  "server_security_misconfiguration.ssl_attack_breach_poodle_etc": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:ssl_attack_breach_poodle_etc&redirect=true",
+  "server_security_misconfiguration.unsafe_cross_origin_resource_sharing": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:unsafe_cross_origin_resource_sharing&redirect=true",
+  "server_security_misconfiguration.unsafe_file_upload": null,
+  "server_security_misconfiguration.unsafe_file_upload.file_extension_filter_bypass": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:unsafe_file_upload:file_extension_filter_bypass&redirect=true",
+  "server_security_misconfiguration.unsafe_file_upload.no_antivirus": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:unsafe_file_upload:no_antivirus&redirect=true",
+  "server_security_misconfiguration.unsafe_file_upload.no_size_limit": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:unsafe_file_upload:no_size_limit&redirect=true",
+  "server_security_misconfiguration.username_enumeration": null,
+  "server_security_misconfiguration.username_enumeration.brute_force": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:username_enumeration:brute_force&redirect=true",
+  "server_security_misconfiguration.using_default_credentials": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:using_default_credentials&redirect=true",
+  "server_security_misconfiguration.waf_bypass": null,
+  "server_security_misconfiguration.waf_bypass.direct_server_access": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:waf_bypass:direct_server_access&redirect=true",
+  "server_side_injection": null,
+  "server_side_injection.content_spoofing": null,
+  "server_side_injection.content_spoofing.email_html_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:email_html_injection&redirect=true",
+  "server_side_injection.content_spoofing.email_hyperlink_injection_based_on_email_provider": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:email_hyperlink_injection_based_on_email_provider&redirect=true",
+  "server_side_injection.content_spoofing.external_authentication_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:external_authentication_injection&redirect=true",
+  "server_side_injection.content_spoofing.flash_based_external_authentication_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:flash_based_external_authentication_injection&redirect=true",
+  "server_side_injection.content_spoofing.homograph_idn_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:homograph_idn_based&redirect=true",
+  "server_side_injection.content_spoofing.html_content_injection": null,
+  "server_side_injection.content_spoofing.iframe_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:iframe_injection&redirect=true",
+  "server_side_injection.content_spoofing.impersonation_via_broken_link_hijacking": null,
+  "server_side_injection.content_spoofing.rtlo": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:rtlo&redirect=true",
+  "server_side_injection.content_spoofing.text_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:content_spoofing:text_injection&redirect=true",
+  "server_side_injection.file_inclusion": null,
+  "server_side_injection.file_inclusion.local": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:file_inclusion:local&redirect=true",
+  "server_side_injection.http_response_manipulation": null,
+  "server_side_injection.http_response_manipulation.response_splitting_crlf": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:http_response_manipulation:response_splitting_crlf&redirect=true",
+  "server_side_injection.ldap_injection": null,
+  "server_side_injection.parameter_pollution": null,
+  "server_side_injection.parameter_pollution.social_media_sharing_buttons": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:parameter_pollution:social_media_sharing_buttons&redirect=true",
+  "server_side_injection.remote_code_execution_rce": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:remote_code_execution_rce&redirect=true",
+  "server_side_injection.sql_injection": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:sql_injection&redirect=true",
+  "server_side_injection.ssti": null,
+  "server_side_injection.ssti.basic": null,
+  "server_side_injection.ssti.custom": null,
+  "server_side_injection.xml_external_entity_injection_xxe": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_side_injection:xml_external_entity_injection_xxe&redirect=true",
+  "smart_contract_misconfiguration": null,
+  "smart_contract_misconfiguration.bypass_of_function_modifiers_and_checks": null,
+  "smart_contract_misconfiguration.function_level_denial_of_service": null,
+  "smart_contract_misconfiguration.improper_decimals_implementation": null,
+  "smart_contract_misconfiguration.improper_fee_implementation": null,
+  "smart_contract_misconfiguration.improper_use_of_modifier": null,
+  "smart_contract_misconfiguration.inaccurate_rounding_calculation": null,
+  "smart_contract_misconfiguration.integer_overflow_underflow": null,
+  "smart_contract_misconfiguration.irreversible_function_call": null,
+  "smart_contract_misconfiguration.malicious_superuser_risk": null,
+  "smart_contract_misconfiguration.reentrancy_attack": null,
+  "smart_contract_misconfiguration.smart_contract_owner_takeover": null,
+  "smart_contract_misconfiguration.unauthorized_smart_contract_approval": null,
+  "smart_contract_misconfiguration.unauthorized_transfer_of_funds": null,
+  "smart_contract_misconfiguration.uninitialized_variables": null,
+  "societal_biases": null,
+  "societal_biases.confirmation_bias": null,
+  "societal_biases.systemic_bias": null,
+  "unvalidated_redirects_and_forwards": null,
+  "unvalidated_redirects_and_forwards.lack_of_security_speed_bump_page": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:lack_of_security_speed_bump_page&redirect=true",
+  "unvalidated_redirects_and_forwards.open_redirect": null,
+  "unvalidated_redirects_and_forwards.open_redirect.flash_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:open_redirect:flash_based&redirect=true",
+  "unvalidated_redirects_and_forwards.open_redirect.get_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:open_redirect:get_based&redirect=true",
+  "unvalidated_redirects_and_forwards.open_redirect.header_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:open_redirect:header_based&redirect=true",
+  "unvalidated_redirects_and_forwards.open_redirect.post_based": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:open_redirect:post_based&redirect=true",
+  "unvalidated_redirects_and_forwards.tabnabbing": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=unvalidated_redirects_and_forwards:tabnabbing&redirect=true",
+  "using_components_with_known_vulnerabilities": null,
+  "using_components_with_known_vulnerabilities.captcha_bypass": null,
+  "using_components_with_known_vulnerabilities.captcha_bypass.ocr_optical_character_recognition": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=using_components_with_known_vulnerabilities:captcha_bypass:ocr_optical_character_recognition&redirect=true",
+  "using_components_with_known_vulnerabilities.outdated_software_version": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=using_components_with_known_vulnerabilities:outdated_software_version&redirect=true",
+  "using_components_with_known_vulnerabilities.rosetta_flash": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=using_components_with_known_vulnerabilities:rosetta_flash&redirect=true",
+  "zero_knowledge_security_misconfiguration": null,
+  "zero_knowledge_security_misconfiguration.deanonymization_of_data": null,
+  "zero_knowledge_security_misconfiguration.improper_proof_validation_and_finalization_logic": null,
+  "zero_knowledge_security_misconfiguration.misconfigured_trusted_setup": null,
+  "zero_knowledge_security_misconfiguration.mismatching_bit_lengths": null,
+  "zero_knowledge_security_misconfiguration.missing_constraint": null,
+  "zero_knowledge_security_misconfiguration.missing_range_check": null
 }
\ No newline at end of file
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index ed39afe3..993e0057 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -4,1123 +4,1376 @@
   },
   "content": [
     {
-      "id": "server_security_misconfiguration",
-      "name": "Server Security Misconfiguration",
+      "id": "ai_application_security",
+      "name": "AI Application Security",
       "type": "category",
       "children": [
         {
-          "id": "server_side_request_forgery_ssrf",
-          "name": "Server-Side Request Forgery (SSRF)",
+          "id": "llm_security",
+          "name": "Large Language Model (LLM) Security",
           "type": "subcategory",
           "children": [
             {
-              "id": "internal_high_impact",
-              "name": "Internal High Impact",
+              "id": "excessive_agency_permission_manipulation",
+              "name": "Excessive Agency/Permission Manipulation",
               "type": "variant",
               "priority": 2
             },
             {
-              "id": "internal_scan_and_or_medium_impact",
-              "name": "Internal Scan and/or Medium Impact",
+              "id": "llm_output_handling",
+              "name": "LLM Output Handling",
               "type": "variant",
-              "priority": 3
+              "priority": 1
             },
             {
-              "id": "external_low_impact",
-              "name": "External - Low impact",
+              "id": "prompt_injection",
+              "name": "Prompt Injection",
               "type": "variant",
-              "priority": 5
+              "priority": 1
             },
             {
-              "id": "external_dns_query_only",
-              "name": "External - DNS Query Only",
+              "id": "training_data_poisoning",
+              "name": "Training Data Poisoning",
               "type": "variant",
-              "priority": 5
+              "priority": 1
             }
           ]
-        },
-        {
-          "id": "unsafe_cross_origin_resource_sharing",
-          "name": "Unsafe Cross-Origin Resource Sharing",
-          "type": "subcategory",
-          "priority": null
-        },
+        }
+      ]
+    },
+    {
+      "id": "algorithmic_biases",
+      "name": "Algorithmic Biases",
+      "type": "category",
+      "children": [
         {
-          "id": "request_smuggling",
-          "name": "HTTP Request Smuggling",
+          "id": "aggregation_bias",
+          "name": "Aggregation Bias",
           "type": "subcategory",
           "priority": null
         },
         {
-          "id": "path_traversal",
-          "name": "Path Traversal",
+          "id": "processing_bias",
+          "name": "Processing Bias",
           "type": "subcategory",
           "priority": null
-        },
+        }
+      ]
+    },
+    {
+      "id": "application_level_denial_of_service_dos",
+      "name": "Application-Level Denial-of-Service (DoS)",
+      "type": "category",
+      "children": [
         {
-          "id": "directory_listing_enabled",
-          "name": "Directory Listing Enabled",
+          "id": "app_crash",
+          "name": "App Crash",
           "type": "subcategory",
           "children": [
             {
-              "id": "sensitive_data_exposure",
-              "name": "Sensitive Data Exposure",
+              "id": "malformed_android_intents",
+              "name": "Malformed Android Intents",
               "type": "variant",
-              "priority": null
+              "priority": 5
             },
             {
-              "id": "non_sensitive_data_exposure",
-              "name": "Non-Sensitive Data Exposure",
+              "id": "malformed_ios_url_schemes",
+              "name": "Malformed iOS URL Schemes",
               "type": "variant",
               "priority": 5
             }
           ]
         },
         {
-          "id": "same_site_scripting",
-          "name": "Same-Site Scripting",
+          "id": "critical_impact_and_or_easy_difficulty",
+          "name": "Critical Impact and/or Easy Difficulty",
           "type": "subcategory",
-          "priority": 5
+          "priority": 2
         },
         {
-          "id": "ssl_attack_breach_poodle_etc",
-          "name": "SSL Attack (BREACH, POODLE etc.)",
+          "id": "excessive_resource_consumption",
+          "name": "Excessive Resource Consumption",
           "type": "subcategory",
-          "priority": null
+          "children": [
+            {
+              "id": "injection_prompt",
+              "name": "Injection (Prompt)",
+              "type": "variant",
+              "priority": null
+            }
+          ]
         },
         {
-          "id": "using_default_credentials",
-          "name": "Using Default Credentials",
+          "id": "high_impact_and_or_medium_difficulty",
+          "name": "High Impact and/or Medium Difficulty",
           "type": "subcategory",
-          "priority": 1
-        },
+          "priority": 3
+        }
+      ]
+    },
+    {
+      "id": "automotive_security_misconfiguration",
+      "name": "Automotive Security Misconfiguration",
+      "type": "category",
+      "children": [
         {
-          "id": "misconfigured_dns",
-          "name": "Misconfigured DNS",
+          "id": "abs",
+          "name": "Automatic Braking System (ABS)",
           "type": "subcategory",
           "children": [
             {
-              "id": "subdomain_takeover",
-              "name": "Subdomain Takeover",
+              "id": "unintended_acceleration_brake",
+              "name": "Unintended Acceleration / Brake",
               "type": "variant",
               "priority": 3
-            },
+            }
+          ]
+        },
+        {
+          "id": "battery_management_system",
+          "name": "Battery Management System",
+          "type": "subcategory",
+          "children": [
             {
-              "id": "zone_transfer",
-              "name": "Zone Transfer",
+              "id": "firmware_dump",
+              "name": "Firmware Dump",
               "type": "variant",
-              "priority": 4
+              "priority": 3
             },
             {
-              "id": "missing_caa_record",
-              "name": "Missing Certification Authority Authorization (CAA) Record",
+              "id": "fraudulent_interface",
+              "name": "Fraudulent Interface",
               "type": "variant",
-              "priority": 5
+              "priority": 4
             }
           ]
         },
         {
-          "id": "mail_server_misconfiguration",
-          "name": "Mail Server Misconfiguration",
+          "id": "can",
+          "name": "CAN",
           "type": "subcategory",
           "children": [
             {
-              "id": "no_spoofing_protection_on_email_domain",
-              "name": "No Spoofing Protection on Email Domain",
+              "id": "injection_basic_safety_message",
+              "name": "Injection (Basic Safety Message)",
               "type": "variant",
               "priority": 3
             },
             {
-              "id": "email_spoofing_to_inbox_due_to_missing_or_misconfigured_dmarc_on_email_domain",
-              "name": "Email Spoofing to Inbox due to Missing or Misconfigured DMARC on Email Domain",
+              "id": "injection_battery_management_system",
+              "name": "Injection (Battery Management System)",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "injection_disallowed_messages",
+              "name": "Injection (Disallowed Messages)",
               "type": "variant",
               "priority": 4
             },
             {
-              "id": "email_spoofing_to_spam_folder",
-              "name": "Email Spoofing to Spam Folder",
+              "id": "injection_dos",
+              "name": "Injection (DoS)",
               "type": "variant",
-              "priority": 5
+              "priority": 4
             },
             {
-              "id": "missing_or_misconfigured_spf_and_or_dkim",
-              "name": "Missing or Misconfigured SPF and/or DKIM",
+              "id": "injection_headlights",
+              "name": "Injection (Headlights)",
               "type": "variant",
-              "priority": 5
+              "priority": 3
             },
             {
-              "id": "email_spoofing_on_non_email_domain",
-              "name": "Email Spoofing on Non-Email Domain",
+              "id": "injection_powertrain",
+              "name": "Injection (Powertrain)",
               "type": "variant",
-              "priority": 5
+              "priority": 3
+            },
+            {
+              "id": "injection_pyrotechnical_device_deployment_tool",
+              "name": "Injection (Pyrotechnical Device Deployment Tool)",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "injection_sensors",
+              "name": "Injection (Sensors)",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "injection_steering_control",
+              "name": "Injection (Steering Control)",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "injection_vehicle_anti_theft_systems",
+              "name": "Injection (Vehicle Anti-theft Systems)",
+              "type": "variant",
+              "priority": 3
             }
           ]
         },
         {
-          "id": "dbms_misconfiguration",
-          "name": "Database Management System (DBMS) Misconfiguration",
+          "id": "gnss_gps",
+          "name": "GNSS / GPS",
           "type": "subcategory",
           "children": [
             {
-              "id": "excessively_privileged_user_dba",
-              "name": "Excessively Privileged User / DBA",
+              "id": "spoofing",
+              "name": "Spoofing",
               "type": "variant",
               "priority": 4
             }
           ]
         },
         {
-          "id": "lack_of_password_confirmation",
-          "name": "Lack of Password Confirmation",
+          "id": "immobilizer",
+          "name": "Immobilizer",
           "type": "subcategory",
           "children": [
             {
-              "id": "change_email_address",
-              "name": "Change Email Address",
-              "type": "variant",
-              "priority": 5
-            },
-            {
-              "id": "change_password",
-              "name": "Change Password",
-              "type": "variant",
-              "priority": 5
-            },
-            {
-              "id": "delete_account",
-              "name": "Delete Account",
-              "type": "variant",
-              "priority": 4
-            },
-            {
-              "id": "manage_two_fa",
-              "name": "Manage 2FA",
+              "id": "engine_start",
+              "name": "Engine Start",
               "type": "variant",
-              "priority": 5
+              "priority": 3
             }
           ]
         },
         {
-          "id": "no_rate_limiting_on_form",
-          "name": "No Rate Limiting on Form",
+          "id": "infotainment_radio_head_unit",
+          "name": "Infotainment, Radio Head Unit",
           "type": "subcategory",
           "children": [
             {
-              "id": "registration",
-              "name": "Registration",
+              "id": "code_execution_can_bus_pivot",
+              "name": "Code Execution (CAN Bus Pivot)",
               "type": "variant",
-              "priority": 4
+              "priority": 2
             },
             {
-              "id": "login",
-              "name": "Login",
+              "id": "code_execution_no_can_bus_pivot",
+              "name": "Code Execution (No CAN Bus Pivot)",
               "type": "variant",
-              "priority": 4
+              "priority": 3
             },
             {
-              "id": "email_triggering",
-              "name": "Email-Triggering",
+              "id": "default_credentials",
+              "name": "Default Credentials",
               "type": "variant",
               "priority": 4
             },
             {
-              "id": "sms_triggering",
-              "name": "SMS-Triggering",
+              "id": "dos_brick",
+              "name": "Denial of Service (DoS / Brick)",
               "type": "variant",
               "priority": 4
             },
             {
-              "id": "change_password",
-              "name": "Change Password",
+              "id": "ota_firmware_manipulation",
+              "name": "OTA Firmware Manipulation",
               "type": "variant",
-              "priority": 5
-            }
-          ]
-        },
-        {
-          "id": "unsafe_file_upload",
-          "name": "Unsafe File Upload",
-          "type": "subcategory",
-          "children": [
+              "priority": 2
+            },
             {
-              "id": "no_antivirus",
-              "name": "No Antivirus",
+              "id": "sensitive_data_leakage_exposure",
+              "name": "Sensitive data Leakage/Exposure",
               "type": "variant",
-              "priority": 5
+              "priority": 1
             },
             {
-              "id": "no_size_limit",
-              "name": "No Size Limit",
+              "id": "source_code_dump",
+              "name": "Source Code Dump",
               "type": "variant",
-              "priority": 5
+              "priority": 4
             },
             {
-              "id": "file_extension_filter_bypass",
-              "name": "File Extension Filter Bypass",
+              "id": "unauthorized_access_to_services",
+              "name": "Unauthorized Access to Services (API / Endpoints)",
               "type": "variant",
-              "priority": 5
+              "priority": 3
             }
           ]
         },
         {
-          "id": "cookie_scoped_to_parent_domain",
-          "name": "Cookie Scoped to Parent Domain",
-          "type": "subcategory",
-          "priority": 5
-        },
-        {
-          "id": "missing_secure_or_httponly_cookie_flag",
-          "name": "Missing Secure or HTTPOnly Cookie Flag",
+          "id": "rf_hub",
+          "name": "RF Hub",
           "type": "subcategory",
           "children": [
             {
-              "id": "session_token",
-              "name": "Session Token",
+              "id": "can_injection_interaction",
+              "name": "CAN Injection / Interaction",
               "type": "variant",
-              "priority": 4
+              "priority": 2
             },
             {
-              "id": "non_session_cookie",
-              "name": "Non-Session Cookie",
+              "id": "data_leakage_pull_encryption_mechanism",
+              "name": "Data Leakage / Pull Encryption Mechanism",
               "type": "variant",
-              "priority": 5
-            }
-          ]
-        },
-        {
-          "id": "clickjacking",
-          "name": "Clickjacking",
-          "type": "subcategory",
-          "children": [
+              "priority": 3
+            },
             {
-              "id": "sensitive_action",
-              "name": "Sensitive Click-Based Action",
+              "id": "key_fob_cloning",
+              "name": "Key Fob Cloning",
               "type": "variant",
-              "priority": 4
+              "priority": 1
             },
             {
-              "id": "form_input",
-              "name": "Form Input",
+              "id": "relay",
+              "name": "Relay",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "non_sensitive_action",
-              "name": "Non-Sensitive Action",
+              "id": "replay",
+              "name": "Replay",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "roll_jam",
+              "name": "Roll Jam",
               "type": "variant",
               "priority": 5
+            },
+            {
+              "id": "unauthorized_access_turn_on",
+              "name": "Unauthorized Access / Turn On",
+              "type": "variant",
+              "priority": 4
             }
           ]
         },
         {
-          "id": "oauth_misconfiguration",
-          "name": "OAuth Misconfiguration",
+          "id": "rsu",
+          "name": "Roadside Unit (RSU)",
           "type": "subcategory",
           "children": [
             {
-              "id": "account_takeover",
-              "name": "Account Takeover",
-              "type": "variant",
-              "priority": 2
-            },
-            {
-              "id": "account_squatting",
-              "name": "Account Squatting",
+              "id": "sybil_attack",
+              "name": "Sybil Attack",
               "type": "variant",
               "priority": 4
-            },
-            {
-              "id": "missing_state_parameter",
-              "name": "Missing/Broken State Parameter",
-              "type": "variant",
-              "priority": null
-            },
-            {
-              "id": "insecure_redirect_uri",
-              "name": "Insecure Redirect URI",
-              "type": "variant",
-              "priority": null
             }
           ]
+        }
+      ]
+    },
+    {
+      "id": "blockchain_infrastructure_misconfiguration",
+      "name": "Blockchain Infrastructure Misconfiguration",
+      "type": "category",
+      "children": [
+        {
+          "id": "improper_bridge_validation_and_verification_logic",
+          "name": "Improper Bridge Validation and Verification Logic",
+          "type": "subcategory",
+          "priority": null
+        }
+      ]
+    },
+    {
+      "id": "broken_access_control",
+      "name": "Broken Access Control (BAC)",
+      "type": "category",
+      "children": [
+        {
+          "id": "exposed_sensitive_android_intent",
+          "name": "Exposed Sensitive Android Intent",
+          "type": "subcategory",
+          "priority": null
         },
         {
-          "id": "captcha",
-          "name": "CAPTCHA",
+          "id": "exposed_sensitive_ios_url_scheme",
+          "name": "Exposed Sensitive iOS URL Scheme",
+          "type": "subcategory",
+          "priority": null
+        },
+        {
+          "id": "idor",
+          "name": "Insecure Direct Object References (IDOR)",
           "type": "subcategory",
           "children": [
             {
-              "id": "implementation_vulnerability",
-              "name": "Implementation Vulnerability",
+              "id": "edit_delete_sensitive_information_iterable_object_identifiers",
+              "name": "Edit/Delete Sensitive Information/Iterable Object Identifiers",
               "type": "variant",
-              "priority": 4
+              "priority": 2
             },
             {
-              "id": "brute_force",
-              "name": "Brute Force",
+              "id": "read_edit_delete_non_sensitive_information",
+              "name": "Read/Edit/Delete Non-Sensitive Information",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "missing",
-              "name": "Missing",
+              "id": "read_edit_delete_sensitive_information_guid",
+              "name": "Read/Edit/Delete Sensitive Information/Complex Object Identifiers(GUID)",
               "type": "variant",
-              "priority": 5
+              "priority": 4
+            },
+            {
+              "id": "read_edit_delete_sensitive_information_iterable_object_identifiers",
+              "name": "Read/Edit/Delete Sensitive Information/Iterable Object Identifiers",
+              "type": "variant",
+              "priority": 1
+            },
+            {
+              "id": "read_sensitive_information_iterable_object_identifiers",
+              "name": "Read Sensitive Information/Iterable Object Identifiers",
+              "type": "variant",
+              "priority": 3
             }
           ]
         },
         {
-          "id": "exposed_admin_portal",
-          "name": "Exposed Admin Portal",
+          "id": "privilege_escalation",
+          "name": "Privilege Escalation",
+          "type": "subcategory",
+          "priority": null
+        },
+        {
+          "id": "username_enumeration",
+          "name": "Username/Email Enumeration",
           "type": "subcategory",
           "children": [
             {
-              "id": "to_internet",
-              "name": "To Internet",
+              "id": "non_brute_force",
+              "name": "Non-Brute Force",
               "type": "variant",
-              "priority": 5
+              "priority": 4
             }
           ]
-        },
+        }
+      ]
+    },
+    {
+      "id": "broken_authentication_and_session_management",
+      "name": "Broken Authentication and Session Management",
+      "type": "category",
+      "children": [
         {
-          "id": "missing_dnssec",
-          "name": "Missing DNSSEC",
+          "id": "authentication_bypass",
+          "name": "Authentication Bypass",
           "type": "subcategory",
-          "priority": 5
+          "priority": 1
         },
         {
-          "id": "fingerprinting_banner_disclosure",
-          "name": "Fingerprinting/Banner Disclosure",
+          "id": "cleartext_transmission_of_session_token",
+          "name": "Cleartext Transmission of Session Token",
           "type": "subcategory",
-          "priority": 5
+          "priority": 4
         },
         {
-          "id": "username_enumeration",
-          "name": "Username/Email Enumeration",
+          "id": "concurrent_logins",
+          "name": "Concurrent Logins",
           "type": "subcategory",
-          "children": [
-            {
-              "id": "brute_force",
-              "name": "Brute Force",
-              "type": "variant",
-              "priority": 5
-            }
-          ]
+          "priority": 5
         },
         {
-          "id": "potentially_unsafe_http_method_enabled",
-          "name": "Potentially Unsafe HTTP Method Enabled",
+          "id": "failure_to_invalidate_session",
+          "name": "Failure to Invalidate Session",
           "type": "subcategory",
           "children": [
             {
-              "id": "options",
-              "name": "OPTIONS",
+              "id": "all_sessions",
+              "name": "Concurrent Sessions On Logout",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "trace",
-              "name": "TRACE",
+              "id": "long_timeout",
+              "name": "Long Timeout",
               "type": "variant",
               "priority": 5
-            }
-          ]
-        },
-        {
-          "id": "insecure_ssl",
-          "name": "Insecure SSL",
-          "type": "subcategory",
-          "children": [
+            },
             {
-              "id": "lack_of_forward_secrecy",
-              "name": "Lack of Forward Secrecy",
+              "id": "on_email_change",
+              "name": "On Email Change",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "insecure_cipher_suite",
-              "name": "Insecure Cipher Suite",
+              "id": "on_logout",
+              "name": "On Logout (Client and Server-Side)",
               "type": "variant",
-              "priority": 5
+              "priority": 4
             },
             {
-              "id": "certificate_error",
-              "name": "Certificate Error",
+              "id": "on_logout_server_side_only",
+              "name": "On Logout (Server-Side Only)",
               "type": "variant",
               "priority": 5
-            }
-          ]
-        },
-        {
-          "id": "rfd",
-          "name": "Reflected File Download (RFD)",
-          "type": "subcategory",
-          "priority": 5
-        },
-        {
-          "id": "lack_of_security_headers",
-          "name": "Lack of Security Headers",
-          "type": "subcategory",
-          "children": [
+            },
             {
-              "id": "x_frame_options",
-              "name": "X-Frame-Options",
+              "id": "on_password_change",
+              "name": "On Password Reset and/or Change",
               "type": "variant",
-              "priority": 5
+              "priority": 4
             },
             {
-              "id": "cache_control_for_a_non_sensitive_page",
-              "name": "Cache-Control for a Non-Sensitive Page",
+              "id": "on_two_fa_activation_change",
+              "name": "On 2FA Activation/Change",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "x_xss_protection",
-              "name": "X-XSS-Protection",
+              "id": "permission_change",
+              "name": "On Permission Change",
               "type": "variant",
-              "priority": 5
-            },
+              "priority": null
+            }
+          ]
+        },
+        {
+          "id": "session_fixation",
+          "name": "Session Fixation",
+          "type": "subcategory",
+          "children": [
             {
-              "id": "strict_transport_security",
-              "name": "Strict-Transport-Security",
+              "id": "local_attack_vector",
+              "name": "Local Attack Vector",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "x_content_type_options",
-              "name": "X-Content-Type-Options",
+              "id": "remote_attack_vector",
+              "name": "Remote Attack Vector",
               "type": "variant",
-              "priority": 5
-            },
+              "priority": 3
+            }
+          ]
+        },
+        {
+          "id": "two_fa_bypass",
+          "name": "Second Factor Authentication (2FA) Bypass",
+          "type": "subcategory",
+          "priority": 3
+        },
+        {
+          "id": "weak_login_function",
+          "name": "Weak Login Function",
+          "type": "subcategory",
+          "children": [
             {
-              "id": "content_security_policy",
-              "name": "Content-Security-Policy",
+              "id": "not_operational",
+              "name": "Not Operational or Intended Public Access",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "public_key_pins",
-              "name": "Public-Key-Pins",
+              "id": "other_plaintext_protocol_no_secure_alternative",
+              "name": "Other Plaintext Protocol with no Secure Alternative",
               "type": "variant",
-              "priority": 5
+              "priority": 4
             },
             {
-              "id": "x_content_security_policy",
-              "name": "X-Content-Security-Policy",
+              "id": "over_http",
+              "name": "Over HTTP",
               "type": "variant",
-              "priority": 5
-            },
+              "priority": 4
+            }
+          ]
+        },
+        {
+          "id": "weak_registration_implementation",
+          "name": "Weak Registration Implementation",
+          "type": "subcategory",
+          "children": [
             {
-              "id": "x_webkit_csp",
-              "name": "X-Webkit-CSP",
+              "id": "over_http",
+              "name": "Over HTTP",
+              "type": "variant",
+              "priority": 4
+            }
+          ]
+        }
+      ]
+    },
+    {
+      "id": "client_side_injection",
+      "name": "Client-Side Injection",
+      "type": "category",
+      "children": [
+        {
+          "id": "binary_planting",
+          "name": "Binary Planting",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "no_privilege_escalation",
+              "name": "No Privilege Escalation",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "content_security_policy_report_only",
-              "name": "Content-Security-Policy-Report-Only",
+              "id": "non_default_folder_privilege_escalation",
+              "name": "Non-Default Folder Privilege Escalation",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "cache_control_for_a_sensitive_page",
-              "name": "Cache-Control for a Sensitive Page",
+              "id": "privilege_escalation",
+              "name": "Default Folder Privilege Escalation",
               "type": "variant",
-              "priority": 4
+              "priority": 3
             }
           ]
-        },
+        }
+      ]
+    },
+    {
+      "id": "cross_site_request_forgery_csrf",
+      "name": "Cross-Site Request Forgery (CSRF)",
+      "type": "category",
+      "children": [
         {
-          "id": "waf_bypass",
-          "name": "Web Application Firewall (WAF) Bypass",
+          "id": "action_specific",
+          "name": "Action-Specific",
           "type": "subcategory",
           "children": [
             {
-              "id": "direct_server_access",
-              "name": "Direct Server Access",
+              "id": "authenticated_action",
+              "name": "Authenticated Action",
               "type": "variant",
-              "priority": 4
+              "priority": null
+            },
+            {
+              "id": "logout",
+              "name": "Logout",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "unauthenticated_action",
+              "name": "Unauthenticated Action",
+              "type": "variant",
+              "priority": null
             }
           ]
         },
         {
-          "id": "race_condition",
-          "name": "Race Condition",
+          "id": "application_wide",
+          "name": "Application-Wide",
           "type": "subcategory",
-          "priority": null
+          "priority": 2
         },
         {
-          "id": "email_verification_bypass",
-          "name": "Email Verification Bypass",
+          "id": "csrf_token_not_unique_per_request",
+          "name": "CSRF Token Not Unique Per Request",
           "type": "subcategory",
           "priority": 5
         },
         {
-          "id": "missing_subresource_integrity",
-          "name": "Missing Subresource Integrity",
+          "id": "flash_based",
+          "name": "Flash-Based",
           "type": "subcategory",
           "priority": 5
-        },      
+        }
+      ]
+    },
+    {
+      "id": "cross_site_scripting_xss",
+      "name": "Cross-Site Scripting (XSS)",
+      "type": "category",
+      "children": [
         {
-          "id": "software_package_takeover",
-          "name": "Software Package Takeover",
+          "id": "cookie_based",
+          "name": "Cookie-Based",
           "type": "subcategory",
-          "priority": null
-        },                  
+          "priority": 5
+        },
         {
-          "id": "cache_poisoning",
-          "name": "Cache Poisoning",
+          "id": "flash_based",
+          "name": "Flash-Based",
           "type": "subcategory",
-          "priority": null
+          "priority": 5
         },
         {
-          "id": "bitsquatting",
-          "name": "Bitsquatting",
+          "id": "ie_only",
+          "name": "IE-Only",
           "type": "subcategory",
           "priority": 5
-        }
-      ]
-    },
-    {
-      "id": "server_side_injection",
-      "name": "Server-Side Injection",
-      "type": "category",
-      "children": [
+        },
         {
-          "id": "file_inclusion",
-          "name": "File Inclusion",
+          "id": "off_domain",
+          "name": "Off-Domain",
           "type": "subcategory",
           "children": [
             {
-              "id": "local",
-              "name": "Local",
+              "id": "data_uri",
+              "name": "Data URI",
               "type": "variant",
-              "priority": 1
+              "priority": 4
             }
           ]
         },
         {
-          "id": "parameter_pollution",
-          "name": "Parameter Pollution",
+          "id": "referer",
+          "name": "Referer",
+          "type": "subcategory",
+          "priority": 4
+        },
+        {
+          "id": "reflected",
+          "name": "Reflected",
           "type": "subcategory",
           "children": [
             {
-              "id": "social_media_sharing_buttons",
-              "name": "Social Media Sharing Buttons",
+              "id": "non_self",
+              "name": "Non-Self",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "self",
+              "name": "Self",
               "type": "variant",
               "priority": 5
             }
           ]
         },
         {
-          "id": "remote_code_execution_rce",
-          "name": "Remote Code Execution (RCE)",
-          "type": "subcategory",
-          "priority": 1
-        },
-        {
-          "id": "ldap_injection",
-          "name": "LDAP Injection",
+          "id": "stored",
+          "name": "Stored",
           "type": "subcategory",
-          "priority": null
-        },
-        {
-          "id": "sql_injection",
-          "name": "SQL Injection",
-          "type": "subcategory",
-          "priority": 1
+          "children": [
+            {
+              "id": "non_admin_to_anyone",
+              "name": "Non-Privileged User to Anyone",
+              "type": "variant",
+              "priority": 2
+            },
+            {
+              "id": "privileged_user_to_no_privilege_elevation",
+              "name": "Privileged User to No Privilege Elevation",
+              "type": "variant",
+              "priority": 4
+            },
+            {
+              "id": "privileged_user_to_privilege_elevation",
+              "name": "Privileged User to Privilege Elevation",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "self",
+              "name": "Self",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "url_based",
+              "name": "CSRF/URL-Based",
+              "type": "variant",
+              "priority": 3
+            }
+          ]
         },
         {
-          "id": "xml_external_entity_injection_xxe",
-          "name": "XML External Entity Injection (XXE)",
+          "id": "trace_method",
+          "name": "TRACE Method",
           "type": "subcategory",
-          "priority": 1
+          "priority": 5
         },
         {
-          "id": "http_response_manipulation",
-          "name": "HTTP Response Manipulation",
+          "id": "universal_uxss",
+          "name": "Universal (UXSS)",
+          "type": "subcategory",
+          "priority": 4
+        }
+      ]
+    },
+    {
+      "id": "cryptographic_weakness",
+      "name": "Cryptographic Weakness",
+      "type": "category",
+      "children": [
+        {
+          "id": "broken_cryptography",
+          "name": "Broken Cryptography",
           "type": "subcategory",
           "children": [
             {
-              "id": "response_splitting_crlf",
-              "name": "Response Splitting (CRLF)",
+              "id": "use_of_broken_cryptographic_primitive",
+              "name": "Use of Broken Cryptographic Primitive",
               "type": "variant",
               "priority": 3
+            },
+            {
+              "id": "use_of_vulnerable_cryptographic_library",
+              "name": "Use of Vulnerable Cryptographic Library",
+              "type": "variant",
+              "priority": 4
             }
           ]
         },
         {
-          "id": "content_spoofing",
-          "name": "Content Spoofing",
+          "id": "incomplete_cleanup_of_keying_material",
+          "name": "Incomplete Cleanup of Keying Material",
+          "type": "subcategory",
+          "priority": 5
+        },
+        {
+          "id": "insecure_implementation",
+          "name": "Insecure Implementation",
           "type": "subcategory",
           "children": [
             {
-              "id": "iframe_injection",
-              "name": "iframe Injection",
+              "id": "improper_following_of_specification",
+              "name": "Improper Following of Specification (Other)",
+              "type": "variant",
+              "priority": null
+            },
+            {
+              "id": "missing_cryptographic_step",
+              "name": "Missing Cryptographic Step",
+              "type": "variant",
+              "priority": null
+            }
+          ]
+        },
+        {
+          "id": "insecure_key_generation",
+          "name": "Insecure Key Generation",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "improper_asymmetric_exponent_selection",
+              "name": "Improper Asymmetric Exponent Selection",
+              "type": "variant",
+              "priority": null
+            },
+            {
+              "id": "improper_asymmetric_prime_selection",
+              "name": "Improper Asymmetric Prime Selection",
+              "type": "variant",
+              "priority": null
+            },
+            {
+              "id": "insufficient_key_space",
+              "name": "Insufficient Key Space",
               "type": "variant",
               "priority": 3
             },
             {
-              "id": "impersonation_via_broken_link_hijacking",
-              "name": "Impersonation via Broken Link Hijacking",
+              "id": "insufficient_key_stretching",
+              "name": "Insufficient Key Stretching",
               "type": "variant",
-              "priority": 4
+              "priority": null
             },
             {
-              "id": "external_authentication_injection",
-              "name": "External Authentication Injection",
+              "id": "key_exchange_without_entity_authentication",
+              "name": "Key Exchage Without Entity Authentication",
               "type": "variant",
               "priority": 4
-            },
+            }
+          ]
+        },
+        {
+          "id": "insufficient_entropy",
+          "name": "Insufficient Entropy",
+          "type": "subcategory",
+          "children": [
             {
-              "id": "flash_based_external_authentication_injection",
-              "name": "Flash Based External Authentication Injection",
+              "id": "initialization_vector_reuse",
+              "name": "Initialization Vector (IV) Reuse",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "html_content_injection",
-              "name": "HTML Content Injection",
+              "id": "limited_rng_entropy_source",
+              "name": "Limited Random Number Generator (RNG) Entropy Source",
               "type": "variant",
-              "priority": 5
+              "priority": 4
             },
             {
-              "id": "email_html_injection",
-              "name": "Email HTML Injection",
+              "id": "predictable_initialization_vector",
+              "name": "Predictable Initialization Vector (IV)",
               "type": "variant",
               "priority": 4
             },
             {
-              "id": "email_hyperlink_injection_based_on_email_provider",
-              "name": "Email Hyperlink Injection Based on Email Provider",
+              "id": "predictable_prng_seed",
+              "name": "Predictable Pseudo-Random Number Generator (PRNG) Seed",
               "type": "variant",
-              "priority": 5
+              "priority": 4
             },
             {
-              "id": "text_injection",
-              "name": "Text Injection",
+              "id": "prng_seed_reuse",
+              "name": "Pseudo-Random Number Generator (PRNG) Seed Reuse",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "homograph_idn_based",
-              "name": "Homograph/IDN-Based",
+              "id": "small_seed_space_in_prng",
+              "name": "Small Seed Space in Pseudo-Random Number Generator (PRNG)",
               "type": "variant",
-              "priority": 5
+              "priority": 4
             },
             {
-              "id": "rtlo",
-              "name": "Right-to-Left Override (RTLO)",
+              "id": "use_of_trng_for_nonsecurity_purpose",
+              "name": "Use of True Random Number Generator (TRNG) for Non-Security Purpose",
               "type": "variant",
               "priority": 5
             }
           ]
         },
         {
-          "id": "ssti",
-          "name": "Server-Side Template Injection (SSTI)",
+          "id": "insufficient_verification_of_data_authenticity",
+          "name": "Insufficient Verification of Data Authenticity",
           "type": "subcategory",
           "children": [
             {
-              "id": "basic",
-              "name": "Basic",
+              "id": "cryptographic_signature",
+              "name": "Cryptographic Signature",
               "type": "variant",
-              "priority": 4
+              "priority": null
             },
             {
-              "id": "custom",
-              "name": "Custom",
+              "id": "identity_check_value",
+              "name": "Integrity Check Value (ICV)",
               "type": "variant",
-              "priority": null
+              "priority": 4
             }
           ]
-        }
-      ]
-    },
-    {
-      "id": "broken_authentication_and_session_management",
-      "name": "Broken Authentication and Session Management",
-      "type": "category",
-      "children": [
-        {
-          "id": "authentication_bypass",
-          "name": "Authentication Bypass",
-          "type": "subcategory",
-          "priority": 1
-        },
-        {
-          "id": "two_fa_bypass",
-          "name": "Second Factor Authentication (2FA) Bypass",
-          "type": "subcategory",
-          "priority": 3
         },
         {
-          "id": "cleartext_transmission_of_session_token",
-          "name": "Cleartext Transmission of Session Token",
-          "type": "subcategory",
-          "priority": 4
-        },
-        {
-          "id": "weak_login_function",
-          "name": "Weak Login Function",
+          "id": "key_reuse",
+          "name": "Key Reuse",
           "type": "subcategory",
           "children": [
             {
-              "id": "not_operational",
-              "name": "Not Operational or Intended Public Access",
+              "id": "inter_environment",
+              "name": "Inter-Environment",
               "type": "variant",
-              "priority": 5
+              "priority": 2
             },
             {
-              "id": "other_plaintext_protocol_no_secure_alternative",
-              "name": "Other Plaintext Protocol with no Secure Alternative",
+              "id": "intra_environment",
+              "name": "Intra-Environment",
               "type": "variant",
-              "priority": 4
+              "priority": 5
             },
             {
-              "id": "over_http",
-              "name": "Over HTTP",
+              "id": "lack_of_perfect_forward_secrecy",
+              "name": "Lack of Perfect Forward Secrecy",
               "type": "variant",
               "priority": 4
             }
           ]
         },
         {
-          "id": "session_fixation",
-          "name": "Session Fixation",
+          "id": "side_channel_attack",
+          "name": "Side-Channel Attack",
           "type": "subcategory",
           "children": [
             {
-              "id": "remote_attack_vector",
-              "name": "Remote Attack Vector",
+              "id": "differential_fault_analysis",
+              "name": "Differential Fault Analysis",
               "type": "variant",
-              "priority": 3
+              "priority": null
             },
             {
-              "id": "local_attack_vector",
-              "name": "Local Attack Vector",
+              "id": "emanations_attack",
+              "name": "Emanations Attack",
               "type": "variant",
               "priority": 5
-            }
-          ]
-        },
-        {
-          "id": "failure_to_invalidate_session",
-          "name": "Failure to Invalidate Session",
-          "type": "subcategory",
-          "children": [
+            },
             {
-              "id": "on_logout",
-              "name": "On Logout (Client and Server-Side)",
+              "id": "padding_oracle_attack",
+              "name": "Padding Oracle Attack",
               "type": "variant",
               "priority": 4
             },
             {
-              "id": "permission_change",
-              "name": "On Permission Change",
-              "type": "variant",
-              "priority": null
-            },
-            {
-              "id": "on_logout_server_side_only",
-              "name": "On Logout (Server-Side Only)",
+              "id": "power_analysis_attack",
+              "name": "Power Analysis Attack",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "on_password_change",
-              "name": "On Password Reset and/or Change",
+              "id": "timing_attack",
+              "name": "Timing Attack",
               "type": "variant",
               "priority": 4
-            },
-            {
-              "id": "all_sessions",
-              "name": "Concurrent Sessions On Logout",
-              "type": "variant",
-              "priority": 5
-            },
+            }
+          ]
+        },
+        {
+          "id": "use_of_expired_cryptographic_key_or_cert",
+          "name": "Use of Expired Cryptographic Key (or Certificate)",
+          "type": "subcategory",
+          "priority": 4
+        },
+        {
+          "id": "weak_hash",
+          "name": "Weak Hash",
+          "type": "subcategory",
+          "children": [
             {
-              "id": "on_email_change",
-              "name": "On Email Change",
+              "id": "lack_of_salt",
+              "name": "Lack of Salt",
               "type": "variant",
-              "priority": 5
+              "priority": null
             },
             {
-              "id": "on_two_fa_activation_change",
-              "name": "On 2FA Activation/Change",
+              "id": "predictable_hash_collision",
+              "name": "Predictable Hash Collision",
               "type": "variant",
-              "priority": 5
+              "priority": null
             },
             {
-              "id": "long_timeout",
-              "name": "Long Timeout",
+              "id": "use_of_predictable_salt",
+              "name": "Use of Predictable Salt",
               "type": "variant",
               "priority": 5
             }
           ]
-        },
+        }
+      ]
+    },
+    {
+      "id": "data_biases",
+      "name": "Data Biases",
+      "type": "category",
+      "children": [
         {
-          "id": "concurrent_logins",
-          "name": "Concurrent Logins",
+          "id": "pre_existing_bias",
+          "name": "Pre-existing Bias",
           "type": "subcategory",
-          "priority": 5
+          "priority": null
         },
         {
-          "id": "weak_registration_implementation",
-          "name": "Weak Registration Implementation",
+          "id": "representation_bias",
+          "name": "Representation Bias",
           "type": "subcategory",
-          "children": [
-            {
-              "id": "over_http",
-              "name": "Over HTTP",
-              "type": "variant",
-              "priority": 4
-            }
-          ]
+          "priority": null
         }
       ]
     },
     {
-      "id": "sensitive_data_exposure",
-      "name": "Sensitive Data Exposure",
+      "id": "decentralized_application_misconfiguration",
+      "name": "Decentralized Application Misconfiguration",
       "type": "category",
       "children": [
         {
-          "id": "disclosure_of_secrets",
-          "name": "Disclosure of Secrets",
+          "id": "defi_security",
+          "name": "DeFi Security",
           "type": "subcategory",
           "children": [
             {
-              "id": "for_publicly_accessible_asset",
-              "name": "For Publicly Accessible Asset",
-              "type": "variant",
-              "priority": 1
-            },
-            {
-              "id": "pii_leakage_exposure",
-              "name": "PII Leakage/Exposure",
+              "id": "flash_loan_attack",
+              "name": "Flash Loan Attack",
               "type": "variant",
               "priority": null
             },
             {
-              "id": "for_internal_asset",
-              "name": "For Internal Asset",
-              "type": "variant",
-              "priority": 3
-            },
-            {
-              "id": "pay_per_use_abuse",
-              "name": "Pay-Per-Use Abuse",
+              "id": "function_level_accounting_error",
+              "name": "Function-Level Accounting Error",
               "type": "variant",
-              "priority": 4
+              "priority": null
             },
             {
-              "id": "intentionally_public_sample_or_invalid",
-              "name": "Intentionally Public, Sample or Invalid",
+              "id": "improper_implementation_of_governance",
+              "name": "Improper Implementation of Governance",
               "type": "variant",
-              "priority": 5
+              "priority": null
             },
             {
-              "id": "data_traffic_spam",
-              "name": "Data/Traffic Spam",
+              "id": "pricing_oracle_manipulation",
+              "name": "Pricing Oracle Manipulation",
               "type": "variant",
-              "priority": 5
-            },
+              "priority": null
+            }
+          ]
+        },
+        {
+          "id": "improper_authorization",
+          "name": "Improper Authorization",
+          "type": "subcategory",
+          "children": [
             {
-              "id": "non_corporate_user",
-              "name": "Non-Corporate User",
+              "id": "insufficient_signature_validation",
+              "name": "Insufficient Signature Validation",
               "type": "variant",
-              "priority": 5
+              "priority": null
             }
           ]
         },
         {
-          "id": "exif_geolocation_data_not_stripped_from_uploaded_images",
-          "name": "EXIF Geolocation Data Not Stripped From Uploaded Images",
+          "id": "insecure_data_storage",
+          "name": "Insecure Data Storage",
           "type": "subcategory",
           "children": [
             {
-              "id": "automatic_user_enumeration",
-              "name": "Automatic User Enumeration",
+              "id": "plaintext_private_key",
+              "name": "Plaintext Private Key",
               "type": "variant",
-              "priority": 3
+              "priority": 1
             },
             {
-              "id": "manual_user_enumeration",
-              "name": "Manual User Enumeration",
+              "id": "sensitive_information_exposure",
+              "name": "Sensitive Information Exposure",
               "type": "variant",
-              "priority": 4
+              "priority": null
             }
           ]
         },
         {
-          "id": "visible_detailed_error_page",
-          "name": "Visible Detailed Error/Debug Page",
+          "id": "marketplace_security",
+          "name": "Marketplace Security",
           "type": "subcategory",
           "children": [
             {
-              "id": "detailed_server_configuration",
-              "name": "Detailed Server Configuration",
+              "id": "denial_of_service",
+              "name": "Denial of Service",
               "type": "variant",
-              "priority": 4
+              "priority": null
             },
             {
-              "id": "full_path_disclosure",
-              "name": "Full Path Disclosure",
+              "id": "improper_validation_and_checks_for_deposits_and_withdrawals",
+              "name": "Improper Validation and Checks For Deposits and Withdrawals",
               "type": "variant",
-              "priority": 5
+              "priority": null
             },
             {
-              "id": "descriptive_stack_trace",
-              "name": "Descriptive Stack Trace",
+              "id": "malicious_order_offer",
+              "name": "Malicious Order Offer",
               "type": "variant",
-              "priority": 5
+              "priority": 2
+            },
+            {
+              "id": "miscalculated_accounting_logic",
+              "name": "Miscalculated Accounting Logic",
+              "type": "variant",
+              "priority": null
+            },
+            {
+              "id": "ofac_bypass",
+              "name": "OFAC Bypass",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "orderbook_manipulation",
+              "name": "Orderbook Manipulation",
+              "type": "variant",
+              "priority": 1
+            },
+            {
+              "id": "price_or_fee_manipulation",
+              "name": "Price or Fee Manipulation",
+              "type": "variant",
+              "priority": 2
+            },
+            {
+              "id": "signer_account_takeover",
+              "name": "Signer Account Takeover",
+              "type": "variant",
+              "priority": 1
+            },
+            {
+              "id": "unauthorized_asset_transfer",
+              "name": "Unauthorized Asset Transfer",
+              "type": "variant",
+              "priority": 1
             }
           ]
         },
         {
-          "id": "disclosure_of_known_public_information",
-          "name": "Disclosure of Known Public Information",
+          "id": "protocol_security_misconfiguration",
+          "name": "Protocol Security Misconfiguration",
           "type": "subcategory",
-          "priority": 5
-        },
+          "children": [
+            {
+              "id": "node_level_denial_of_service",
+              "name": "Node-level Denial of Service",
+              "type": "variant",
+              "priority": 1
+            }
+          ]
+        }
+      ]
+    },
+    {
+      "id": "developer_biases",
+      "name": "Developer Biases",
+      "type": "category",
+      "children": [
         {
-          "id": "token_leakage_via_referer",
-          "name": "Token Leakage via Referer",
+          "id": "implicit_bias",
+          "name": "Implicit Bias",
+          "type": "subcategory",
+          "priority": null
+        }
+      ]
+    },
+    {
+      "id": "external_behavior",
+      "name": "External Behavior",
+      "type": "category",
+      "children": [
+        {
+          "id": "browser_feature",
+          "name": "Browser Feature",
           "type": "subcategory",
           "children": [
             {
-              "id": "trusted_third_party",
-              "name": "Trusted 3rd Party",
+              "id": "aggressive_offline_caching",
+              "name": "Aggressive Offline Caching",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "untrusted_third_party",
-              "name": "Untrusted 3rd Party",
+              "id": "autocomplete_enabled",
+              "name": "Autocomplete Enabled",
               "type": "variant",
-              "priority": 4
+              "priority": 5
             },
             {
-              "id": "over_http",
-              "name": "Over HTTP",
+              "id": "autocorrect_enabled",
+              "name": "Autocorrect Enabled",
               "type": "variant",
-              "priority": 4
+              "priority": 5
             },
             {
-              "id": "password_reset_token",
-              "name": "Password Reset Token",
+              "id": "plaintext_password_field",
+              "name": "Plaintext Password Field",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "save_password",
+              "name": "Save Password",
               "type": "variant",
               "priority": 5
-            }         
+            }
           ]
         },
         {
-          "id": "sensitive_token_in_url",
-          "name": "Sensitive Token in URL",
+          "id": "captcha_bypass",
+          "name": "Captcha Bypass",
           "type": "subcategory",
           "children": [
             {
-              "id": "user_facing",
-              "name": "User Facing",
-              "type": "variant",
-              "priority": 4
-            },
-            {
-              "id": "in_the_background",
-              "name": "In the Background",
-              "type": "variant",
-              "priority": 5
-            },
-            {
-              "id": "on_password_reset",
-              "name": "On Password Reset",
+              "id": "crowdsourcing",
+              "name": "Crowdsourcing",
               "type": "variant",
               "priority": 5
             }
           ]
         },
         {
-          "id": "non_sensitive_token_in_url",
-          "name": "Non-Sensitive Token in URL",
+          "id": "csv_injection",
+          "name": "CSV Injection",
           "type": "subcategory",
           "priority": 5
         },
         {
-          "id": "weak_password_reset_implementation",
-          "name": "Weak Password Reset Implementation",
+          "id": "system_clipboard_leak",
+          "name": "System Clipboard Leak",
           "type": "subcategory",
           "children": [
             {
-              "id": "password_reset_token_sent_over_http",
-              "name": "Password Reset Token Sent Over HTTP",
-              "type": "variant",
-              "priority": 4
-            },
-            {
-              "id": "token_leakage_via_host_header_poisoning",
-              "name": "Token Leakage via Host Header Poisoning",
+              "id": "shared_links",
+              "name": "Shared Links",
               "type": "variant",
-              "priority": 2
+              "priority": 5
             }
           ]
         },
         {
-          "id": "mixed_content",
-          "name": "Mixed Content (HTTPS Sourcing HTTP)",
+          "id": "user_password_persisted_in_memory",
+          "name": "User Password Persisted in Memory",
+          "type": "subcategory",
+          "priority": 5
+        }
+      ]
+    },
+    {
+      "id": "indicators_of_compromise",
+      "name": "Indicators of Compromise",
+      "type": "category",
+      "priority": null
+    },
+    {
+      "id": "insecure_data_storage",
+      "name": "Insecure Data Storage",
+      "type": "category",
+      "children": [
+        {
+          "id": "non_sensitive_application_data_stored_unencrypted",
+          "name": "Non-Sensitive Application Data Stored Unencrypted",
           "type": "subcategory",
           "priority": 5
         },
         {
-          "id": "sensitive_data_hardcoded",
-          "name": "Sensitive Data Hardcoded",
+          "id": "screen_caching_enabled",
+          "name": "Screen Caching Enabled",
+          "type": "subcategory",
+          "priority": 5
+        },
+        {
+          "id": "sensitive_application_data_stored_unencrypted",
+          "name": "Sensitive Application Data Stored Unencrypted",
           "type": "subcategory",
           "children": [
             {
-              "id": "oauth_secret",
-              "name": "OAuth Secret",
+              "id": "on_external_storage",
+              "name": "On External Storage",
               "type": "variant",
-              "priority": 5
+              "priority": 4
             },
             {
-              "id": "file_paths",
-              "name": "File Paths",
+              "id": "on_internal_storage",
+              "name": "On Internal Storage",
               "type": "variant",
               "priority": 5
             }
           ]
         },
         {
-          "id": "internal_ip_disclosure",
-          "name": "Internal IP Disclosure",
+          "id": "server_side_credentials_storage",
+          "name": "Server-Side Credentials Storage",
           "type": "subcategory",
-          "priority": 5
-        },
+          "children": [
+            {
+              "id": "plaintext",
+              "name": "Plaintext",
+              "type": "variant",
+              "priority": 4
+            }
+          ]
+        }
+      ]
+    },
+    {
+      "id": "insecure_data_transport",
+      "name": "Insecure Data Transport",
+      "type": "category",
+      "children": [
         {
-          "id": "xssi",
-          "name": "Cross Site Script Inclusion (XSSI)",
+          "id": "cleartext_transmission_of_sensitive_data",
+          "name": "Cleartext Transmission of Sensitive Data",
           "type": "subcategory",
           "priority": null
         },
         {
-          "id": "json_hijacking",
-          "name": "JSON Hijacking",
-          "type": "subcategory",
-          "priority": 5
-        },
-        {
-          "id": "via_localstorage_sessionstorage",
-          "name": "Via localStorage/sessionStorage",
+          "id": "executable_download",
+          "name": "Executable Download",
           "type": "subcategory",
           "children": [
             {
-              "id": "sensitive_token",
-              "name": "Sensitive Token",
+              "id": "no_secure_integrity_check",
+              "name": "No Secure Integrity Check",
               "type": "variant",
               "priority": 4
             },
             {
-              "id": "non_sensitive_token",
-              "name": "Non-Sensitive Token",
+              "id": "secure_integrity_check",
+              "name": "Secure Integrity Check",
               "type": "variant",
               "priority": 5
             }
@@ -1129,1596 +1382,1665 @@
       ]
     },
     {
-      "id": "cross_site_scripting_xss",
-      "name": "Cross-Site Scripting (XSS)",
+      "id": "insecure_os_firmware",
+      "name": "Insecure OS/Firmware",
       "type": "category",
       "children": [
         {
-          "id": "stored",
-          "name": "Stored",
+          "id": "command_injection",
+          "name": "Command Injection",
+          "type": "subcategory",
+          "priority": 1
+        },
+        {
+          "id": "data_not_encrypted_at_rest",
+          "name": "Data not encrypted at rest",
           "type": "subcategory",
           "children": [
             {
-              "id": "non_admin_to_anyone",
-              "name": "Non-Privileged User to Anyone",
-              "type": "variant",
-              "priority": 2
-            },
-            {
-              "id": "privileged_user_to_privilege_elevation",
-              "name": "Privileged User to Privilege Elevation",
-              "type": "variant",
-              "priority": 3
-            },
-            {
-              "id": "privileged_user_to_no_privilege_elevation",
-              "name": "Privileged User to No Privilege Elevation",
-              "type": "variant",
-              "priority": 4
-            },
-            {
-              "id": "url_based",
-              "name": "CSRF/URL-Based",
+              "id": "non_sensitive",
+              "name": "Non sensitive",
               "type": "variant",
-              "priority": 3
+              "priority": 5
             },
             {
-              "id": "self",
-              "name": "Self",
+              "id": "sensitive",
+              "name": "Sensitive",
               "type": "variant",
-              "priority": 5
+              "priority": null
             }
           ]
         },
         {
-          "id": "reflected",
-          "name": "Reflected",
+          "id": "failure_to_remove_sensitive_artifacts_from_disk",
+          "name": "Failure to Remove Sensitive Artifacts from Disk",
+          "type": "subcategory",
+          "priority": null
+        },
+        {
+          "id": "hardcoded_password",
+          "name": "Hardcoded Password",
           "type": "subcategory",
           "children": [
             {
-              "id": "non_self",
-              "name": "Non-Self",
+              "id": "non_privileged_user",
+              "name": "Non-Privileged User",
               "type": "variant",
-              "priority": 3
+              "priority": 2
             },
             {
-              "id": "self",
-              "name": "Self",
+              "id": "privileged_user",
+              "name": "Privileged User",
               "type": "variant",
-              "priority": 5
+              "priority": 1
             }
           ]
         },
         {
-          "id": "flash_based",
-          "name": "Flash-Based",
+          "id": "kiosk_escape_or_breakout",
+          "name": "Kiosk Escape or Breakout",
           "type": "subcategory",
-          "priority": 5
+          "priority": null
         },
         {
-          "id": "cookie_based",
-          "name": "Cookie-Based",
+          "id": "local_administrator_on_default_environment",
+          "name": "Local Administrator on default environment",
           "type": "subcategory",
-          "priority": 5
+          "priority": 2
         },
         {
-          "id": "ie_only",
-          "name": "IE-Only",
+          "id": "over_permissioned_credentials_on_storage",
+          "name": "Over-Permissioned Credentials on Storage",
           "type": "subcategory",
-          "priority": 5
+          "priority": 2
         },
         {
-          "id": "referer",
-          "name": "Referer",
+          "id": "poorly_configured_disk_encryption",
+          "name": "Poorly Configured Disk Encryption",
           "type": "subcategory",
-          "priority": 4
+          "priority": null
         },
         {
-          "id": "trace_method",
-          "name": "TRACE Method",
+          "id": "poorly_configured_operating_system_security",
+          "name": "Poorly Configured Operating System Security",
           "type": "subcategory",
-          "priority": 5
+          "priority": null
         },
         {
-          "id": "universal_uxss",
-          "name": "Universal (UXSS)",
+          "id": "recovery_of_disk_contains_sensitive_material",
+          "name": "Recovery of Disk Contains Sensitive Material",
           "type": "subcategory",
-          "priority": 4
+          "priority": null
         },
         {
-          "id": "off_domain",
-          "name": "Off-Domain",
+          "id": "shared_credentials_on_storage",
+          "name": "Shared Credentials on Storage",
           "type": "subcategory",
-          "children": [
-            {
-              "id": "data_uri",
-              "name": "Data URI",
-              "type": "variant",
-              "priority": 4
-            }
-          ]
-        }
-      ]
-    },
-    {
-      "id": "broken_access_control",
-      "name": "Broken Access Control (BAC)",
-      "type": "category",
-      "children": [
+          "priority": 3
+        },
         {
-          "id": "idor",
-          "name": "Insecure Direct Object References (IDOR)",
+          "id": "weakness_in_firmware_updates",
+          "name": "Weakness in Firmware Updates",
           "type": "subcategory",
           "children": [
             {
-              "id": "read_edit_delete_non_sensitive_information",
-              "name": "Read/Edit/Delete Non-Sensitive Information",
-              "type": "variant",
-              "priority": 5
-            },
-            {
-              "id": "read_edit_delete_sensitive_information_guid",
-              "name": "Read/Edit/Delete Sensitive Information/Complex Object Identifiers(GUID)",
+              "id": "firmware_cannot_be_updated",
+              "name": "Firmware cannot be updated",
               "type": "variant",
-              "priority": 4
+              "priority": null
             },
             {
-              "id": "read_sensitive_information_iterable_object_identifiers",
-              "name": "Read Sensitive Information/Iterable Object Identifiers",
+              "id": "firmware_does_not_validate_update_integrity",
+              "name": "Firmware does not validate update integrity",
               "type": "variant",
               "priority": 3
             },
             {
-              "id": "edit_delete_sensitive_information_iterable_object_identifiers",
-              "name": "Edit/Delete Sensitive Information/Iterable Object Identifiers",
-              "type": "variant",
-              "priority": 2
-            },
-            {
-              "id": "read_edit_delete_sensitive_information_iterable_object_identifiers",
-              "name": "Read/Edit/Delete Sensitive Information/Iterable Object Identifiers",
+              "id": "firmware_is_not_encrypted",
+              "name": "Firmware is not encrypted",
               "type": "variant",
-              "priority": 1
+              "priority": 5
             }
           ]
-        },
-        {
-          "id": "username_enumeration",
-          "name": "Username/Email Enumeration",
-          "type": "subcategory",
-          "children": [
-            {
-              "id": "non_brute_force",
-              "name": "Non-Brute Force",
-              "type": "variant",
-              "priority": 4
-            }
-          ]
-        },
-        {
-          "id": "exposed_sensitive_android_intent",
-          "name": "Exposed Sensitive Android Intent",
-          "type": "subcategory",
-          "priority": null
-        },
-        {
-          "id": "privilege_escalation",
-          "name": "Privilege Escalation",
-          "type": "subcategory",
-          "priority": null
-        },        
-        {
-          "id": "exposed_sensitive_ios_url_scheme",
-          "name": "Exposed Sensitive iOS URL Scheme",
-          "type": "subcategory",
-          "priority": null
         }
       ]
     },
     {
-      "id": "cross_site_request_forgery_csrf",
-      "name": "Cross-Site Request Forgery (CSRF)",
+      "id": "insufficient_security_configurability",
+      "name": "Insufficient Security Configurability",
       "type": "category",
       "children": [
         {
-          "id": "application_wide",
-          "name": "Application-Wide",
+          "id": "lack_of_notification_email",
+          "name": "Lack of Notification Email",
           "type": "subcategory",
-          "priority": 2
+          "priority": 5
         },
         {
-          "id": "action_specific",
-          "name": "Action-Specific",
+          "id": "no_password_policy",
+          "name": "No Password Policy",
           "type": "subcategory",
-          "children": [
-            {
-              "id": "authenticated_action",
-              "name": "Authenticated Action",
-              "type": "variant",
-              "priority": null
-            },
-            {
-              "id": "unauthenticated_action",
-              "name": "Unauthenticated Action",
-              "type": "variant",
-              "priority": null
-            },
-            {
-              "id": "logout",
-              "name": "Logout",
-              "type": "variant",
-              "priority": 5
-            }
-          ]
+          "priority": 4
         },
         {
-          "id": "csrf_token_not_unique_per_request",
-          "name": "CSRF Token Not Unique Per Request",
+          "id": "password_policy_bypass",
+          "name": "Password Policy Bypass",
           "type": "subcategory",
           "priority": 5
         },
         {
-          "id": "flash_based",
-          "name": "Flash-Based",
+          "id": "verification_of_contact_method_not_required",
+          "name": "Verification of Contact Method not Required",
           "type": "subcategory",
           "priority": 5
-        }
-      ]
-    },
-    {
-      "id": "application_level_denial_of_service_dos",
-      "name": "Application-Level Denial-of-Service (DoS)",
-      "type": "category",
-      "children": [
-        {
-          "id": "excessive_resource_consumption",
-          "name": "Excessive Resource Consumption",
-          "type": "subcategory",
-          "children": [
-            {
-              "id": "injection_prompt",
-              "name": "Injection (Prompt)",
-              "type": "variant",
-              "priority": null
-            }
-          ]
-        },
-        {
-          "id": "critical_impact_and_or_easy_difficulty",
-          "name": "Critical Impact and/or Easy Difficulty",
-          "type": "subcategory",
-          "priority": 2
         },
         {
-          "id": "high_impact_and_or_medium_difficulty",
-          "name": "High Impact and/or Medium Difficulty",
+          "id": "weak_password_policy",
+          "name": "Weak Password Policy",
           "type": "subcategory",
-          "priority": 3
+          "priority": 5
         },
         {
-          "id": "app_crash",
-          "name": "App Crash",
+          "id": "weak_password_reset_implementation",
+          "name": "Weak Password Reset Implementation",
           "type": "subcategory",
           "children": [
             {
-              "id": "malformed_android_intents",
-              "name": "Malformed Android Intents",
+              "id": "token_has_long_timed_expiry",
+              "name": "Token Has Long Timed Expiry",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "malformed_ios_url_schemes",
-              "name": "Malformed iOS URL Schemes",
+              "id": "token_is_not_invalidated_after_email_change",
+              "name": "Token is Not Invalidated After Email Change",
               "type": "variant",
               "priority": 5
-            }
-          ]
-        }
-      ]
-    },
-    {
-      "id": "unvalidated_redirects_and_forwards",
-      "name": "Unvalidated Redirects and Forwards",
-      "type": "category",
-      "children": [
-        {
-          "id": "open_redirect",
-          "name": "Open Redirect",
-          "type": "subcategory",
-          "children": [
+            },
             {
-              "id": "get_based",
-              "name": "GET-Based",
+              "id": "token_is_not_invalidated_after_login",
+              "name": "Token is Not Invalidated After Login",
               "type": "variant",
-              "priority": 4
+              "priority": 5
             },
             {
-              "id": "post_based",
-              "name": "POST-Based",
+              "id": "token_is_not_invalidated_after_new_token_is_requested",
+              "name": "Token is Not Invalidated After New Token is Requested",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "header_based",
-              "name": "Header-Based",
+              "id": "token_is_not_invalidated_after_password_change",
+              "name": "Token is Not Invalidated After Password Change",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "flash_based",
-              "name": "Flash-Based",
+              "id": "token_is_not_invalidated_after_use",
+              "name": "Token is Not Invalidated After Use",
               "type": "variant",
-              "priority": 5
+              "priority": 4
             }
           ]
         },
         {
-          "id": "tabnabbing",
-          "name": "Tabnabbing",
+          "id": "weak_registration_implementation",
+          "name": "Weak Registration Implementation",
           "type": "subcategory",
-          "priority": 5
+          "children": [
+            {
+              "id": "allows_disposable_email_addresses",
+              "name": "Allows Disposable Email Addresses",
+              "type": "variant",
+              "priority": 5
+            }
+          ]
         },
         {
-          "id": "lack_of_security_speed_bump_page",
-          "name": "Lack of Security Speed Bump Page",
-          "type": "subcategory",
-          "priority": 5
-        }
-      ]
-    },
-    {
-      "id": "external_behavior",
-      "name": "External Behavior",
-      "type": "category",
-      "children": [
-        {
-          "id": "browser_feature",
-          "name": "Browser Feature",
+          "id": "weak_two_fa_implementation",
+          "name": "Weak 2FA Implementation",
           "type": "subcategory",
           "children": [
             {
-              "id": "plaintext_password_field",
-              "name": "Plaintext Password Field",
+              "id": "missing_failsafe",
+              "name": "Missing Failsafe",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "save_password",
-              "name": "Save Password",
+              "id": "old_two_fa_code_is_not_invalidated_after_new_code_is_generated",
+              "name": "Old 2FA Code is Not Invalidated After New Code is Generated",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "autocomplete_enabled",
-              "name": "Autocomplete Enabled",
+              "id": "two_fa_code_is_not_updated_after_new_code_is_requested",
+              "name": "2FA Code is Not Updated After New Code is Requested",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "autocorrect_enabled",
-              "name": "Autocorrect Enabled",
+              "id": "two_fa_secret_cannot_be_rotated",
+              "name": "2FA Secret Cannot be Rotated",
               "type": "variant",
-              "priority": 5
+              "priority": 4
             },
             {
-              "id": "aggressive_offline_caching",
-              "name": "Aggressive Offline Caching",
+              "id": "two_fa_secret_remains_obtainable_after_two_fa_is_enabled",
+              "name": "2FA Secret Remains Obtainable After 2FA is Enabled",
               "type": "variant",
-              "priority": 5
+              "priority": 4
             }
           ]
-        },
+        }
+      ]
+    },
+    {
+      "id": "lack_of_binary_hardening",
+      "name": "Lack of Binary Hardening",
+      "type": "category",
+      "children": [
         {
-          "id": "csv_injection",
-          "name": "CSV Injection",
+          "id": "lack_of_exploit_mitigations",
+          "name": "Lack of Exploit Mitigations",
           "type": "subcategory",
           "priority": 5
         },
         {
-          "id": "captcha_bypass",
-          "name": "Captcha Bypass",
+          "id": "lack_of_jailbreak_detection",
+          "name": "Lack of Jailbreak Detection",
           "type": "subcategory",
-          "children": [
-            {
-              "id": "crowdsourcing",
-              "name": "Crowdsourcing",
-              "type": "variant",
-              "priority": 5
-            }
-          ]
+          "priority": 5
         },
         {
-          "id": "system_clipboard_leak",
-          "name": "System Clipboard Leak",
+          "id": "lack_of_obfuscation",
+          "name": "Lack of Obfuscation",
           "type": "subcategory",
-          "children": [
-            {
-              "id": "shared_links",
-              "name": "Shared Links",
-              "type": "variant",
-              "priority": 5
-            }
-          ]
+          "priority": 5
         },
         {
-          "id": "user_password_persisted_in_memory",
-          "name": "User Password Persisted in Memory",
+          "id": "runtime_instrumentation_based",
+          "name": "Runtime Instrumentation-Based",
           "type": "subcategory",
           "priority": 5
         }
       ]
     },
     {
-      "id": "insufficient_security_configurability",
-      "name": "Insufficient Security Configurability",
+      "id": "misinterpretation_biases",
+      "name": "Misinterpretation Biases",
       "type": "category",
       "children": [
         {
-          "id": "weak_password_policy",
-          "name": "Weak Password Policy",
+          "id": "context_ignorance",
+          "name": "Context Ignorance",
           "type": "subcategory",
-          "priority": 5
-        },
+          "priority": null
+        }
+      ]
+    },
+    {
+      "id": "mobile_security_misconfiguration",
+      "name": "Mobile Security Misconfiguration",
+      "type": "category",
+      "children": [
         {
-          "id": "no_password_policy",
-          "name": "No Password Policy",
+          "id": "auto_backup_allowed_by_default",
+          "name": "Auto Backup Allowed by Default",
           "type": "subcategory",
-          "priority": 4
+          "priority": 5
         },
         {
-          "id": "password_policy_bypass",
-          "name": "Password Policy Bypass",
+          "id": "clipboard_enabled",
+          "name": "Clipboard Enabled",
           "type": "subcategory",
           "priority": 5
         },
         {
-          "id": "weak_password_reset_implementation",
-          "name": "Weak Password Reset Implementation",
+          "id": "ssl_certificate_pinning",
+          "name": "SSL Certificate Pinning",
           "type": "subcategory",
           "children": [
             {
-              "id": "token_is_not_invalidated_after_use",
-              "name": "Token is Not Invalidated After Use",
-              "type": "variant",
-              "priority": 4
-            },
-            {
-              "id": "token_is_not_invalidated_after_email_change",
-              "name": "Token is Not Invalidated After Email Change",
-              "type": "variant",
-              "priority": 5
-            },
-            {
-              "id": "token_is_not_invalidated_after_password_change",
-              "name": "Token is Not Invalidated After Password Change",
-              "type": "variant",
-              "priority": 5
-            },
-            {
-              "id": "token_has_long_timed_expiry",
-              "name": "Token Has Long Timed Expiry",
-              "type": "variant",
-              "priority": 5
-            },
-            {
-              "id": "token_is_not_invalidated_after_new_token_is_requested",
-              "name": "Token is Not Invalidated After New Token is Requested",
+              "id": "absent",
+              "name": "Absent",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "token_is_not_invalidated_after_login",
-              "name": "Token is Not Invalidated After Login",
+              "id": "defeatable",
+              "name": "Defeatable",
               "type": "variant",
               "priority": 5
             }
           ]
         },
         {
-          "id": "verification_of_contact_method_not_required",
-          "name": "Verification of Contact Method not Required",
+          "id": "tapjacking",
+          "name": "Tapjacking",
           "type": "subcategory",
           "priority": 5
-        },
+        }
+      ]
+    },
+    {
+      "id": "network_security_misconfiguration",
+      "name": "Network Security Misconfiguration",
+      "type": "category",
+      "children": [
         {
-          "id": "lack_of_notification_email",
-          "name": "Lack of Notification Email",
+          "id": "telnet_enabled",
+          "name": "Telnet Enabled",
           "type": "subcategory",
           "priority": 5
-        },
+        }
+      ]
+    },
+    {
+      "id": "physical_security_issues",
+      "name": "Physical Security Issues",
+      "type": "category",
+      "children": [
         {
-          "id": "weak_registration_implementation",
-          "name": "Weak Registration Implementation",
+          "id": "bypass_of_physical_access_control",
+          "name": "Bypass of physical access control",
           "type": "subcategory",
-          "children": [
-            {
-              "id": "allows_disposable_email_addresses",
-              "name": "Allows Disposable Email Addresses",
-              "type": "variant",
-              "priority": 5
-            }
-          ]
+          "priority": null
         },
         {
-          "id": "weak_two_fa_implementation",
-          "name": "Weak 2FA Implementation",
+          "id": "weakness_in_physical_access_control",
+          "name": "Weakness in physical access control",
           "type": "subcategory",
           "children": [
             {
-              "id": "two_fa_secret_cannot_be_rotated",
-              "name": "2FA Secret Cannot be Rotated",
-              "type": "variant",
-              "priority": 4
-            },
-            {
-              "id": "two_fa_secret_remains_obtainable_after_two_fa_is_enabled",
-              "name": "2FA Secret Remains Obtainable After 2FA is Enabled",
+              "id": "cloneable_key",
+              "name": "Cloneable Key",
               "type": "variant",
-              "priority": 4
+              "priority": null
             },
             {
-              "id": "missing_failsafe",
-              "name": "Missing Failsafe",
+              "id": "commonly_keyed_system",
+              "name": "Commonly Keyed System",
               "type": "variant",
-              "priority": 5
+              "priority": 2
             },
             {
-              "id": "two_fa_code_is_not_updated_after_new_code_is_requested",
-              "name": "2FA Code is Not Updated After New Code is Requested",
+              "id": "master_key_identification",
+              "name": "Master Key Identification",
               "type": "variant",
-              "priority": 5
-            },
+              "priority": null
+            }
+          ]
+        }
+      ]
+    },
+    {
+      "id": "privacy_concerns",
+      "name": "Privacy Concerns",
+      "type": "category",
+      "children": [
+        {
+          "id": "unnecessary_data_collection",
+          "name": "Unnecessary Data Collection",
+          "type": "subcategory",
+          "children": [
             {
-              "id": "old_two_fa_code_is_not_invalidated_after_new_code_is_generated",
-              "name": "Old 2FA Code is Not Invalidated After New Code is Generated",
+              "id": "wifi_ssid_password",
+              "name": "WiFi SSID+Password",
               "type": "variant",
-              "priority": 5
+              "priority": 4
             }
           ]
         }
       ]
     },
     {
-      "id": "using_components_with_known_vulnerabilities",
-      "name": "Using Components with Known Vulnerabilities",
+      "id": "protocol_specific_misconfiguration",
+      "name": "Protocol Specific Misconfiguration",
       "type": "category",
       "children": [
         {
-          "id": "rosetta_flash",
-          "name": "Rosetta Flash",
+          "id": "frontrunning_enabled_attack",
+          "name": "Frontrunning-Enabled Attack",
           "type": "subcategory",
-          "priority": 5
+          "priority": 2
         },
         {
-          "id": "outdated_software_version",
-          "name": "Outdated Software Version",
+          "id": "improper_validation_and_finalization_logic",
+          "name": "Improper Validation and Finalization Logic",
           "type": "subcategory",
-          "priority": 5
+          "priority": null
         },
         {
-          "id": "captcha_bypass",
-          "name": "Captcha Bypass",
+          "id": "misconfigured_staking_logic",
+          "name": "Misconfigured Staking Logic",
           "type": "subcategory",
-          "children": [
-            {
-              "id": "ocr_optical_character_recognition",
-              "name": "OCR (Optical Character Recognition)",
-              "type": "variant",
-              "priority": 5
-            }
-          ]
+          "priority": null
+        },
+        {
+          "id": "sandwich_enabled_attack",
+          "name": "Sandwich-Enabled Attack",
+          "type": "subcategory",
+          "priority": 2
         }
       ]
     },
     {
-      "id": "insecure_data_storage",
-      "name": "Insecure Data Storage",
+      "id": "sensitive_data_exposure",
+      "name": "Sensitive Data Exposure",
       "type": "category",
       "children": [
         {
-          "id": "sensitive_application_data_stored_unencrypted",
-          "name": "Sensitive Application Data Stored Unencrypted",
+          "id": "disclosure_of_known_public_information",
+          "name": "Disclosure of Known Public Information",
+          "type": "subcategory",
+          "priority": 5
+        },
+        {
+          "id": "disclosure_of_secrets",
+          "name": "Disclosure of Secrets",
           "type": "subcategory",
           "children": [
             {
-              "id": "on_external_storage",
-              "name": "On External Storage",
+              "id": "data_traffic_spam",
+              "name": "Data/Traffic Spam",
               "type": "variant",
-              "priority": 4
+              "priority": 5
             },
             {
-              "id": "on_internal_storage",
-              "name": "On Internal Storage",
+              "id": "for_internal_asset",
+              "name": "For Internal Asset",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "for_publicly_accessible_asset",
+              "name": "For Publicly Accessible Asset",
+              "type": "variant",
+              "priority": 1
+            },
+            {
+              "id": "intentionally_public_sample_or_invalid",
+              "name": "Intentionally Public, Sample or Invalid",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "non_corporate_user",
+              "name": "Non-Corporate User",
               "type": "variant",
               "priority": 5
+            },
+            {
+              "id": "pay_per_use_abuse",
+              "name": "Pay-Per-Use Abuse",
+              "type": "variant",
+              "priority": 4
+            },
+            {
+              "id": "pii_leakage_exposure",
+              "name": "PII Leakage/Exposure",
+              "type": "variant",
+              "priority": null
             }
           ]
         },
         {
-          "id": "server_side_credentials_storage",
-          "name": "Server-Side Credentials Storage",
+          "id": "exif_geolocation_data_not_stripped_from_uploaded_images",
+          "name": "EXIF Geolocation Data Not Stripped From Uploaded Images",
           "type": "subcategory",
           "children": [
             {
-              "id": "plaintext",
-              "name": "Plaintext",
+              "id": "automatic_user_enumeration",
+              "name": "Automatic User Enumeration",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "manual_user_enumeration",
+              "name": "Manual User Enumeration",
               "type": "variant",
               "priority": 4
             }
           ]
         },
         {
-          "id": "non_sensitive_application_data_stored_unencrypted",
-          "name": "Non-Sensitive Application Data Stored Unencrypted",
+          "id": "internal_ip_disclosure",
+          "name": "Internal IP Disclosure",
           "type": "subcategory",
           "priority": 5
         },
         {
-          "id": "screen_caching_enabled",
-          "name": "Screen Caching Enabled",
+          "id": "json_hijacking",
+          "name": "JSON Hijacking",
           "type": "subcategory",
           "priority": 5
-        }
-      ]
-    },
-    {
-      "id": "lack_of_binary_hardening",
-      "name": "Lack of Binary Hardening",
-      "type": "category",
-      "children": [
+        },
         {
-          "id": "lack_of_exploit_mitigations",
-          "name": "Lack of Exploit Mitigations",
-          "type": "subcategory",
-          "priority": 5
-        },
-        {
-          "id": "lack_of_jailbreak_detection",
-          "name": "Lack of Jailbreak Detection",
-          "type": "subcategory",
-          "priority": 5
-        },
-        {
-          "id": "lack_of_obfuscation",
-          "name": "Lack of Obfuscation",
+          "id": "mixed_content",
+          "name": "Mixed Content (HTTPS Sourcing HTTP)",
           "type": "subcategory",
           "priority": 5
         },
         {
-          "id": "runtime_instrumentation_based",
-          "name": "Runtime Instrumentation-Based",
+          "id": "non_sensitive_token_in_url",
+          "name": "Non-Sensitive Token in URL",
           "type": "subcategory",
           "priority": 5
-        }
-      ]
-    },
-    {
-      "id": "insecure_data_transport",
-      "name": "Insecure Data Transport",
-      "type": "category",
-      "children": [
-        {
-          "id": "cleartext_transmission_of_sensitive_data",
-          "name": "Cleartext Transmission of Sensitive Data",
-          "type": "subcategory",
-          "priority": null
         },
         {
-          "id": "executable_download",
-          "name": "Executable Download",
+          "id": "sensitive_data_hardcoded",
+          "name": "Sensitive Data Hardcoded",
           "type": "subcategory",
           "children": [
             {
-              "id": "no_secure_integrity_check",
-              "name": "No Secure Integrity Check",
+              "id": "file_paths",
+              "name": "File Paths",
               "type": "variant",
-              "priority": 4
+              "priority": 5
             },
             {
-              "id": "secure_integrity_check",
-              "name": "Secure Integrity Check",
+              "id": "oauth_secret",
+              "name": "OAuth Secret",
               "type": "variant",
               "priority": 5
             }
           ]
-        }
-      ]
-    },
-    {
-      "id": "data_biases",
-      "name": "Data Biases",
-      "type": "category",
-      "children": [
-        {
-          "id": "representation_bias",
-          "name": "Representation Bias",
-          "type": "subcategory",
-          "priority": null
         },
         {
-          "id": "pre_existing_bias",
-          "name": "Pre-existing Bias",
-          "type": "subcategory",
-          "priority": null
-        }
-      ]
-    },
-    {
-      "id": "algorithmic_biases",
-      "name": "Algorithmic Biases",
-      "type": "category",
-      "children": [
-        {
-          "id": "processing_bias",
-          "name": "Processing Bias",
-          "type": "subcategory",
-          "priority": null
-        },
-        {
-          "id": "aggregation_bias",
-          "name": "Aggregation Bias",
-          "type": "subcategory",
-          "priority": null
-        }
-      ]
-    },
-    {
-      "id": "societal_biases",
-      "name": "Societal Biases",
-      "type": "category",
-      "children": [
-        {
-          "id": "confirmation_bias",
-          "name": "Confirmation Bias",
-          "type": "subcategory",
-          "priority": null
-        },
-        {
-          "id": "systemic_bias",
-          "name": "Systemic Bias",
-          "type": "subcategory",
-          "priority": null
-        }
-      ]
-    },
-    {
-      "id": "misinterpretation_biases",
-      "name": "Misinterpretation Biases",
-      "type": "category",
-      "children": [
-        {
-          "id": "context_ignorance",
-          "name": "Context Ignorance",
-          "type": "subcategory",
-          "priority": null
-        }
-      ]
-    },
-    {
-      "id": "developer_biases",
-      "name": "Developer Biases",
-      "type": "category",
-      "children": [
-        {
-          "id": "implicit_bias",
-          "name": "Implicit Bias",
-          "type": "subcategory",
-          "priority": null
-        }
-      ]
-    },
-    {
-      "id": "physical_security_issues",
-      "name": "Physical Security Issues",
-      "type": "category",
-      "children": [
-        {
-          "id": "bypass_of_physical_access_control",
-          "name": "Bypass of physical access control",
+          "id": "sensitive_token_in_url",
+          "name": "Sensitive Token in URL",
           "type": "subcategory",
-          "priority": null
+          "children": [
+            {
+              "id": "in_the_background",
+              "name": "In the Background",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "on_password_reset",
+              "name": "On Password Reset",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "user_facing",
+              "name": "User Facing",
+              "type": "variant",
+              "priority": 4
+            }
+          ]
         },
         {
-          "id": "weakness_in_physical_access_control",
-          "name": "Weakness in physical access control",
+          "id": "token_leakage_via_referer",
+          "name": "Token Leakage via Referer",
           "type": "subcategory",
           "children": [
             {
-              "id": "cloneable_key",
-              "name": "Cloneable Key",
+              "id": "over_http",
+              "name": "Over HTTP",
               "type": "variant",
-              "priority": null
+              "priority": 4
             },
             {
-              "id": "master_key_identification",
-              "name": "Master Key Identification",
+              "id": "password_reset_token",
+              "name": "Password Reset Token",
               "type": "variant",
-              "priority": null
+              "priority": 5
             },
             {
-              "id": "commonly_keyed_system",
-              "name": "Commonly Keyed System",
+              "id": "trusted_third_party",
+              "name": "Trusted 3rd Party",
               "type": "variant",
-              "priority": 2
+              "priority": 5
+            },
+            {
+              "id": "untrusted_third_party",
+              "name": "Untrusted 3rd Party",
+              "type": "variant",
+              "priority": 4
             }
           ]
-        }
-      ]
-    },
-    {
-      "id": "insecure_os_firmware",
-      "name": "Insecure OS/Firmware",
-      "type": "category",
-      "children": [
-        {
-          "id": "command_injection",
-          "name": "Command Injection",
-          "type": "subcategory",
-          "priority": 1
         },
         {
-          "id": "hardcoded_password",
-          "name": "Hardcoded Password",
+          "id": "via_localstorage_sessionstorage",
+          "name": "Via localStorage/sessionStorage",
           "type": "subcategory",
           "children": [
             {
-              "id": "privileged_user",
-              "name": "Privileged User",
+              "id": "non_sensitive_token",
+              "name": "Non-Sensitive Token",
               "type": "variant",
-              "priority": 1
+              "priority": 5
             },
             {
-              "id": "non_privileged_user",
-              "name": "Non-Privileged User",
+              "id": "sensitive_token",
+              "name": "Sensitive Token",
               "type": "variant",
-              "priority": 2
+              "priority": 4
             }
           ]
         },
         {
-          "id": "weakness_in_firmware_updates",
-          "name": "Weakness in Firmware Updates",
+          "id": "visible_detailed_error_page",
+          "name": "Visible Detailed Error/Debug Page",
           "type": "subcategory",
           "children": [
             {
-              "id": "firmware_cannot_be_updated",
-              "name": "Firmware cannot be updated",
+              "id": "descriptive_stack_trace",
+              "name": "Descriptive Stack Trace",
               "type": "variant",
-              "priority": null
+              "priority": 5
             },
             {
-              "id": "firmware_does_not_validate_update_integrity",
-              "name": "Firmware does not validate update integrity",
+              "id": "detailed_server_configuration",
+              "name": "Detailed Server Configuration",
               "type": "variant",
-              "priority": 3
+              "priority": 4
             },
             {
-              "id": "firmware_is_not_encrypted",
-              "name": "Firmware is not encrypted",
+              "id": "full_path_disclosure",
+              "name": "Full Path Disclosure",
               "type": "variant",
               "priority": 5
             }
           ]
         },
         {
-          "id": "kiosk_escape_or_breakout",
-          "name": "Kiosk Escape or Breakout",
-          "type": "subcategory",
-          "priority": null
-        },
-        {
-          "id": "poorly_configured_disk_encryption",
-          "name": "Poorly Configured Disk Encryption",
-          "type": "subcategory",
-          "priority": null
-        },
-        {
-          "id": "shared_credentials_on_storage",
-          "name": "Shared Credentials on Storage",
-          "type": "subcategory",
-          "priority": 3
-        },
-        {
-          "id": "over_permissioned_credentials_on_storage",
-          "name": "Over-Permissioned Credentials on Storage",
-          "type": "subcategory",
-          "priority": 2
-        },
-        {
-          "id": "local_administrator_on_default_environment",
-          "name": "Local Administrator on default environment",
+          "id": "weak_password_reset_implementation",
+          "name": "Weak Password Reset Implementation",
           "type": "subcategory",
-          "priority": 2
+          "children": [
+            {
+              "id": "password_reset_token_sent_over_http",
+              "name": "Password Reset Token Sent Over HTTP",
+              "type": "variant",
+              "priority": 4
+            },
+            {
+              "id": "token_leakage_via_host_header_poisoning",
+              "name": "Token Leakage via Host Header Poisoning",
+              "type": "variant",
+              "priority": 2
+            }
+          ]
         },
         {
-          "id": "poorly_configured_operating_system_security",
-          "name": "Poorly Configured Operating System Security",
+          "id": "xssi",
+          "name": "Cross Site Script Inclusion (XSSI)",
           "type": "subcategory",
           "priority": null
-        },
+        }
+      ]
+    },
+    {
+      "id": "server_security_misconfiguration",
+      "name": "Server Security Misconfiguration",
+      "type": "category",
+      "children": [
         {
-          "id": "recovery_of_disk_contains_sensitive_material",
-          "name": "Recovery of Disk Contains Sensitive Material",
+          "id": "bitsquatting",
+          "name": "Bitsquatting",
           "type": "subcategory",
-          "priority": null
+          "priority": 5
         },
         {
-          "id": "failure_to_remove_sensitive_artifacts_from_disk",
-          "name": "Failure to Remove Sensitive Artifacts from Disk",
+          "id": "cache_poisoning",
+          "name": "Cache Poisoning",
           "type": "subcategory",
           "priority": null
         },
         {
-          "id": "data_not_encrypted_at_rest",
-          "name": "Data not encrypted at rest",
+          "id": "captcha",
+          "name": "CAPTCHA",
           "type": "subcategory",
           "children": [
             {
-              "id": "sensitive",
-              "name": "Sensitive",
+              "id": "brute_force",
+              "name": "Brute Force",
               "type": "variant",
-              "priority": null
+              "priority": 5
             },
             {
-              "id": "non_sensitive",
-              "name": "Non sensitive",
+              "id": "implementation_vulnerability",
+              "name": "Implementation Vulnerability",
+              "type": "variant",
+              "priority": 4
+            },
+            {
+              "id": "missing",
+              "name": "Missing",
               "type": "variant",
               "priority": 5
             }
           ]
-        }
-      ]
-    },
-    {
-      "id": "cryptographic_weakness",
-      "name": "Cryptographic Weakness",
-      "type": "category",
-      "children": [
+        },
         {
-          "id": "insufficient_entropy",
-          "name": "Insufficient Entropy",
+          "id": "clickjacking",
+          "name": "Clickjacking",
           "type": "subcategory",
           "children": [
             {
-              "id": "limited_rng_entropy_source",
-              "name": "Limited Random Number Generator (RNG) Entropy Source",
-              "type": "variant",
-              "priority": 4
-            },
-            {
-              "id": "use_of_trng_for_nonsecurity_purpose",
-              "name": "Use of True Random Number Generator (TRNG) for Non-Security Purpose",
+              "id": "form_input",
+              "name": "Form Input",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "prng_seed_reuse",
-              "name": "Pseudo-Random Number Generator (PRNG) Seed Reuse",
+              "id": "non_sensitive_action",
+              "name": "Non-Sensitive Action",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "predictable_prng_seed",
-              "name": "Predictable Pseudo-Random Number Generator (PRNG) Seed",
+              "id": "sensitive_action",
+              "name": "Sensitive Click-Based Action",
               "type": "variant",
               "priority": 4
-            },
+            }
+          ]
+        },
+        {
+          "id": "cookie_scoped_to_parent_domain",
+          "name": "Cookie Scoped to Parent Domain",
+          "type": "subcategory",
+          "priority": 5
+        },
+        {
+          "id": "dbms_misconfiguration",
+          "name": "Database Management System (DBMS) Misconfiguration",
+          "type": "subcategory",
+          "children": [
             {
-              "id": "small_seed_space_in_prng",
-              "name": "Small Seed Space in Pseudo-Random Number Generator (PRNG)",
+              "id": "excessively_privileged_user_dba",
+              "name": "Excessively Privileged User / DBA",
               "type": "variant",
               "priority": 4
-            },
+            }
+          ]
+        },
+        {
+          "id": "directory_listing_enabled",
+          "name": "Directory Listing Enabled",
+          "type": "subcategory",
+          "children": [
             {
-              "id": "initialization_vector_reuse",
-              "name": "Initialization Vector (IV) Reuse",
+              "id": "non_sensitive_data_exposure",
+              "name": "Non-Sensitive Data Exposure",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "predictable_initialization_vector",
-              "name": "Predictable Initialization Vector (IV)",
+              "id": "sensitive_data_exposure",
+              "name": "Sensitive Data Exposure",
               "type": "variant",
-              "priority": 4
+              "priority": null
             }
           ]
         },
         {
-          "id": "insecure_implementation",
-          "name": "Insecure Implementation",
+          "id": "email_verification_bypass",
+          "name": "Email Verification Bypass",
+          "type": "subcategory",
+          "priority": 5
+        },
+        {
+          "id": "exposed_admin_portal",
+          "name": "Exposed Admin Portal",
           "type": "subcategory",
           "children": [
             {
-              "id": "missing_cryptographic_step",
-              "name": "Missing Cryptographic Step",
-              "type": "variant",
-              "priority": null
-            },
-            {
-              "id": "improper_following_of_specification",
-              "name": "Improper Following of Specification (Other)",
+              "id": "to_internet",
+              "name": "To Internet",
               "type": "variant",
-              "priority": null
+              "priority": 5
             }
           ]
         },
         {
-          "id": "weak_hash",
-          "name": "Weak Hash",
+          "id": "fingerprinting_banner_disclosure",
+          "name": "Fingerprinting/Banner Disclosure",
+          "type": "subcategory",
+          "priority": 5
+        },
+        {
+          "id": "insecure_ssl",
+          "name": "Insecure SSL",
           "type": "subcategory",
           "children": [
             {
-              "id": "lack_of_salt",
-              "name": "Lack of Salt",
+              "id": "certificate_error",
+              "name": "Certificate Error",
               "type": "variant",
-              "priority": null
+              "priority": 5
             },
             {
-              "id": "use_of_predictable_salt",
-              "name": "Use of Predictable Salt",
+              "id": "insecure_cipher_suite",
+              "name": "Insecure Cipher Suite",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "predictable_hash_collision",
-              "name": "Predictable Hash Collision",
+              "id": "lack_of_forward_secrecy",
+              "name": "Lack of Forward Secrecy",
               "type": "variant",
-              "priority": null
+              "priority": 5
             }
           ]
         },
         {
-          "id": "insufficient_verification_of_data_authenticity",
-          "name": "Insufficient Verification of Data Authenticity",
+          "id": "lack_of_password_confirmation",
+          "name": "Lack of Password Confirmation",
           "type": "subcategory",
           "children": [
             {
-              "id": "identity_check_value",
-              "name": "Integrity Check Value (ICV)",
+              "id": "change_email_address",
+              "name": "Change Email Address",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "change_password",
+              "name": "Change Password",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "delete_account",
+              "name": "Delete Account",
               "type": "variant",
               "priority": 4
             },
             {
-              "id": "cryptographic_signature",
-              "name": "Cryptographic Signature",
+              "id": "manage_two_fa",
+              "name": "Manage 2FA",
               "type": "variant",
-              "priority": null
+              "priority": 5
             }
           ]
         },
         {
-          "id": "insecure_key_generation",
-          "name": "Insecure Key Generation",
+          "id": "lack_of_security_headers",
+          "name": "Lack of Security Headers",
           "type": "subcategory",
           "children": [
             {
-              "id": "improper_asymmetric_prime_selection",
-              "name": "Improper Asymmetric Prime Selection",
+              "id": "cache_control_for_a_non_sensitive_page",
+              "name": "Cache-Control for a Non-Sensitive Page",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "cache_control_for_a_sensitive_page",
+              "name": "Cache-Control for a Sensitive Page",
               "type": "variant",
-              "priority": null
+              "priority": 4
             },
             {
-              "id": "improper_asymmetric_exponent_selection",
-              "name": "Improper Asymmetric Exponent Selection",
+              "id": "content_security_policy",
+              "name": "Content-Security-Policy",
               "type": "variant",
-              "priority": null
+              "priority": 5
             },
             {
-              "id": "insufficient_key_stretching",
-              "name": "Insufficient Key Stretching",
+              "id": "content_security_policy_report_only",
+              "name": "Content-Security-Policy-Report-Only",
               "type": "variant",
-              "priority": null
+              "priority": 5
             },
             {
-              "id": "insufficient_key_space",
-              "name": "Insufficient Key Space",
+              "id": "public_key_pins",
+              "name": "Public-Key-Pins",
               "type": "variant",
-              "priority": 3
+              "priority": 5
             },
             {
-              "id": "key_exchange_without_entity_authentication",
-              "name": "Key Exchage Without Entity Authentication",
+              "id": "strict_transport_security",
+              "name": "Strict-Transport-Security",
               "type": "variant",
-              "priority": 4
-            }
-          ]
-        },
-        {
-          "id": "key_reuse",
-          "name": "Key Reuse",
-          "type": "subcategory",
-          "children": [
+              "priority": 5
+            },
             {
-              "id": "lack_of_perfect_forward_secrecy",
-              "name": "Lack of Perfect Forward Secrecy",
+              "id": "x_content_security_policy",
+              "name": "X-Content-Security-Policy",
               "type": "variant",
-              "priority": 4
+              "priority": 5
             },
             {
-              "id": "intra_environment",
-              "name": "Intra-Environment",
+              "id": "x_content_type_options",
+              "name": "X-Content-Type-Options",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "inter_environment",
-              "name": "Inter-Environment",
+              "id": "x_frame_options",
+              "name": "X-Frame-Options",
               "type": "variant",
-              "priority": 2
-            }
-          ]
-        },
-        {
-          "id": "broken_cryptography",
-          "name": "Broken Cryptography",
-          "type": "subcategory",
-          "children": [
+              "priority": 5
+            },
             {
-              "id": "use_of_broken_cryptographic_primitive",
-              "name": "Use of Broken Cryptographic Primitive",
+              "id": "x_webkit_csp",
+              "name": "X-Webkit-CSP",
               "type": "variant",
-              "priority": 3
+              "priority": 5
             },
             {
-              "id": "use_of_vulnerable_cryptographic_library",
-              "name": "Use of Vulnerable Cryptographic Library",
+              "id": "x_xss_protection",
+              "name": "X-XSS-Protection",
               "type": "variant",
-              "priority": 4
+              "priority": 5
             }
           ]
         },
         {
-          "id": "side_channel_attack",
-          "name": "Side-Channel Attack",
+          "id": "mail_server_misconfiguration",
+          "name": "Mail Server Misconfiguration",
           "type": "subcategory",
           "children": [
             {
-              "id": "padding_oracle_attack",
-              "name": "Padding Oracle Attack",
+              "id": "email_spoofing_on_non_email_domain",
+              "name": "Email Spoofing on Non-Email Domain",
               "type": "variant",
-              "priority": 4
+              "priority": 5
             },
             {
-              "id": "timing_attack",
-              "name": "Timing Attack",
+              "id": "email_spoofing_to_inbox_due_to_missing_or_misconfigured_dmarc_on_email_domain",
+              "name": "Email Spoofing to Inbox due to Missing or Misconfigured DMARC on Email Domain",
               "type": "variant",
               "priority": 4
             },
             {
-              "id": "power_analysis_attack",
-              "name": "Power Analysis Attack",
+              "id": "email_spoofing_to_spam_folder",
+              "name": "Email Spoofing to Spam Folder",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "emanations_attack",
-              "name": "Emanations Attack",
+              "id": "missing_or_misconfigured_spf_and_or_dkim",
+              "name": "Missing or Misconfigured SPF and/or DKIM",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "differential_fault_analysis",
-              "name": "Differential Fault Analysis",
+              "id": "no_spoofing_protection_on_email_domain",
+              "name": "No Spoofing Protection on Email Domain",
               "type": "variant",
-              "priority": null
+              "priority": 3
             }
           ]
         },
         {
-          "id": "use_of_expired_cryptographic_key_or_cert",
-          "name": "Use of Expired Cryptographic Key (or Certificate)",
-          "type": "subcategory",
-          "priority": 4
-        },
-        {
-          "id": "incomplete_cleanup_of_keying_material",
-          "name": "Incomplete Cleanup of Keying Material",
-          "type": "subcategory",
-          "priority": 5
-        }
-      ]
-    },
-    {
-      "id": "privacy_concerns",
-      "name": "Privacy Concerns",
-      "type": "category",
-      "children": [
-        {
-          "id": "unnecessary_data_collection",
-          "name": "Unnecessary Data Collection",
+          "id": "misconfigured_dns",
+          "name": "Misconfigured DNS",
           "type": "subcategory",
           "children": [
             {
-              "id": "wifi_ssid_password",
-              "name": "WiFi SSID+Password",
+              "id": "missing_caa_record",
+              "name": "Missing Certification Authority Authorization (CAA) Record",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "subdomain_takeover",
+              "name": "Subdomain Takeover",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "zone_transfer",
+              "name": "Zone Transfer",
               "type": "variant",
               "priority": 4
             }
           ]
-        }
-      ]
-    },
-    {
-      "id": "network_security_misconfiguration",
-      "name": "Network Security Misconfiguration",
-      "type": "category",
-      "children": [
+        },
         {
-          "id": "telnet_enabled",
-          "name": "Telnet Enabled",
+          "id": "missing_dnssec",
+          "name": "Missing DNSSEC",
           "type": "subcategory",
           "priority": 5
-        }
-      ]
-    },
-    {
-      "id": "mobile_security_misconfiguration",
-      "name": "Mobile Security Misconfiguration",
-      "type": "category",
-      "children": [
+        },
         {
-          "id": "ssl_certificate_pinning",
-          "name": "SSL Certificate Pinning",
+          "id": "missing_secure_or_httponly_cookie_flag",
+          "name": "Missing Secure or HTTPOnly Cookie Flag",
           "type": "subcategory",
           "children": [
             {
-              "id": "absent",
-              "name": "Absent",
+              "id": "non_session_cookie",
+              "name": "Non-Session Cookie",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "defeatable",
-              "name": "Defeatable",
+              "id": "session_token",
+              "name": "Session Token",
               "type": "variant",
-              "priority": 5
+              "priority": 4
             }
           ]
         },
         {
-          "id": "tapjacking",
-          "name": "Tapjacking",
-          "type": "subcategory",
-          "priority": 5
-        },
-        {
-          "id": "clipboard_enabled",
-          "name": "Clipboard Enabled",
+          "id": "missing_subresource_integrity",
+          "name": "Missing Subresource Integrity",
           "type": "subcategory",
           "priority": 5
         },
         {
-          "id": "auto_backup_allowed_by_default",
-          "name": "Auto Backup Allowed by Default",
-          "type": "subcategory",
-          "priority": 5
-        }
-      ]
-    },
-    {
-      "id": "client_side_injection",
-      "name": "Client-Side Injection",
-      "type": "category",
-      "children": [
-        {
-          "id": "binary_planting",
-          "name": "Binary Planting",
+          "id": "no_rate_limiting_on_form",
+          "name": "No Rate Limiting on Form",
           "type": "subcategory",
           "children": [
             {
-              "id": "privilege_escalation",
-              "name": "Default Folder Privilege Escalation",
+              "id": "change_password",
+              "name": "Change Password",
               "type": "variant",
-              "priority": 3
+              "priority": 5
             },
             {
-              "id": "non_default_folder_privilege_escalation",
-              "name": "Non-Default Folder Privilege Escalation",
+              "id": "email_triggering",
+              "name": "Email-Triggering",
               "type": "variant",
-              "priority": 5
+              "priority": 4
             },
             {
-              "id": "no_privilege_escalation",
-              "name": "No Privilege Escalation",
+              "id": "login",
+              "name": "Login",
               "type": "variant",
-              "priority": 5
+              "priority": 4
+            },
+            {
+              "id": "registration",
+              "name": "Registration",
+              "type": "variant",
+              "priority": 4
+            },
+            {
+              "id": "sms_triggering",
+              "name": "SMS-Triggering",
+              "type": "variant",
+              "priority": 4
             }
           ]
-        }
-      ]
-    },
-    {
-      "id": "automotive_security_misconfiguration",
-      "name": "Automotive Security Misconfiguration",
-      "type": "category",
-      "children": [
+        },
         {
-          "id": "infotainment_radio_head_unit",
-          "name": "Infotainment, Radio Head Unit",
+          "id": "oauth_misconfiguration",
+          "name": "OAuth Misconfiguration",
           "type": "subcategory",
-          "children": [
-            {
-              "id": "sensitive_data_leakage_exposure",
-              "name": "Sensitive data Leakage/Exposure",
-              "type": "variant",
-              "priority": 1
-            },
+          "children": [
             {
-              "id": "ota_firmware_manipulation",
-              "name": "OTA Firmware Manipulation",
+              "id": "account_squatting",
+              "name": "Account Squatting",
               "type": "variant",
-              "priority": 2
+              "priority": 4
             },
             {
-              "id": "code_execution_can_bus_pivot",
-              "name": "Code Execution (CAN Bus Pivot)",
+              "id": "account_takeover",
+              "name": "Account Takeover",
               "type": "variant",
               "priority": 2
             },
             {
-              "id": "code_execution_no_can_bus_pivot",
-              "name": "Code Execution (No CAN Bus Pivot)",
-              "type": "variant",
-              "priority": 3
-            },
-            {
-              "id": "unauthorized_access_to_services",
-              "name": "Unauthorized Access to Services (API / Endpoints)",
+              "id": "insecure_redirect_uri",
+              "name": "Insecure Redirect URI",
               "type": "variant",
-              "priority": 3
+              "priority": null
             },
             {
-              "id": "source_code_dump",
-              "name": "Source Code Dump",
+              "id": "missing_state_parameter",
+              "name": "Missing/Broken State Parameter",
               "type": "variant",
-              "priority": 4
-            },
+              "priority": null
+            }
+          ]
+        },
+        {
+          "id": "path_traversal",
+          "name": "Path Traversal",
+          "type": "subcategory",
+          "priority": null
+        },
+        {
+          "id": "potentially_unsafe_http_method_enabled",
+          "name": "Potentially Unsafe HTTP Method Enabled",
+          "type": "subcategory",
+          "children": [
             {
-              "id": "dos_brick",
-              "name": "Denial of Service (DoS / Brick)",
+              "id": "options",
+              "name": "OPTIONS",
               "type": "variant",
-              "priority": 4
+              "priority": 5
             },
             {
-              "id": "default_credentials",
-              "name": "Default Credentials",
+              "id": "trace",
+              "name": "TRACE",
               "type": "variant",
-              "priority": 4
+              "priority": 5
             }
           ]
         },
         {
-          "id": "rf_hub",
-          "name": "RF Hub",
+          "id": "race_condition",
+          "name": "Race Condition",
+          "type": "subcategory",
+          "priority": null
+        },
+        {
+          "id": "request_smuggling",
+          "name": "HTTP Request Smuggling",
+          "type": "subcategory",
+          "priority": null
+        },
+        {
+          "id": "rfd",
+          "name": "Reflected File Download (RFD)",
+          "type": "subcategory",
+          "priority": 5
+        },
+        {
+          "id": "same_site_scripting",
+          "name": "Same-Site Scripting",
+          "type": "subcategory",
+          "priority": 5
+        },
+        {
+          "id": "server_side_request_forgery_ssrf",
+          "name": "Server-Side Request Forgery (SSRF)",
           "type": "subcategory",
           "children": [
             {
-              "id": "key_fob_cloning",
-              "name": "Key Fob Cloning",
+              "id": "external_dns_query_only",
+              "name": "External - DNS Query Only",
               "type": "variant",
-              "priority": 1
+              "priority": 5
             },
             {
-              "id": "can_injection_interaction",
-              "name": "CAN Injection / Interaction",
+              "id": "external_low_impact",
+              "name": "External - Low impact",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "internal_high_impact",
+              "name": "Internal High Impact",
               "type": "variant",
               "priority": 2
             },
             {
-              "id": "data_leakage_pull_encryption_mechanism",
-              "name": "Data Leakage / Pull Encryption Mechanism",
+              "id": "internal_scan_and_or_medium_impact",
+              "name": "Internal Scan and/or Medium Impact",
               "type": "variant",
               "priority": 3
-            },
+            }
+          ]
+        },
+        {
+          "id": "software_package_takeover",
+          "name": "Software Package Takeover",
+          "type": "subcategory",
+          "priority": null
+        },
+        {
+          "id": "ssl_attack_breach_poodle_etc",
+          "name": "SSL Attack (BREACH, POODLE etc.)",
+          "type": "subcategory",
+          "priority": null
+        },
+        {
+          "id": "unsafe_cross_origin_resource_sharing",
+          "name": "Unsafe Cross-Origin Resource Sharing",
+          "type": "subcategory",
+          "priority": null
+        },
+        {
+          "id": "unsafe_file_upload",
+          "name": "Unsafe File Upload",
+          "type": "subcategory",
+          "children": [
             {
-              "id": "unauthorized_access_turn_on",
-              "name": "Unauthorized Access / Turn On",
+              "id": "file_extension_filter_bypass",
+              "name": "File Extension Filter Bypass",
               "type": "variant",
-              "priority": 4
+              "priority": 5
             },
             {
-              "id": "roll_jam",
-              "name": "Roll Jam",
+              "id": "no_antivirus",
+              "name": "No Antivirus",
               "type": "variant",
               "priority": 5
             },
             {
-              "id": "replay",
-              "name": "Replay",
+              "id": "no_size_limit",
+              "name": "No Size Limit",
               "type": "variant",
               "priority": 5
-            },
+            }
+          ]
+        },
+        {
+          "id": "username_enumeration",
+          "name": "Username/Email Enumeration",
+          "type": "subcategory",
+          "children": [
             {
-              "id": "relay",
-              "name": "Relay",
+              "id": "brute_force",
+              "name": "Brute Force",
               "type": "variant",
               "priority": 5
             }
           ]
         },
         {
-          "id": "can",
-          "name": "CAN",
+          "id": "using_default_credentials",
+          "name": "Using Default Credentials",
+          "type": "subcategory",
+          "priority": 1
+        },
+        {
+          "id": "waf_bypass",
+          "name": "Web Application Firewall (WAF) Bypass",
           "type": "subcategory",
           "children": [
             {
-              "id": "injection_battery_management_system",
-              "name": "Injection (Battery Management System)",
+              "id": "direct_server_access",
+              "name": "Direct Server Access",
               "type": "variant",
-              "priority": 3
-            },
+              "priority": 4
+            }
+          ]
+        }
+      ]
+    },
+    {
+      "id": "server_side_injection",
+      "name": "Server-Side Injection",
+      "type": "category",
+      "children": [
+        {
+          "id": "content_spoofing",
+          "name": "Content Spoofing",
+          "type": "subcategory",
+          "children": [
             {
-              "id": "injection_steering_control",
-              "name": "Injection (Steering Control)",
+              "id": "email_html_injection",
+              "name": "Email HTML Injection",
               "type": "variant",
-              "priority": 3
+              "priority": 4
             },
             {
-              "id": "injection_pyrotechnical_device_deployment_tool",
-              "name": "Injection (Pyrotechnical Device Deployment Tool)",
+              "id": "email_hyperlink_injection_based_on_email_provider",
+              "name": "Email Hyperlink Injection Based on Email Provider",
               "type": "variant",
-              "priority": 3
+              "priority": 5
             },
             {
-              "id": "injection_headlights",
-              "name": "Injection (Headlights)",
+              "id": "external_authentication_injection",
+              "name": "External Authentication Injection",
               "type": "variant",
-              "priority": 3
+              "priority": 4
             },
             {
-              "id": "injection_sensors",
-              "name": "Injection (Sensors)",
+              "id": "flash_based_external_authentication_injection",
+              "name": "Flash Based External Authentication Injection",
               "type": "variant",
-              "priority": 3
+              "priority": 5
             },
             {
-              "id": "injection_vehicle_anti_theft_systems",
-              "name": "Injection (Vehicle Anti-theft Systems)",
+              "id": "homograph_idn_based",
+              "name": "Homograph/IDN-Based",
               "type": "variant",
-              "priority": 3
+              "priority": 5
             },
             {
-              "id": "injection_powertrain",
-              "name": "Injection (Powertrain)",
+              "id": "html_content_injection",
+              "name": "HTML Content Injection",
               "type": "variant",
-              "priority": 3
+              "priority": 5
             },
             {
-              "id": "injection_basic_safety_message",
-              "name": "Injection (Basic Safety Message)",
+              "id": "iframe_injection",
+              "name": "iframe Injection",
               "type": "variant",
               "priority": 3
             },
             {
-              "id": "injection_disallowed_messages",
-              "name": "Injection (Disallowed Messages)",
+              "id": "impersonation_via_broken_link_hijacking",
+              "name": "Impersonation via Broken Link Hijacking",
               "type": "variant",
               "priority": 4
             },
             {
-              "id": "injection_dos",
-              "name": "Injection (DoS)",
-              "type": "variant",
-              "priority": 4
-            }
-          ]
-        },
-        {
-          "id": "battery_management_system",
-          "name": "Battery Management System",
-          "type": "subcategory",
-          "children": [
-            {
-              "id": "firmware_dump",
-              "name": "Firmware Dump",
+              "id": "rtlo",
+              "name": "Right-to-Left Override (RTLO)",
               "type": "variant",
-              "priority": 3
+              "priority": 5
             },
-            {
-              "id": "fraudulent_interface",
-              "name": "Fraudulent Interface",
+            {
+              "id": "text_injection",
+              "name": "Text Injection",
               "type": "variant",
-              "priority": 4
+              "priority": 5
             }
           ]
         },
         {
-          "id": "gnss_gps",
-          "name": "GNSS / GPS",
+          "id": "file_inclusion",
+          "name": "File Inclusion",
           "type": "subcategory",
           "children": [
             {
-              "id": "spoofing",
-              "name": "Spoofing",
+              "id": "local",
+              "name": "Local",
               "type": "variant",
-              "priority": 4
+              "priority": 1
             }
           ]
         },
         {
-          "id": "immobilizer",
-          "name": "Immobilizer",
+          "id": "http_response_manipulation",
+          "name": "HTTP Response Manipulation",
           "type": "subcategory",
           "children": [
             {
-              "id": "engine_start",
-              "name": "Engine Start",
+              "id": "response_splitting_crlf",
+              "name": "Response Splitting (CRLF)",
               "type": "variant",
               "priority": 3
             }
           ]
         },
         {
-          "id": "abs",
-          "name": "Automatic Braking System (ABS)",
+          "id": "ldap_injection",
+          "name": "LDAP Injection",
+          "type": "subcategory",
+          "priority": null
+        },
+        {
+          "id": "parameter_pollution",
+          "name": "Parameter Pollution",
           "type": "subcategory",
           "children": [
             {
-              "id": "unintended_acceleration_brake",
-              "name": "Unintended Acceleration / Brake",
+              "id": "social_media_sharing_buttons",
+              "name": "Social Media Sharing Buttons",
               "type": "variant",
-              "priority": 3
+              "priority": 5
             }
           ]
         },
         {
-          "id": "rsu",
-          "name": "Roadside Unit (RSU)",
+          "id": "remote_code_execution_rce",
+          "name": "Remote Code Execution (RCE)",
+          "type": "subcategory",
+          "priority": 1
+        },
+        {
+          "id": "sql_injection",
+          "name": "SQL Injection",
+          "type": "subcategory",
+          "priority": 1
+        },
+        {
+          "id": "ssti",
+          "name": "Server-Side Template Injection (SSTI)",
           "type": "subcategory",
           "children": [
             {
-              "id": "sybil_attack",
-              "name": "Sybil Attack",
+              "id": "basic",
+              "name": "Basic",
               "type": "variant",
               "priority": 4
+            },
+            {
+              "id": "custom",
+              "name": "Custom",
+              "type": "variant",
+              "priority": null
             }
           ]
+        },
+        {
+          "id": "xml_external_entity_injection_xxe",
+          "name": "XML External Entity Injection (XXE)",
+          "type": "subcategory",
+          "priority": 1
         }
       ]
     },
     {
-      "id": "ai_application_security",
-      "name": "AI Application Security",
+      "id": "smart_contract_misconfiguration",
+      "name": "Smart Contract Misconfiguration",
       "type": "category",
       "children": [
         {
-          "id": "llm_security",
-          "name": "Large Language Model (LLM) Security",
+          "id": "bypass_of_function_modifiers_and_checks",
+          "name": "Bypass of Function Modifiers and Checks",
+          "type": "subcategory",
+          "priority": null
+        },
+        {
+          "id": "function_level_denial_of_service",
+          "name": "Function-level Denial of Service",
+          "type": "subcategory",
+          "priority": 3
+        },
+        {
+          "id": "improper_decimals_implementation",
+          "name": "Improper Decimals Implementation",
+          "type": "subcategory",
+          "priority": 4
+        },
+        {
+          "id": "improper_fee_implementation",
+          "name": "Improper Fee Implementation",
+          "type": "subcategory",
+          "priority": 3
+        },
+        {
+          "id": "improper_use_of_modifier",
+          "name": "Improper Use of Modifier",
+          "type": "subcategory",
+          "priority": 4
+        },
+        {
+          "id": "inaccurate_rounding_calculation",
+          "name": "Inaccurate Rounding Calculation",
+          "type": "subcategory",
+          "priority": null
+        },
+        {
+          "id": "integer_overflow_underflow",
+          "name": "Integer Overflow / Underflow",
+          "type": "subcategory",
+          "priority": 2
+        },
+        {
+          "id": "irreversible_function_call",
+          "name": "Irreversible Function Call",
+          "type": "subcategory",
+          "priority": 3
+        },
+        {
+          "id": "malicious_superuser_risk",
+          "name": "Malicious Superuser Risk",
+          "type": "subcategory",
+          "priority": 3
+        },
+        {
+          "id": "reentrancy_attack",
+          "name": "Reentrancy Attack",
+          "type": "subcategory",
+          "priority": 1
+        },
+        {
+          "id": "smart_contract_owner_takeover",
+          "name": "Smart Contract Owner Takeover",
+          "type": "subcategory",
+          "priority": 1
+        },
+        {
+          "id": "unauthorized_smart_contract_approval",
+          "name": "Unauthorized Smart Contract Approval",
+          "type": "subcategory",
+          "priority": 2
+        },
+        {
+          "id": "unauthorized_transfer_of_funds",
+          "name": "Unauthorized Transfer of Funds",
+          "type": "subcategory",
+          "priority": 1
+        },
+        {
+          "id": "uninitialized_variables",
+          "name": "Uninitialized Variables",
+          "type": "subcategory",
+          "priority": 1
+        }
+      ]
+    },
+    {
+      "id": "societal_biases",
+      "name": "Societal Biases",
+      "type": "category",
+      "children": [
+        {
+          "id": "confirmation_bias",
+          "name": "Confirmation Bias",
+          "type": "subcategory",
+          "priority": null
+        },
+        {
+          "id": "systemic_bias",
+          "name": "Systemic Bias",
+          "type": "subcategory",
+          "priority": null
+        }
+      ]
+    },
+    {
+      "id": "unvalidated_redirects_and_forwards",
+      "name": "Unvalidated Redirects and Forwards",
+      "type": "category",
+      "children": [
+        {
+          "id": "lack_of_security_speed_bump_page",
+          "name": "Lack of Security Speed Bump Page",
+          "type": "subcategory",
+          "priority": 5
+        },
+        {
+          "id": "open_redirect",
+          "name": "Open Redirect",
           "type": "subcategory",
           "children": [
             {
-              "id": "prompt_injection",
-              "name": "Prompt Injection",
+              "id": "flash_based",
+              "name": "Flash-Based",
               "type": "variant",
-              "priority": 1
+              "priority": 5
             },
             {
-              "id": "llm_output_handling",
-              "name": "LLM Output Handling",
+              "id": "get_based",
+              "name": "GET-Based",
               "type": "variant",
-              "priority": 1
+              "priority": 4
             },
             {
-              "id": "training_data_poisoning",
-              "name": "Training Data Poisoning",
+              "id": "header_based",
+              "name": "Header-Based",
               "type": "variant",
-              "priority": 1
+              "priority": 5
             },
             {
-              "id": "excessive_agency_permission_manipulation",
-              "name": "Excessive Agency/Permission Manipulation",
+              "id": "post_based",
+              "name": "POST-Based",
               "type": "variant",
-              "priority": 2
+              "priority": 5
+            }
+          ]
+        },
+        {
+          "id": "tabnabbing",
+          "name": "Tabnabbing",
+          "type": "subcategory",
+          "priority": 5
+        }
+      ]
+    },
+    {
+      "id": "using_components_with_known_vulnerabilities",
+      "name": "Using Components with Known Vulnerabilities",
+      "type": "category",
+      "children": [
+        {
+          "id": "captcha_bypass",
+          "name": "Captcha Bypass",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "ocr_optical_character_recognition",
+              "name": "OCR (Optical Character Recognition)",
+              "type": "variant",
+              "priority": 5
             }
           ]
+        },
+        {
+          "id": "outdated_software_version",
+          "name": "Outdated Software Version",
+          "type": "subcategory",
+          "priority": 5
+        },
+        {
+          "id": "rosetta_flash",
+          "name": "Rosetta Flash",
+          "type": "subcategory",
+          "priority": 5
         }
       ]
     },
     {
-      "id": "indicators_of_compromise",
-      "name": "Indicators of Compromise",
+      "id": "zero_knowledge_security_misconfiguration",
+      "name": "Zero Knowledge Security Misconfiguration",
       "type": "category",
-      "priority": null
+      "children": [
+        {
+          "id": "deanonymization_of_data",
+          "name": "Deanonymization of Data",
+          "type": "subcategory",
+          "priority": 1
+        },
+        {
+          "id": "improper_proof_validation_and_finalization_logic",
+          "name": "Improper Proof Validation and Finalization Logic",
+          "type": "subcategory",
+          "priority": 1
+        },
+        {
+          "id": "misconfigured_trusted_setup",
+          "name": "Misconfigured Trusted Setup",
+          "type": "subcategory",
+          "priority": null
+        },
+        {
+          "id": "mismatching_bit_lengths",
+          "name": "Mismatching Bit Lengths",
+          "type": "subcategory",
+          "priority": null
+        },
+        {
+          "id": "missing_constraint",
+          "name": "Missing Constraint",
+          "type": "subcategory",
+          "priority": null
+        },
+        {
+          "id": "missing_range_check",
+          "name": "Missing Range Check",
+          "type": "subcategory",
+          "priority": null
+        }
+      ]
     }
   ]
-}
+}
\ No newline at end of file

From 1b0aa8f18f27f62da3909671d610d1450ad459ee Mon Sep 17 00:00:00 2001
From: Timmy <106584457+TimmyBugcrowd@users.noreply.github.com>
Date: Thu, 16 Jan 2025 13:41:17 +0100
Subject: [PATCH 46/54] Updating IDOR's (#435)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* Updating IDOR's

From:
P1 – Broken Access Control (BAC) > Insecure Direct Object References (IDOR) > Read/Edit/Delete Sensitive Information/Iterable Object Identifiers
P2 – Broken Access Control (BAC) > Insecure Direct Object References (IDOR) > Edit/Delete Sensitive Information/Iterable Object Identifiers
P3 – Broken Access Control (BAC) > Insecure Direct Object References (IDOR) > Read Sensitive Information/Iterable Object Identifiers
P4 – Broken Access Control (BAC) > Insecure Direct Object References (IDOR) > Read/Edit/Delete Sensitive Information/Complex Object Identifiers(GUID)
P5 – Broken Access Control (BAC) > Insecure Direct Object References (IDOR) > Read/Edit/Delete Non-Sensitive Information

To:
P1 -  Broken Access Control (BAC) > Insecure Direct Object References (IDOR) >  Modify/View Sensitive Information(Iterable Object Identifiers)
P2  - Broken Access Control (BAC) > Insecure Direct Object References (IDOR) >  Modify Sensitive Information(Iterable Object Identifiers)
P3  - Broken Access Control (BAC) > Insecure Direct Object References (IDOR) > View Sensitive Information(Iterable Object Identifiers)
P4  - Broken Access Control (BAC) > Insecure Direct Object References (IDOR) > Modify/View Sensitive Information(Complex Object Identifiers GUID/UUID)
P5  - Broken Access Control (BAC) > Insecure Direct Object References (IDOR) > View Non-Sensitive Information

* Additional Files

* Rebase changes

---------

Co-authored-by: Abhinav Nain <abhinav.nain@bugcrowd.com>
---
 deprecated-node-mapping.json                  | 15 +++++++++++
 .../secure-code-warrior-links.json            | 10 +++----
 vulnerability-rating-taxonomy.json            | 26 +++++++++----------
 3 files changed, 33 insertions(+), 18 deletions(-)

diff --git a/deprecated-node-mapping.json b/deprecated-node-mapping.json
index e43f6f39..cf2ec914 100644
--- a/deprecated-node-mapping.json
+++ b/deprecated-node-mapping.json
@@ -238,5 +238,20 @@
   },
   "server_security_misconfiguration.misconfigured_dns.subdomain_takeover": {
     "1.14.1": "server_security_misconfiguration.misconfigured_dns.basic_subdomain_takeover"
+  },
+  "broken_access_control.idor.view_non_sensitive_information": {
+    "1.14.2": "broken_access_control.idor.read_edit_delete_non_sensitive_information"
+  },
+  "broken_access_control.idor.modify_view_sensitive_information_guid": {
+    "1.14.2": "broken_access_control.idor.read_edit_delete_sensitive_information_guid"
+  },
+  "broken_access_control.idor.view_sensitive_information_iterable_object_identifiers": {
+    "1.14.2": "broken_access_control.idor.read_sensitive_information_iterable_object_identifiers"
+  },
+  "broken_access_control.idor.modify_sensitive_information_iterable_object_identifiers": {
+    "1.14.2": "broken_access_control.idor.edit_delete_sensitive_information_iterable_object_identifiers"
+  },
+  "broken_access_control.idor.modify_view_sensitive_information_iterable_object_identifiers": {
+    "1.14.2": "broken_access_control.idor.read_edit_delete_sensitive_information_iterable_object_identifiers"
   }
 }
diff --git a/third-party-mappings/remediation_training/secure-code-warrior-links.json b/third-party-mappings/remediation_training/secure-code-warrior-links.json
index 4a7a8f98..615a3188 100755
--- a/third-party-mappings/remediation_training/secure-code-warrior-links.json
+++ b/third-party-mappings/remediation_training/secure-code-warrior-links.json
@@ -62,11 +62,11 @@
   "broken_access_control.exposed_sensitive_android_intent": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:exposed_sensitive_android_intent&redirect=true",
   "broken_access_control.exposed_sensitive_ios_url_scheme": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:exposed_sensitive_ios_url_scheme&redirect=true",
   "broken_access_control.idor": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:idor&redirect=true",
-  "broken_access_control.idor.edit_delete_sensitive_information_iterable_object_identifiers": null,
-  "broken_access_control.idor.read_edit_delete_non_sensitive_information": null,
-  "broken_access_control.idor.read_edit_delete_sensitive_information_guid": null,
-  "broken_access_control.idor.read_edit_delete_sensitive_information_iterable_object_identifiers": null,
-  "broken_access_control.idor.read_sensitive_information_iterable_object_identifiers": null,
+  "broken_access_control.idor.modify_sensitive_information_iterable_object_identifiers": null,
+  "broken_access_control.idor.modify_view_sensitive_information_guid": null,
+  "broken_access_control.idor.modify_view_sensitive_information_iterable_object_identifiers": null,
+  "broken_access_control.idor.view_non_sensitive_information": null,
+  "broken_access_control.idor.view_sensitive_information_iterable_object_identifiers": null,
   "broken_access_control.privilege_escalation": null,
   "broken_access_control.username_enumeration": null,
   "broken_access_control.username_enumeration.non_brute_force": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:username_enumeration:non_brute_force&redirect=true",
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index 993e0057..0801c0a1 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -396,32 +396,32 @@
           "type": "subcategory",
           "children": [
             {
-              "id": "edit_delete_sensitive_information_iterable_object_identifiers",
-              "name": "Edit/Delete Sensitive Information/Iterable Object Identifiers",
+              "id": "modify_sensitive_information_iterable_object_identifiers",
+              "name": "Modify Sensitive Information(Iterable Object Identifiers)",
               "type": "variant",
               "priority": 2
             },
             {
-              "id": "read_edit_delete_non_sensitive_information",
-              "name": "Read/Edit/Delete Non-Sensitive Information",
+              "id": "modify_view_sensitive_information_guid",
+              "name": "Modify/View Sensitive Information(Complex Object Identifiers GUID/UUID)",
               "type": "variant",
-              "priority": 5
+              "priority": 4
             },
             {
-              "id": "read_edit_delete_sensitive_information_guid",
-              "name": "Read/Edit/Delete Sensitive Information/Complex Object Identifiers(GUID)",
+              "id": "modify_view_sensitive_information_iterable_object_identifiers",
+              "name": "Modify/View Sensitive Information(Iterable Object Identifiers)",
               "type": "variant",
-              "priority": 4
+              "priority": 1
             },
             {
-              "id": "read_edit_delete_sensitive_information_iterable_object_identifiers",
-              "name": "Read/Edit/Delete Sensitive Information/Iterable Object Identifiers",
+              "id": "view_non_sensitive_information",
+              "name": "View Non-Sensitive Information",
               "type": "variant",
-              "priority": 1
+              "priority": 5
             },
             {
-              "id": "read_sensitive_information_iterable_object_identifiers",
-              "name": "Read Sensitive Information/Iterable Object Identifiers",
+              "id": "view_sensitive_information_iterable_object_identifiers",
+              "name": "View Sensitive Information(Iterable Object Identifiers)",
               "type": "variant",
               "priority": 3
             }

From eba7054413033d66754a4e56bc4660b16bb1a00b Mon Sep 17 00:00:00 2001
From: Abhinav Nain <abhinav.nain@bugcrowd.com>
Date: Thu, 16 Jan 2025 19:05:24 +0530
Subject: [PATCH 47/54] Fix CVSS for email spoofing due to DMARC
 misconfiguration (#437)

Updated the CVSS for the vulnerability related to email spoofing caused by missing or misconfigured DMARC records.

Co-authored-by: Tarek Bouali <contact@tarekbouali.com>
---
 mappings/cvss_v3/cvss_v3.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index 439a609b..8b42466d 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -1164,7 +1164,7 @@
           "children": [
             {
               "id": "email_spoofing_to_inbox_due_to_missing_or_misconfigured_dmarc_on_email_domain",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N"
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"
             },
             {
               "id": "no_spoofing_protection_on_email_domain",

From 14d683a54ffb561a31cbd1dbc62e9fc0b320800b Mon Sep 17 00:00:00 2001
From: Timmy <106584457+TimmyBugcrowd@users.noreply.github.com>
Date: Thu, 16 Jan 2025 19:32:32 +0100
Subject: [PATCH 48/54] SAML Replay - P5 (#433)

* SAML Replay - P5

Adding:
P5 - Broken Authentication and Session Management - SAML Replay

* Additional Files

---------

Co-authored-by: Abhinav Nain <abhinav.nain@bugcrowd.com>
---
 mappings/cvss_v3/cvss_v3.json                              | 4 ++++
 mappings/remediation_advice/remediation_advice.json        | 7 +++++++
 .../remediation_training/secure-code-warrior-links.json    | 1 +
 vulnerability-rating-taxonomy.json                         | 6 ++++++
 4 files changed, 18 insertions(+)

diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index 8b42466d..b23763c6 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -302,6 +302,10 @@
             }
           ]
         },
+        {
+          "id": "saml_replay",
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"
+        },
         {
           "id": "session_fixation",
           "children": [
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index bfa8b1f3..5c52e2a3 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -469,6 +469,13 @@
             }
           ]
         },
+        {
+          "id": "saml_replay",
+          "references": [
+            "https://snyk.io/blog/common-saml-vulnerabilities-remediate/",
+            "https://support.okta.com/help/s/article/okta-service-has-protection-against-replay-attacks?language=en_US"
+          ]
+        },
         {
           "id": "session_fixation",
           "remediation_advice": "Always regenerate the session token after the users properly authenticate.",
diff --git a/third-party-mappings/remediation_training/secure-code-warrior-links.json b/third-party-mappings/remediation_training/secure-code-warrior-links.json
index 615a3188..af1a2c93 100755
--- a/third-party-mappings/remediation_training/secure-code-warrior-links.json
+++ b/third-party-mappings/remediation_training/secure-code-warrior-links.json
@@ -83,6 +83,7 @@
   "broken_authentication_and_session_management.failure_to_invalidate_session.on_password_change": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:failure_to_invalidate_session:on_password_change&redirect=true",
   "broken_authentication_and_session_management.failure_to_invalidate_session.on_two_fa_activation_change": null,
   "broken_authentication_and_session_management.failure_to_invalidate_session.permission_change": null,
+  "broken_authentication_and_session_management.saml_replay": null,
   "broken_authentication_and_session_management.session_fixation": null,
   "broken_authentication_and_session_management.session_fixation.local_attack_vector": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:session_fixation:local_attack_vector&redirect=true",
   "broken_authentication_and_session_management.session_fixation.remote_attack_vector": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_authentication_and_session_management:session_fixation:remote_attack_vector&redirect=true",
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index 0801c0a1..e47c03c8 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -526,6 +526,12 @@
             }
           ]
         },
+        {
+          "id": "saml_replay",
+          "name": "SAML Replay",
+          "type": "subcategory",
+          "priority": 5
+        },
         {
           "id": "session_fixation",
           "name": "Session Fixation",

From 33c17045d6255d560ef9273bbe0600531ca7332c Mon Sep 17 00:00:00 2001
From: Abhinav Nain <abhinav.nain@bugcrowd.com>
Date: Wed, 12 Feb 2025 15:53:06 +0530
Subject: [PATCH 49/54] Release Changes (#446)

---
 CHANGELOG.md                       | 72 ++++++++++++++++++++++++++++++
 vulnerability-rating-taxonomy.json |  2 +-
 2 files changed, 73 insertions(+), 1 deletion(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 0cb541b5..c87b4be5 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -12,6 +12,78 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 
 ### Changed
 
+## [v1.15](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.14.2...v1.15) - 2025-02-12
+
+### Added
+
+- Decentralized Application Misconfiguration - Insecure Data Storage - Plaintext Private Key - P1
+- Decentralized Application Misconfiguration - Insecure Data Storage - Sensitive Information Exposure - Varies
+- Decentralized Application Misconfiguration - Improper Authorization - Insufficient Signature Validation - Varies
+- Decentralized Application Misconfiguration - DeFi Security - Flash Loan Attack - Varies
+- Decentralized Application Misconfiguration - DeFi Security - Pricing Oracle Manipulation - Varies
+- Decentralized Application Misconfiguration - DeFi Security - Function-Level Accounting Error - Varies
+- Decentralized Application Misconfiguration - DeFi Security - Improper Implementation of Governance - Varies
+- Decentralized Application Misconfiguration - Marketplace Security - Signer Account Takeover - P1
+- Decentralized Application Misconfiguration - Marketplace Security - Unauthorized Asset Transfer - P1
+- Decentralized Application Misconfiguration - Marketplace Security - Orderbook Manipulation - P1
+- Decentralized Application Misconfiguration - Marketplace Security - Malicious Order Offer - P2
+- Decentralized Application Misconfiguration - Marketplace Security - Price or Fee Manipulation - P2
+- Decentralized Application Misconfiguration - Marketplace Security - OFAC Bypass - P3
+- Decentralized Application Misconfiguration - Marketplace Security - Improper Validation and Checks For Deposits and Withdrawals - Varies
+- Decentralized Application Misconfiguration - Marketplace Security - Miscalculated Accounting Logic - Varies
+- Decentralized Application Misconfiguration - Marketplace Security - Denial of Service - Varies
+- Decentralized Application Misconfiguration - Protocol Security Misconfiguration - Node-level Denial of Service - P1
+- Protocol Specific Misconfiguration - Frontrunning-Enabled Attack - P2
+- Protocol Specific Misconfiguration - Sandwich-Enabled Attack - P2
+- Protocol Specific Misconfiguration - Misconfigured Staking Logic - Varies
+- Protocol Specific Misconfiguration - Improper Validation and Finalization Logic - Varies
+- Smart Contract Misconfiguration - Reentrancy Attack - P1
+- Smart Contract Misconfiguration - Smart Contract Owner Takeover - P1
+- Smart Contract Misconfiguration - Uninitialized Variables - P1
+- Smart Contract Misconfiguration - Unauthorized Transfer of Funds - P1
+- Smart Contract Misconfiguration - Integer Overflow / Underflow - P2
+- Smart Contract Misconfiguration - Unauthorized Smart Contract Approval - P2
+- Smart Contract Misconfiguration - Irreversible Function Call - P3
+- Smart Contract Misconfiguration - Function-level Denial of Service - P3
+- Smart Contract Misconfiguration - Malicious Superuser Risk - P3
+- Smart Contract Misconfiguration - Improper Fee Implementation - P3
+- Smart Contract Misconfiguration - Improper Use of Modifier - P4
+- Smart Contract Misconfiguration - Improper Decimals Implementation - P4
+- Smart Contract Misconfiguration - Inaccurate Rounding Calculation - Varies
+- Smart Contract Misconfiguration - Bypass of Function Modifiers & Checks - Varies
+- Zero Knowledge Security Misconfiguration - Missing Constraint - Varies
+- Zero Knowledge Security Misconfiguration - Mismatching Bit Lengths - Varies
+- Zero Knowledge Security Misconfiguration - Misconfigured Trusted Setup - Varies
+- Zero Knowledge Security Misconfiguration - Missing Range Check - Varies
+- Zero Knowledge Security Misconfiguration - Improper Proof Validation and Finalization Logic - P1
+- Zero Knowledge Security Misconfiguration - Deanonymization of Data - P1
+- Blockchain Infrastructure Misconfiguration - Improper Bridge Validation and Verification Logic - Varies
+- Broken Authentication and Session Management - SAML Replay - P5
+
+### Changed
+
+FROM:
+
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Read/Edit/Delete Sensitive Information/Iterable Object Identifiers - P1
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Edit/Delete Sensitive Information/Iterable Object Identifiers - P2
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Read Sensitive Information/Iterable Object Identifiers - P3
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Read/Edit/Delete Sensitive Information/Complex Object Identifiers(GUID) - P4
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Read/Edit/Delete Non-Sensitive Information - P5
+
+TO:
+
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Modify/View Sensitive Information(Iterable Object Identifiers) - P1
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Modify Sensitive Information(Iterable Object Identifiers) - P2
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - View Sensitive Information(Iterable Object Identifiers) - P3
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - Modify/View Sensitive Information(Complex Object Identifiers GUID/UUID) - P4
+- Broken Access Control (BAC) - Insecure Direct Object References (IDOR) - View Non-Sensitive Information - P5
+
+### Other
+
+- CVSS Score correction for Server Security Misconfiguration - Mail Server Misconfiguration - Email Spoofing to Inbox due to Missing or Misconfigured DMARC on Email Domain - P4.
+- All JSONs, i.e., VRT and its mapping JSONs are now alphabetically sorted.
+- Internal library changes to add a new helper script that aids in sorting the JSONs.
+
 ## [v1.14.2](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.14.1...v1.14.2) - 2024-10-25
 
 ### Removed
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index e47c03c8..2dba96b7 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1,6 +1,6 @@
 {
   "metadata": {
-    "release_date": "2024-10-25T00:00:00+00:00"
+    "release_date": "2025-02-12T00:00:00+00:00"
   },
   "content": [
     {

From b61f40dfbfee2bea7e698fe1f07c07aaaa451661 Mon Sep 17 00:00:00 2001
From: SamAtBugcrowd <100110742+SamAtBugcrowd@users.noreply.github.com>
Date: Fri, 7 Mar 2025 01:11:01 +1030
Subject: [PATCH 50/54] Mappings fix (#452)

* mappings version fix

* mappings id swap

* mappings id swap
---
 deprecated-node-mapping.json | 26 +++++++++++++-------------
 1 file changed, 13 insertions(+), 13 deletions(-)

diff --git a/deprecated-node-mapping.json b/deprecated-node-mapping.json
index cf2ec914..4a947042 100644
--- a/deprecated-node-mapping.json
+++ b/deprecated-node-mapping.json
@@ -234,24 +234,24 @@
     "1.14": "broken_access_control.privilege_escalation"
   },
   "server_security_misconfiguration.misconfigured_dns.high_impact_subdomain_takeover": {
-    "1.14.1": "other"
+    "1.14.2": "other"
   },
-  "server_security_misconfiguration.misconfigured_dns.subdomain_takeover": {
-    "1.14.1": "server_security_misconfiguration.misconfigured_dns.basic_subdomain_takeover"
+  "server_security_misconfiguration.misconfigured_dns.basic_subdomain_takeover": {
+    "1.14.2": "server_security_misconfiguration.misconfigured_dns.subdomain_takeover"
   },
-  "broken_access_control.idor.view_non_sensitive_information": {
-    "1.14.2": "broken_access_control.idor.read_edit_delete_non_sensitive_information"
+  "broken_access_control.idor.read_edit_delete_non_sensitive_information": {
+    "1.15": "broken_access_control.idor.view_non_sensitive_information"
   },
-  "broken_access_control.idor.modify_view_sensitive_information_guid": {
-    "1.14.2": "broken_access_control.idor.read_edit_delete_sensitive_information_guid"
+  "broken_access_control.idor.read_edit_delete_sensitive_information_guid": {
+    "1.15": "broken_access_control.idor.modify_view_sensitive_information_guid"
   },
-  "broken_access_control.idor.view_sensitive_information_iterable_object_identifiers": {
-    "1.14.2": "broken_access_control.idor.read_sensitive_information_iterable_object_identifiers"
+  "broken_access_control.idor.read_sensitive_information_iterable_object_identifiers": {
+    "1.15": "broken_access_control.idor.modify_view_sensitive_information_iterable_object_identifiers"
   },
-  "broken_access_control.idor.modify_sensitive_information_iterable_object_identifiers": {
-    "1.14.2": "broken_access_control.idor.edit_delete_sensitive_information_iterable_object_identifiers"
+  "broken_access_control.idor.edit_delete_sensitive_information_iterable_object_identifiers": {
+    "1.15": "broken_access_control.idor.modify_sensitive_information_iterable_object_identifiers"
   },
-  "broken_access_control.idor.modify_view_sensitive_information_iterable_object_identifiers": {
-    "1.14.2": "broken_access_control.idor.read_edit_delete_sensitive_information_iterable_object_identifiers"
+  "broken_access_control.idor.read_edit_delete_sensitive_information_iterable_object_identifiers": {
+    "1.15": "broken_access_control.idor.modify_view_sensitive_information_iterable_object_identifiers"
   }
 }

From 69e45fe497d9cbc43d8f89b1389eec9d110bda18 Mon Sep 17 00:00:00 2001
From: Timmy <106584457+TimmyBugcrowd@users.noreply.github.com>
Date: Thu, 6 Mar 2025 15:41:41 +0100
Subject: [PATCH 51/54] Cache Deception (#453)

* Cache Deception

ADD:
Varies: Server Security Misconfiguration - Cache Deception

* Update remediation_advice.json

---------

Co-authored-by: Abhinav Nain <abhinav.nain@bugcrowd.com>
---
 mappings/cvss_v3/cvss_v3.json                              | 4 ++++
 mappings/remediation_advice/remediation_advice.json        | 7 +++++++
 .../remediation_training/secure-code-warrior-links.json    | 1 +
 vulnerability-rating-taxonomy.json                         | 6 ++++++
 4 files changed, 18 insertions(+)

diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index b23763c6..d1b042e1 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -1066,6 +1066,10 @@
           "id": "cache_poisoning",
           "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
         },
+        {
+          "id": "cache_deception",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
         {
           "id": "captcha",
           "children": [
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index 5c52e2a3..e38e5f4c 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -1351,6 +1351,13 @@
             "https://portswigger.net/blog/practical-web-cache-poisoning"
           ]
         },
+        {
+          "id": "cache_deception",
+          "remediation_advice": "The most effective way to prevent cache deception is to carefully control which responses are cached and to avoid caching responses that contain user-specific or sensitive data.\n\nEnsure that authentication-protected pages and any responses containing sensitive information explicitly disable caching via headers such as `Cache-Control: no-store, no-cache, must-revalidate` and `Pragma: no-cache`.\n\nBe particularly cautious with URL structures. Cache deception attacks often rely on tricking the cache into treating dynamic responses as static. A simple mitigation is to ensure that URLs ending in extensions like `.css`, `.js`, `.png`, etc., only serve static content and do not process dynamic requests.\n\nFor additional protection, configure your cache layer to only cache responses from a predefined allowlist of safe URL patterns. This prevents attackers from injecting deceptive paths that lead to cached sensitive data.\n\nAuditing your cache behavior using tools like Param Miner or manual testing can help identify and eliminate unintended caching of sensitive responses. Additionally, security headers such as `X-Content-Type-Options: nosniff` can help prevent certain forms of cache-related attacks.\n\nFinally, if your application uses a CDN or a reverse proxy (e.g., Cloudflare, Akamai, Varnish), ensure that caching rules are correctly configured to prevent caching of personalized or user-specific content.",
+          "references": [
+            "https://portswigger.net/web-security/web-cache-deception"
+          ]
+        },
         {
           "id": "captcha",
           "children": [
diff --git a/third-party-mappings/remediation_training/secure-code-warrior-links.json b/third-party-mappings/remediation_training/secure-code-warrior-links.json
index af1a2c93..1b1d14c9 100755
--- a/third-party-mappings/remediation_training/secure-code-warrior-links.json
+++ b/third-party-mappings/remediation_training/secure-code-warrior-links.json
@@ -334,6 +334,7 @@
   "server_security_misconfiguration": null,
   "server_security_misconfiguration.bitsquatting": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:bitsquatting&redirect=true",
   "server_security_misconfiguration.cache_poisoning": null,
+  "server_security_misconfiguration.cache_deception": null,
   "server_security_misconfiguration.captcha": null,
   "server_security_misconfiguration.captcha.brute_force": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:captcha:brute_force&redirect=true",
   "server_security_misconfiguration.captcha.implementation_vulnerability": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:captcha:implementation_vulnerability&redirect=true",
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index 2dba96b7..cfc76583 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -2097,6 +2097,12 @@
           "type": "subcategory",
           "priority": null
         },
+        {
+          "id": "cache_deception",
+          "name": "Cache Deception",
+          "type": "subcategory",
+          "priority": null
+        },
         {
           "id": "captcha",
           "name": "CAPTCHA",

From 6f8e8d6198e8c3f496b5c370b9cf1ad907971575 Mon Sep 17 00:00:00 2001
From: Abhinav Nain <abhinav.nain@bugcrowd.com>
Date: Tue, 11 Mar 2025 16:55:55 +0530
Subject: [PATCH 52/54] Q1'25 Release Changes [v1.15.1] (#454)

* Release Changes

* VRT Changes
---
 CHANGELOG.md                       | 11 ++++++
 deprecated-node-mapping.json       | 62 +++++++++++++++++++++++++++++-
 vulnerability-rating-taxonomy.json |  2 +-
 3 files changed, 73 insertions(+), 2 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index c87b4be5..d7725776 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -12,6 +12,17 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 
 ### Changed
 
+## [v1.15.1](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.15...v1.15.1) - 2025-03-11
+
+### Added
+
+- Server Security Misconfiguration - Cache Deception - Varies
+
+### Other
+
+- Fixed minor issues with deprecated-node-mapping.json file.
+- Adding missing issues from deprecated-node-mapping.json file.
+
 ## [v1.15](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.14.2...v1.15) - 2025-02-12
 
 ### Added
diff --git a/deprecated-node-mapping.json b/deprecated-node-mapping.json
index 4a947042..a866a915 100644
--- a/deprecated-node-mapping.json
+++ b/deprecated-node-mapping.json
@@ -253,5 +253,65 @@
   },
   "broken_access_control.idor.read_edit_delete_sensitive_information_iterable_object_identifiers": {
     "1.15": "broken_access_control.idor.modify_view_sensitive_information_iterable_object_identifiers"
+  },
+  "broken_authentication_and_session_management.authentication_bypass.horizontal": {
+    "1.15.1": "other"
+  },
+  "broken_authentication_and_session_management.authentication_bypass.vertical": {
+    "1.15.1": "other"
+  },
+  "cross_site_scripting_xss.reflected.admin_to_anyone": {
+    "1.15.1": "other"
+  },
+  "cross_site_scripting_xss.reflected.non_admin_to_anyone": {
+    "1.15.1": "other"
+  },
+  "insecure_data_storage.insecure_data_storage": {
+    "1.15.1": "other"
+  },
+  "insecure_data_storage.insecure_data_storage.password": {
+    "1.15.1": "other"
+  },
+  "insufficient_security_configurability.weak_2fa_implementation.missing_failsafe": {
+    "1.15.1": "other"
+  },
+  "insufficient_security_configurability.weak_password_policy.allows_password_to_be_same_as_email_username": {
+    "1.15.1": "other"
+  },
+  "insufficient_security_configurability.weak_password_policy.allows_reuse_of_old_passwords": {
+    "1.15.1": "other"
+  },
+  "insufficient_security_configurability.weak_password_policy.complexity_char_type_not_enforced": {
+    "1.15.1": "other"
+  },
+  "insufficient_security_configurability.weak_password_policy.complexity_length_not_enforced": {
+    "1.15.1": "other"
+  },
+  "mobile_security_misconfiguration.clipboard_enabled.on_non_sensitive_content": {
+    "1.15.1": "other"
+  },
+  "mobile_security_misconfiguration.clipboard_enabled.on_sensitive_content": {
+    "1.15.1": "other"
+  },
+  "sensitive_data_exposure.mixed_content.requires_being_a_man_in_the_middle": {
+    "1.15.1": "other"
+  },
+  "sensitive_data_exposure.mixed_content.sensitive_data_disclosure": {
+    "1.15.1": "other"
+  },
+  "sensitive_data_exposure.token_leakage_via_referer.over_https": {
+    "1.15.1": "other"
+  },
+  "server_security_misconfiguration.using_default_credentials.production_server": {
+    "1.15.1": "other"
+  },
+  "server_security_misconfiguration.using_default_credentials.staging_development_server": {
+    "1.15.1": "other"
+  },
+  "server_side_injection.sql_injection.blind": {
+    "1.15.1": "other"
+  },
+  "server_side_injection.sql_injection.error_based": {
+    "1.15.1": "other"
   }
-}
+}
\ No newline at end of file
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index cfc76583..ceaf3193 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1,6 +1,6 @@
 {
   "metadata": {
-    "release_date": "2025-02-12T00:00:00+00:00"
+    "release_date": "2025-03-11T00:00:00+00:00"
   },
   "content": [
     {

From 6211aad32c1f4ecbecfc09cf7be8a80f19aa2bc7 Mon Sep 17 00:00:00 2001
From: Timmy <106584457+TimmyBugcrowd@users.noreply.github.com>
Date: Fri, 20 Jun 2025 13:48:20 +0200
Subject: [PATCH 53/54] Q2 Release (#460)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* GraphQL Introspection Enabled - P5

#450

* Bypass of Password Confirmation on Password Change

Add:
Broken Access Control – Bypass of Password Confirmation – Change Password

* Revert "Bypass of Password Confirmation on Password Change"

This reverts commit a6e415a08f524034a7309f230e98a600e0a1f76b.

* Bypass of Password Confirmation on Password Change

Add:
Broken Access Control – Bypass of Password Confirmation – Change Password

* Revert "Bypass of Password Confirmation on Password Change"

This reverts commit 3418212fd5ec34b5d96bb48097113c6329265c6c.

* Broken Access Control (BAC) - Bypass of Password Confirmation - Change Password (#462)

* Revert "Bypass of Password Confirmation on Password Change"

This reverts commit 3418212fd5ec34b5d96bb48097113c6329265c6c.

* Bypass of Password Confirmation on Password Change

Add:
Broken Access Control – Bypass of Password Confirmation – Change Password

* AI entries revised (#464)

* AI entries revised

Adding:
P1 - AI Application Security - Training Data Poisoning - Backdoor Injection / Bias Manipulation
P1 - AI Application Security - Model Extraction - API Query-Based Model Reconstruction
P1 - AI Application Security - Sensitive Information Disclosure - Cross-Tenant PII Leakage/Exposure
P1 - AI Application Security - Remote Code Execution - Full System Compromise
P1 - AI Application Security - Sensitive Information Disclosure - Key Leak
P2 - AI Application Security - Remote Code Execution - Sandboxed Container Code Execution
P2 - AI Application Security - Prompt Injection - System Prompt Leakage
P2 - AI Application Security - Vector and Embedding Weaknesses - Embedding Exfiltration / Model Extraction
P2 - AI Application Security - Denial-of-Service (DoS) - Application-Wide
P3 - AI Application Security - Vector and Embedding Weaknesses - Semantic Indexing
P3 - AI Application Security - Improper Output Handling - Cross-Site Scripting (XSS)
P4 - AI Application Security - Improper Output Handling - Markdown/HTML Injection
P4 - AI Application Security - AI Safety - Misinformation / Wrong Factual Data
P4 - AI Application Security - Insufficient Rate Limiting - Query Flooding / API Token Abuse
P4 - AI Application Security - Denial-of-Service (DoS) - Tenant-Scoped
P4 - AI Application Security - Adversarial Example Injection - AI Misclassification Attacks
P5 - AI Application Security - Improper Input Handling - ANSI Escape Codes
P5 - AI Application Security - Improper Input Handling - Unicode Confusables
P5 - AI Application Security - Improper Input Handling - RTL Overrides

* Update vulnerability-rating-taxonomy.json

* Fixing errors

* Fixing errors2

* Update vulnerability-rating-taxonomy.json

* Update vulnerability-rating-taxonomy.json

* Update vulnerability-rating-taxonomy.json

* Update vulnerability-rating-taxonomy.json

* Update vulnerability-rating-taxonomy.json

* Update cvss_v3.json

* Fixed deprecated node mapping (#457)

* Updated varies to default and removed redundant entries (#461)

* Updated varies to default and removed redundant entries

* Reverting some changes

---------

Co-authored-by: Abhinav Nain <abhinav.nain@bugcrowd.com>

* Final Changes - Adding Changelog + deprecated-node-mappings + ALL JSON Sorting + SCW

---------

Co-authored-by: SamAtBugcrowd <100110742+SamAtBugcrowd@users.noreply.github.com>
Co-authored-by: Abhinav Nain <abhinav.nain@bugcrowd.com>
---
 CHANGELOG.md                                  |  38 ++
 deprecated-node-mapping.json                  | 645 +++++++++---------
 mappings/cvss_v3/cvss_v3.json                 | 496 +++++---------
 mappings/cwe/cwe.json                         |   6 +
 .../remediation_advice.json                   |  61 +-
 .../secure-code-warrior-links.json            |  41 +-
 vulnerability-rating-taxonomy.json            | 216 +++++-
 7 files changed, 813 insertions(+), 690 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index d7725776..43f2a30a 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -12,6 +12,44 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/) and this p
 
 ### Changed
 
+## [v1.16](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.15.1...v1.16) - 2025-06-23
+
+### Added
+
+- Broken Access Control (BAC) - Bypass of Password Confirmation - Change Password - P4
+- Sensitive Data Exposure - GraphQL Introspection Enabled - P5
+- AI Application Security - Training Data Poisoning - Backdoor Injection / Bias Manipulation - P1
+- AI Application Security - Model Extraction - API Query-Based Model Reconstruction - P1
+- AI Application Security - Sensitive Information Disclosure - Cross-Tenant PII Leakage/Exposure - P1
+- AI Application Security - Sensitive Information Disclosure - Key Leak - P1
+- AI Application Security - Remote Code Execution - Full System Compromise - P1
+- AI Application Security - Remote Code Execution - Sandboxed Container Code Execution  - P2
+- AI Application Security - Prompt Injection - System Prompt Leakage - P2
+- AI Application Security - Vector and Embedding Weaknesses - Embedding Exfiltration / Model Extraction - P2
+- AI Application Security - Vector and Embedding Weaknesses - Semantic Indexing - P3
+- AI Application Security - Denial-of-Service (DoS) - Application-Wide - P2
+- AI Application Security - AI Safety - Misinformation / Wrong Factual Data - P4
+- AI Application Security - Insufficient Rate Limiting - Query Flooding / API Token Abuse - P4
+- AI Application Security - Denial-of-Service (DoS) - Tenant-Scoped - P4
+- AI Application Security - Adversarial Example Injection - AI Misclassification Attacks - P4
+- AI Application Security - Improper Output Handling - Cross-Site Scripting (XSS) - P3
+- AI Application Security - Improper Output Handling - Markdown/HTML Injection  - P4
+- AI Application Security - Improper Input Handling - ANSI Escape Codes - P5
+- AI Application Security - Improper Input Handling - Unicode Confusables - P5
+- AI Application Security - Improper Input Handling - RTL Overrides - P5
+
+### Removed
+
+- AI Application Security - Large Language Model (LLM) Security - LLM Output Handling  - P1
+- AI Application Security - Large Language Model (LLM) Security - Prompt Injection  - P1
+- AI Application Security - Large Language Model (LLM) Security - Training Data Poisoning  - P1
+- AI Application Security - Large Language Model (LLM) Security - Excessive Agency/Permission Manipulation - P2
+
+### Other
+
+- Removed CVSS score for VRT entries with 'VARIES' priority, and added default CVSS (0 score) wherever missing.
+- Fixed 'deprecated-node-mapping.json' file to reflect the correct format and fill in missing values.
+
 ## [v1.15.1](https://github.com/bugcrowd/vulnerability-rating-taxonomy/compare/v1.15...v1.15.1) - 2025-03-11
 
 ### Added
diff --git a/deprecated-node-mapping.json b/deprecated-node-mapping.json
index a866a915..3e49435c 100644
--- a/deprecated-node-mapping.json
+++ b/deprecated-node-mapping.json
@@ -1,317 +1,332 @@
 {
-  "poor_physical_security": {
-    "1.1": "other"
-  },
-  "social_engineering": {
-    "1.1": "other"
-  },
-  "unvalidated_redirects_and_forwards.open_redirect.get_based_all_users": {
-    "1.2": "unvalidated_redirects_and_forwards.open_redirect.get_based"
-  },
-  "unvalidated_redirects_and_forwards.open_redirect.get_based_authenticated": {
-    "1.2": "unvalidated_redirects_and_forwards.open_redirect.get_based"
-  },
-  "unvalidated_redirects_and_forwards.open_redirect.get_based_unauthenticated": {
-    "1.2": "unvalidated_redirects_and_forwards.open_redirect.get_based"
-  },
-  "broken_authentication_and_session_management.session_token_in_url.over_https": {
-    "1.2": "sensitive_data_exposure.sensitive_token_in_url"
-  },
-  "broken_authentication_and_session_management.session_token_in_url.over_http": {
-    "1.2": "sensitive_data_exposure.sensitive_token_in_url"
-  },
-  "broken_authentication_and_session_management.session_token_in_url": {
-    "1.2": "sensitive_data_exposure.sensitive_token_in_url"
-  },
-  "insecure_data_transport": {
-    "1.2": "mobile_security_misconfiguration"
-  },
-  "insecure_data_transport.ssl_certificate_pinning": {
-    "1.2": "mobile_security_misconfiguration.ssl_certificate_pinning"
-  },
-  "insecure_data_transport.ssl_certificate_pinning.absent": {
-    "1.2": "mobile_security_misconfiguration.ssl_certificate_pinning.absent"
-  },
-  "insecure_data_transport.ssl_certificate_pinning.defeatable": {
-    "1.2": "mobile_security_misconfiguration.ssl_certificate_pinning.defeatable"
-  },
-  "insecure_data_storage.credentials_stored_unencrypted": {
-    "1.2": "insecure_data_storage.sensitive_application_data_stored_unencrypted"
-  },
-  "insecure_data_storage.credentials_stored_unencrypted.on_external_storage": {
-    "1.2": "insecure_data_storage.sensitive_application_data_stored_unencrypted.on_external_storage"
-  },
-  "insecure_data_storage.credentials_stored_unencrypted.on_internal_storage": {
-    "1.2": "insecure_data_storage.sensitive_application_data_stored_unencrypted.on_internal_storage"
-  },
-  "insufficient_security_configurability.weak_password_policy.complexity_both_length_and_char_type_not_enforced": {
-    "1.2": "insufficient_security_configurability.no_password_policy"
-  },
-  "missing_function_level_access_control": {
-    "1.3": "broken_access_control"
-  },
-  "missing_function_level_access_control.server_side_request_forgery_ssrf": {
-    "1.3": "broken_access_control.server_side_request_forgery_ssrf"
-  },
-  "missing_function_level_access_control.server_side_request_forgery_ssrf.internal": {
-    "1.3": "broken_access_control.server_side_request_forgery_ssrf.internal"
-  },
-  "missing_function_level_access_control.server_side_request_forgery_ssrf.external": {
-    "1.3": "broken_access_control.server_side_request_forgery_ssrf.external"
-  },
-  "missing_function_level_access_control.username_enumeration": {
-    "1.3": "broken_access_control.username_enumeration"
-  },
-  "missing_function_level_access_control.username_enumeration.data_leak": {
-    "1.3": "broken_access_control.username_enumeration.data_leak"
-  },
-  "missing_function_level_access_control.exposed_sensitive_android_intent": {
-    "1.3": "broken_access_control.exposed_sensitive_android_intent"
-  },
-  "missing_function_level_access_control.exposed_sensitive_ios_url_scheme": {
-    "1.3": "broken_access_control.exposed_sensitive_ios_url_scheme"
-  },
-  "insecure_direct_object_references_idor": {
-    "1.3": "broken_access_control.idor"
-  },
-  "broken_authentication_and_session_management.weak_login_function.over_http": {
-    "1.4": "broken_authentication_and_session_management.weak_login_function.https_not_available_or_http_by_default"
-  },
-  "cross_site_scripting_xss.ie_only.older_version_ie_10_11": {
-    "1.4": "cross_site_scripting_xss.ie_only.ie11"
-  },
-  "cross_site_scripting_xss.ie_only.older_version_ie10": {
-    "1.4": "cross_site_scripting_xss.ie_only.older_version_ie11"
-  },
-  "broken_authentication_and_session_management.failure_to_invalidate_session.on_password_reset": {
-    "1.4": "broken_authentication_and_session_management.failure_to_invalidate_session.on_password_change"
-  },
-  "network_security_misconfiguration.telnet_enabled.credentials_required": {
-    "1.4": "broken_authentication_and_session_management.weak_login_function.other_plaintext_protocol_no_secure_alternative"
-  },
-  "server_security_misconfiguration.mail_server_misconfiguration.missing_spf_on_email_domain": {
-    "1.5": "server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_on_email_domain"
-  },
-  "server_security_misconfiguration.mail_server_misconfiguration.email_spoofable_via_third_party_api_misconfiguration": {
-    "1.5": "server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_on_email_domain"
-  },
-  "cross_site_scripting_xss.stored.admin_to_anyone": {
-    "1.5": "cross_site_scripting_xss.stored.privileged_user_to_privilege_elevation"
-  },
-  "server_security_misconfiguration.captcha_bypass": {
-    "1.5": "server_security_misconfiguration.captcha"
-  },
-  "server_security_misconfiguration.captcha_bypass.implementation_vulnerability": {
-    "1.5": "server_security_misconfiguration.captcha.implementation_vulnerability"
-  },
-  "server_security_misconfiguration.captcha_bypass.brute_force": {
-    "1.5": "server_security_misconfiguration.captcha.brute_force"
-  },
-  "broken_access_control.server_side_request_forgery_ssrf.internal": {
-    "1.6": "broken_access_control.server_side_request_forgery_ssrf.internal_high_impact"
-  },
-  "server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_on_email_domain": {
-    "1.6": "server_security_misconfiguration.mail_server_misconfiguration.no_spoofing_protection_on_email_domain"
-  },
-  "server_security_misconfiguration.mail_server_misconfiguration.missing_spf_on_non_email_domain": {
-    "1.6": "server_security_misconfiguration.mail_server_misconfiguration.missing_or_misconfigured_spf_and_or_dkim"
-  },
-  "server_security_misconfiguration.mail_server_misconfiguration.spf_uses_a_soft_fail": {
-    "1.6": "server_security_misconfiguration.mail_server_misconfiguration.missing_or_misconfigured_spf_and_or_dkim"
-  },
-  "server_security_misconfiguration.mail_server_misconfiguration.spf_includes_10_lookups": {
-    "1.6": "server_security_misconfiguration.mail_server_misconfiguration.missing_or_misconfigured_spf_and_or_dkim"
-  },
-  "server_security_misconfiguration.mail_server_misconfiguration.missing_dmarc": {
-    "1.6": "server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_to_inbox_due_to_missing_or_misconfigured_dmarc_on_email_domain"
-  },
-  "broken_access_control.username_enumeration.data_leak": {
-    "1.7": "broken_access_control.username_enumeration.non_brute_force"
-  },
-  "insufficient_security_configurability.weak_2fa_implementation": {
-    "1.7": "insufficient_security_configurability.weak_two_fa_implementation"
-  },
-  "sensitive_data_exposure.token_leakage_via_referer.trusted_3rd_party": {
-    "1.7": "sensitive_data_exposure.token_leakage_via_referer.trusted_third_party"
-  },
-  "sensitive_data_exposure.token_leakage_via_referer.untrusted_3rd_party": {
-    "1.7": "sensitive_data_exposure.token_leakage_via_referer.untrusted_third_party"
-  },
-  "cross_site_scripting_xss.ie_only.ie11": {
-    "1.7": "cross_site_scripting_xss.ie_only.ie_eleven"
-  },
-  "cross_site_scripting_xss.ie_only.older_version_ie11": {
-    "1.7": "cross_site_scripting_xss.ie_only.older_version_ie_eleven"
-  },
-  "sensitive_data_exposure.critically_sensitive_data.password_disclosure": {
-    "1.9": "sensitive_data_exposure.disclosure_of_secrets"
-  },
-  "sensitive_data_exposure.critically_sensitive_data.private_api_keys": {
-    "1.9": "sensitive_data_exposure.disclosure_of_secrets"
-  },
-  "sensitive_data_exposure.critically_sensitive_data": {
-    "1.9": "sensitive_data_exposure"
-  },
-  "insufficient_security_configurability.lack_of_verification_email": {
-    "1.10": "insufficient_security_configurability.verification_of_contact_method_not_required"
-  },
-  "broken_authentication_and_session_management.weak_login_function.https_not_available_or_http_by_default": {
-    "1.10": "broken_authentication_and_session_management.weak_login_function.over_http"
-  },
-  "broken_authentication_and_session_management.weak_login_function.http_and_https_available": {
-    "1.10": "broken_authentication_and_session_management.weak_login_function.over_http"
-  },
-  "broken_authentication_and_session_management.weak_login_function.lan_only": {
-    "1.10": "broken_authentication_and_session_management.weak_login_function.over_http"
-  },
-  "cross_site_request_forgery_csrf.flash_based.high_impact": {
-    "1.10": "cross_site_request_forgery_csrf.flash_based"
-  },
-  "cross_site_request_forgery_csrf.flash_based.low_impact": {
-    "1.10": "cross_site_request_forgery_csrf.flash_based"
-  },
-  "automotive_security_misconfiguration.infotainment": {
-    "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit"
-  },
-  "automotive_security_misconfiguration.infotainment.pii_leakage": {
-    "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.pii_leakage"
-  },
-  "automotive_security_misconfiguration.infotainment.code_execution_can_bus_pivot": {
-    "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.code_execution_can_bus_pivot"
-  },
-  "automotive_security_misconfiguration.infotainment.code_execution_no_can_bus_pivot": {
-    "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.code_execution_no_can_bus_pivot"
-  },
-  "automotive_security_misconfiguration.infotainment.unauthorized_access_to_services": {
-    "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.unauthorized_access_to_services"
-  },
-  "automotive_security_misconfiguration.infotainment.source_code_dump": {
-    "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.source_code_dump"
-  },
-  "automotive_security_misconfiguration.infotainment.dos_brick": {
-    "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.dos_brick"
-  },
-  "automotive_security_misconfiguration.infotainment.default_credentials": {
-    "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.default_credentials"
-  },
-  "broken_cryptography": {
-    "1.11": "other"
-  },
-  "broken_cryptography.cryptographic_flaw": {
-    "1.11": "other"
-  },
-  "broken_cryptography.cryptographic_flaw.incorrect_usage": {
-    "1.11": "other"
-  },
-  "cross_site_scripting_xss.ie_only.ie_eleven": {
-    "1.11": "other"
-  },
-  "cross_site_scripting_xss.ie_only.older_version_ie_eleven": {
-    "1.11": "cross_site_scripting_xss.ie_only"
-  },
-  "cross_site_scripting_xss.ie_only.xss_filter_disabled": {
-    "1.11": "other"
-  },
-  "automotive_security_misconfiguration.infotainment_radio_head_unit.pii_leakage": {
-    "1.11": "automotive_security_misconfiguration.infotainment_radio_head_unit.sensitive_data_leakage_exposure"
-  },
-  "broken_access_control.server_side_request_forgery_ssrf": {
-    "1.11": "server_security_misconfiguration.server_side_request_forgery_ssrf"
-  },
-  "broken_access_control.server_side_request_forgery_ssrf.internal_high_impact": {
-    "1.11": "server_security_misconfiguration.server_side_request_forgery_ssrf.internal_high_impact"
-  },
-  "broken_access_control.server_side_request_forgery_ssrf.internal_scan_and_or_medium_impact": {
-    "1.11": "server_security_misconfiguration.server_side_request_forgery_ssrf.internal_scan_and_or_medium_impact"
-  },
-  "broken_access_control.server_side_request_forgery_ssrf.dns_query_only": {
-    "1.11": "server_security_misconfiguration.server_side_request_forgery_ssrf.external_dns_query_only"
-  },
-  "broken_access_control.server_side_request_forgery_ssrf.external": {
-    "1.11": "server_security_misconfiguration.server_side_request_forgery_ssrf.external_low_impact"
-  },
-  "broken_authentication_and_session_management.privilege_escalation": {
-    "1.14": "broken_access_control.privilege_escalation"
-  },
-  "server_security_misconfiguration.misconfigured_dns.high_impact_subdomain_takeover": {
-    "1.14.2": "other"
-  },
-  "server_security_misconfiguration.misconfigured_dns.basic_subdomain_takeover": {
-    "1.14.2": "server_security_misconfiguration.misconfigured_dns.subdomain_takeover"
-  },
-  "broken_access_control.idor.read_edit_delete_non_sensitive_information": {
-    "1.15": "broken_access_control.idor.view_non_sensitive_information"
-  },
-  "broken_access_control.idor.read_edit_delete_sensitive_information_guid": {
-    "1.15": "broken_access_control.idor.modify_view_sensitive_information_guid"
-  },
-  "broken_access_control.idor.read_sensitive_information_iterable_object_identifiers": {
-    "1.15": "broken_access_control.idor.modify_view_sensitive_information_iterable_object_identifiers"
-  },
-  "broken_access_control.idor.edit_delete_sensitive_information_iterable_object_identifiers": {
-    "1.15": "broken_access_control.idor.modify_sensitive_information_iterable_object_identifiers"
-  },
-  "broken_access_control.idor.read_edit_delete_sensitive_information_iterable_object_identifiers": {
-    "1.15": "broken_access_control.idor.modify_view_sensitive_information_iterable_object_identifiers"
-  },
-  "broken_authentication_and_session_management.authentication_bypass.horizontal": {
-    "1.15.1": "other"
-  },
-  "broken_authentication_and_session_management.authentication_bypass.vertical": {
-    "1.15.1": "other"
-  },
-  "cross_site_scripting_xss.reflected.admin_to_anyone": {
-    "1.15.1": "other"
-  },
-  "cross_site_scripting_xss.reflected.non_admin_to_anyone": {
-    "1.15.1": "other"
-  },
-  "insecure_data_storage.insecure_data_storage": {
-    "1.15.1": "other"
-  },
-  "insecure_data_storage.insecure_data_storage.password": {
-    "1.15.1": "other"
-  },
-  "insufficient_security_configurability.weak_2fa_implementation.missing_failsafe": {
-    "1.15.1": "other"
-  },
-  "insufficient_security_configurability.weak_password_policy.allows_password_to_be_same_as_email_username": {
-    "1.15.1": "other"
-  },
-  "insufficient_security_configurability.weak_password_policy.allows_reuse_of_old_passwords": {
-    "1.15.1": "other"
-  },
-  "insufficient_security_configurability.weak_password_policy.complexity_char_type_not_enforced": {
-    "1.15.1": "other"
-  },
-  "insufficient_security_configurability.weak_password_policy.complexity_length_not_enforced": {
-    "1.15.1": "other"
-  },
-  "mobile_security_misconfiguration.clipboard_enabled.on_non_sensitive_content": {
-    "1.15.1": "other"
-  },
-  "mobile_security_misconfiguration.clipboard_enabled.on_sensitive_content": {
-    "1.15.1": "other"
-  },
-  "sensitive_data_exposure.mixed_content.requires_being_a_man_in_the_middle": {
-    "1.15.1": "other"
-  },
-  "sensitive_data_exposure.mixed_content.sensitive_data_disclosure": {
-    "1.15.1": "other"
-  },
-  "sensitive_data_exposure.token_leakage_via_referer.over_https": {
-    "1.15.1": "other"
-  },
-  "server_security_misconfiguration.using_default_credentials.production_server": {
-    "1.15.1": "other"
-  },
-  "server_security_misconfiguration.using_default_credentials.staging_development_server": {
-    "1.15.1": "other"
-  },
-  "server_side_injection.sql_injection.blind": {
-    "1.15.1": "other"
-  },
-  "server_side_injection.sql_injection.error_based": {
-    "1.15.1": "other"
-  }
+    "poor_physical_security": {
+        "1.1": "other"
+    },
+    "social_engineering": {
+        "1.1": "other"
+    },
+    "cross_site_scripting_xss.reflected.admin_to_anyone": {
+        "1.1": "other"
+    },
+    "cross_site_scripting_xss.reflected.non_admin_to_anyone": {
+        "1.1": "other"
+    },
+    "broken_authentication_and_session_management.authentication_bypass.horizontal": {
+        "1.2": "other"
+    },
+    "broken_authentication_and_session_management.authentication_bypass.vertical": {
+        "1.2": "other"
+    },
+    "insecure_data_storage.insecure_data_storage": {
+        "1.2": "other"
+    },
+    "insecure_data_storage.insecure_data_storage.password": {
+        "1.2": "other"
+    },
+    "insufficient_security_configurability.weak_password_policy.allows_password_to_be_same_as_email_username": {
+        "1.2": "other"
+    },
+    "insufficient_security_configurability.weak_password_policy.allows_reuse_of_old_passwords": {
+        "1.2": "other"
+    },
+    "insufficient_security_configurability.weak_password_policy.complexity_char_type_not_enforced": {
+        "1.2": "other"
+    },
+    "insufficient_security_configurability.weak_password_policy.complexity_length_not_enforced": {
+        "1.2": "other"
+    },
+    "sensitive_data_exposure.mixed_content.requires_being_a_man_in_the_middle": {
+        "1.2": "other"
+    },
+    "sensitive_data_exposure.mixed_content.sensitive_data_disclosure": {
+        "1.2": "other"
+    },
+    "sensitive_data_exposure.token_leakage_via_referer.over_https": {
+        "1.2": "other"
+    },
+    "unvalidated_redirects_and_forwards.open_redirect.get_based_all_users": {
+        "1.2": "unvalidated_redirects_and_forwards.open_redirect.get_based"
+    },
+    "unvalidated_redirects_and_forwards.open_redirect.get_based_authenticated": {
+        "1.2": "unvalidated_redirects_and_forwards.open_redirect.get_based"
+    },
+    "unvalidated_redirects_and_forwards.open_redirect.get_based_unauthenticated": {
+        "1.2": "unvalidated_redirects_and_forwards.open_redirect.get_based"
+    },
+    "broken_authentication_and_session_management.session_token_in_url.over_https": {
+        "1.2": "sensitive_data_exposure.sensitive_token_in_url"
+    },
+    "broken_authentication_and_session_management.session_token_in_url.over_http": {
+        "1.2": "sensitive_data_exposure.sensitive_token_in_url"
+    },
+    "broken_authentication_and_session_management.session_token_in_url": {
+        "1.2": "sensitive_data_exposure.sensitive_token_in_url"
+    },
+    "insecure_data_transport": {
+        "1.2": "mobile_security_misconfiguration"
+    },
+    "insecure_data_transport.ssl_certificate_pinning": {
+        "1.2": "mobile_security_misconfiguration.ssl_certificate_pinning"
+    },
+    "insecure_data_transport.ssl_certificate_pinning.absent": {
+        "1.2": "mobile_security_misconfiguration.ssl_certificate_pinning.absent"
+    },
+    "insecure_data_transport.ssl_certificate_pinning.defeatable": {
+        "1.2": "mobile_security_misconfiguration.ssl_certificate_pinning.defeatable"
+    },
+    "insecure_data_storage.credentials_stored_unencrypted": {
+        "1.2": "insecure_data_storage.sensitive_application_data_stored_unencrypted"
+    },
+    "insecure_data_storage.credentials_stored_unencrypted.on_external_storage": {
+        "1.2": "insecure_data_storage.sensitive_application_data_stored_unencrypted.on_external_storage"
+    },
+    "insecure_data_storage.credentials_stored_unencrypted.on_internal_storage": {
+        "1.2": "insecure_data_storage.sensitive_application_data_stored_unencrypted.on_internal_storage"
+    },
+    "insufficient_security_configurability.weak_password_policy.complexity_both_length_and_char_type_not_enforced": {
+        "1.2": "insufficient_security_configurability.no_password_policy"
+    },
+    "missing_function_level_access_control": {
+        "1.3": "broken_access_control"
+    },
+    "missing_function_level_access_control.server_side_request_forgery_ssrf": {
+        "1.3": "broken_access_control.server_side_request_forgery_ssrf"
+    },
+    "missing_function_level_access_control.server_side_request_forgery_ssrf.internal": {
+        "1.3": "broken_access_control.server_side_request_forgery_ssrf.internal"
+    },
+    "missing_function_level_access_control.server_side_request_forgery_ssrf.external": {
+        "1.3": "broken_access_control.server_side_request_forgery_ssrf.external"
+    },
+    "missing_function_level_access_control.username_enumeration": {
+        "1.3": "broken_access_control.username_enumeration"
+    },
+    "missing_function_level_access_control.username_enumeration.data_leak": {
+        "1.3": "broken_access_control.username_enumeration.data_leak"
+    },
+    "missing_function_level_access_control.exposed_sensitive_android_intent": {
+        "1.3": "broken_access_control.exposed_sensitive_android_intent"
+    },
+    "missing_function_level_access_control.exposed_sensitive_ios_url_scheme": {
+        "1.3": "broken_access_control.exposed_sensitive_ios_url_scheme"
+    },
+    "insecure_direct_object_references_idor": {
+        "1.3": "broken_access_control.idor"
+    },
+    "broken_authentication_and_session_management.weak_login_function.over_http": {
+        "1.4": "broken_authentication_and_session_management.weak_login_function.https_not_available_or_http_by_default"
+    },
+    "cross_site_scripting_xss.ie_only.older_version_ie_10_11": {
+        "1.4": "cross_site_scripting_xss.ie_only.ie11"
+    },
+    "cross_site_scripting_xss.ie_only.older_version_ie10": {
+        "1.4": "cross_site_scripting_xss.ie_only.older_version_ie11"
+    },
+    "broken_authentication_and_session_management.failure_to_invalidate_session.on_password_reset": {
+        "1.4": "broken_authentication_and_session_management.failure_to_invalidate_session.on_password_change"
+    },
+    "network_security_misconfiguration.telnet_enabled.credentials_required": {
+        "1.4": "broken_authentication_and_session_management.weak_login_function.other_plaintext_protocol_no_secure_alternative"
+    },
+    "server_security_misconfiguration.using_default_credentials.production_server": {
+        "1.4": "other"
+    },
+    "server_security_misconfiguration.using_default_credentials.staging_development_server": {
+        "1.4": "other"
+    },
+    "server_side_injection.sql_injection.blind": {
+        "1.4": "other"
+    },
+    "server_side_injection.sql_injection.error_based": {
+        "1.4": "other"
+    },
+    "server_security_misconfiguration.misconfigured_dns.subdomain_takeover": {
+        "1.5": "other"
+    },
+    "server_security_misconfiguration.mail_server_misconfiguration.missing_spf_on_email_domain": {
+        "1.5": "server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_on_email_domain"
+    },
+    "server_security_misconfiguration.mail_server_misconfiguration.email_spoofable_via_third_party_api_misconfiguration": {
+        "1.5": "server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_on_email_domain"
+    },
+    "cross_site_scripting_xss.stored.admin_to_anyone": {
+        "1.5": "cross_site_scripting_xss.stored.privileged_user_to_privilege_elevation"
+    },
+    "server_security_misconfiguration.captcha_bypass": {
+        "1.5": "server_security_misconfiguration.captcha"
+    },
+    "server_security_misconfiguration.captcha_bypass.implementation_vulnerability": {
+        "1.5": "server_security_misconfiguration.captcha.implementation_vulnerability"
+    },
+    "server_security_misconfiguration.captcha_bypass.brute_force": {
+        "1.5": "server_security_misconfiguration.captcha.brute_force"
+    },
+    "broken_access_control.server_side_request_forgery_ssrf.internal": {
+        "1.6": "broken_access_control.server_side_request_forgery_ssrf.internal_high_impact"
+    },
+    "server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_on_email_domain": {
+        "1.6": "server_security_misconfiguration.mail_server_misconfiguration.no_spoofing_protection_on_email_domain"
+    },
+    "server_security_misconfiguration.mail_server_misconfiguration.missing_spf_on_non_email_domain": {
+        "1.6": "server_security_misconfiguration.mail_server_misconfiguration.missing_or_misconfigured_spf_and_or_dkim"
+    },
+    "server_security_misconfiguration.mail_server_misconfiguration.spf_uses_a_soft_fail": {
+        "1.6": "server_security_misconfiguration.mail_server_misconfiguration.missing_or_misconfigured_spf_and_or_dkim"
+    },
+    "server_security_misconfiguration.mail_server_misconfiguration.spf_includes_10_lookups": {
+        "1.6": "server_security_misconfiguration.mail_server_misconfiguration.missing_or_misconfigured_spf_and_or_dkim"
+    },
+    "server_security_misconfiguration.mail_server_misconfiguration.missing_dmarc": {
+        "1.6": "server_security_misconfiguration.mail_server_misconfiguration.email_spoofing_to_inbox_due_to_missing_or_misconfigured_dmarc_on_email_domain"
+    },
+    "insufficient_security_configurability.weak_2fa_implementation.missing_failsafe": {
+        "1.7": "other"
+    },
+    "broken_access_control.username_enumeration.data_leak": {
+        "1.7": "broken_access_control.username_enumeration.non_brute_force"
+    },
+    "insufficient_security_configurability.weak_2fa_implementation": {
+        "1.7": "insufficient_security_configurability.weak_two_fa_implementation"
+    },
+    "sensitive_data_exposure.token_leakage_via_referer.trusted_3rd_party": {
+        "1.7": "sensitive_data_exposure.token_leakage_via_referer.trusted_third_party"
+    },
+    "sensitive_data_exposure.token_leakage_via_referer.untrusted_3rd_party": {
+        "1.7": "sensitive_data_exposure.token_leakage_via_referer.untrusted_third_party"
+    },
+    "cross_site_scripting_xss.ie_only.ie11": {
+        "1.7": "cross_site_scripting_xss.ie_only.ie_eleven"
+    },
+    "cross_site_scripting_xss.ie_only.older_version_ie11": {
+        "1.7": "cross_site_scripting_xss.ie_only.older_version_ie_eleven"
+    },
+    "mobile_security_misconfiguration.clipboard_enabled.on_non_sensitive_content": {
+        "1.8": "other"
+    },
+    "mobile_security_misconfiguration.clipboard_enabled.on_sensitive_content": {
+        "1.8": "other"
+    },
+    "sensitive_data_exposure.critically_sensitive_data.password_disclosure": {
+        "1.9": "sensitive_data_exposure.disclosure_of_secrets"
+    },
+    "sensitive_data_exposure.critically_sensitive_data.private_api_keys": {
+        "1.9": "sensitive_data_exposure.disclosure_of_secrets"
+    },
+    "sensitive_data_exposure.critically_sensitive_data": {
+        "1.9": "sensitive_data_exposure"
+    },
+    "insufficient_security_configurability.lack_of_verification_email": {
+        "1.10": "insufficient_security_configurability.verification_of_contact_method_not_required"
+    },
+    "broken_authentication_and_session_management.weak_login_function.https_not_available_or_http_by_default": {
+        "1.10": "broken_authentication_and_session_management.weak_login_function.over_http"
+    },
+    "broken_authentication_and_session_management.weak_login_function.http_and_https_available": {
+        "1.10": "broken_authentication_and_session_management.weak_login_function.over_http"
+    },
+    "broken_authentication_and_session_management.weak_login_function.lan_only": {
+        "1.10": "broken_authentication_and_session_management.weak_login_function.over_http"
+    },
+    "cross_site_request_forgery_csrf.flash_based.high_impact": {
+        "1.10": "cross_site_request_forgery_csrf.flash_based"
+    },
+    "cross_site_request_forgery_csrf.flash_based.low_impact": {
+        "1.10": "cross_site_request_forgery_csrf.flash_based"
+    },
+    "automotive_security_misconfiguration.infotainment": {
+        "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit"
+    },
+    "automotive_security_misconfiguration.infotainment.pii_leakage": {
+        "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.pii_leakage"
+    },
+    "automotive_security_misconfiguration.infotainment.code_execution_can_bus_pivot": {
+        "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.code_execution_can_bus_pivot"
+    },
+    "automotive_security_misconfiguration.infotainment.code_execution_no_can_bus_pivot": {
+        "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.code_execution_no_can_bus_pivot"
+    },
+    "automotive_security_misconfiguration.infotainment.unauthorized_access_to_services": {
+        "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.unauthorized_access_to_services"
+    },
+    "automotive_security_misconfiguration.infotainment.source_code_dump": {
+        "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.source_code_dump"
+    },
+    "automotive_security_misconfiguration.infotainment.dos_brick": {
+        "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.dos_brick"
+    },
+    "automotive_security_misconfiguration.infotainment.default_credentials": {
+        "1.10": "automotive_security_misconfiguration.infotainment_radio_head_unit.default_credentials"
+    },
+    "broken_cryptography": {
+        "1.11": "other"
+    },
+    "broken_cryptography.cryptographic_flaw": {
+        "1.11": "other"
+    },
+    "broken_cryptography.cryptographic_flaw.incorrect_usage": {
+        "1.11": "other"
+    },
+    "cross_site_scripting_xss.ie_only.ie_eleven": {
+        "1.11": "other"
+    },
+    "cross_site_scripting_xss.ie_only.older_version_ie_eleven": {
+        "1.11": "cross_site_scripting_xss.ie_only"
+    },
+    "cross_site_scripting_xss.ie_only.xss_filter_disabled": {
+        "1.11": "other"
+    },
+    "automotive_security_misconfiguration.infotainment_radio_head_unit.pii_leakage": {
+        "1.11": "automotive_security_misconfiguration.infotainment_radio_head_unit.sensitive_data_leakage_exposure"
+    },
+    "broken_access_control.server_side_request_forgery_ssrf": {
+        "1.11": "server_security_misconfiguration.server_side_request_forgery_ssrf"
+    },
+    "broken_access_control.server_side_request_forgery_ssrf.internal_high_impact": {
+        "1.11": "server_security_misconfiguration.server_side_request_forgery_ssrf.internal_high_impact"
+    },
+    "broken_access_control.server_side_request_forgery_ssrf.internal_scan_and_or_medium_impact": {
+        "1.11": "server_security_misconfiguration.server_side_request_forgery_ssrf.internal_scan_and_or_medium_impact"
+    },
+    "broken_access_control.server_side_request_forgery_ssrf.dns_query_only": {
+        "1.11": "server_security_misconfiguration.server_side_request_forgery_ssrf.external_dns_query_only"
+    },
+    "broken_access_control.server_side_request_forgery_ssrf.external": {
+        "1.11": "server_security_misconfiguration.server_side_request_forgery_ssrf.external_low_impact"
+    },
+    "broken_authentication_and_session_management.privilege_escalation": {
+        "1.14": "broken_access_control.privilege_escalation"
+    },
+    "server_security_misconfiguration.misconfigured_dns.high_impact_subdomain_takeover": {
+        "1.14.2": "other"
+    },
+    "server_security_misconfiguration.misconfigured_dns.basic_subdomain_takeover": {
+        "1.14.2": "server_security_misconfiguration.misconfigured_dns.subdomain_takeover"
+    },
+    "broken_access_control.idor.read_edit_delete_non_sensitive_information": {
+        "1.15": "broken_access_control.idor.view_non_sensitive_information"
+    },
+    "broken_access_control.idor.read_edit_delete_sensitive_information_guid": {
+        "1.15": "broken_access_control.idor.modify_view_sensitive_information_guid"
+    },
+    "broken_access_control.idor.read_sensitive_information_iterable_object_identifiers": {
+        "1.15": "broken_access_control.idor.modify_view_sensitive_information_iterable_object_identifiers"
+    },
+    "broken_access_control.idor.edit_delete_sensitive_information_iterable_object_identifiers": {
+        "1.15": "broken_access_control.idor.modify_sensitive_information_iterable_object_identifiers"
+    },
+    "broken_access_control.idor.read_edit_delete_sensitive_information_iterable_object_identifiers": {
+        "1.15": "broken_access_control.idor.modify_view_sensitive_information_iterable_object_identifiers"
+    },
+    "ai_application_security.llm_security.excessive_agency_permission_manipulation": {
+        "1.16": "other"
+    },
+    "ai_application_security.llm_security.llm_output_handling": {
+        "1.16": "other"
+    },
+    "ai_application_security.llm_security.prompt_injection": {
+        "1.16": "other"
+    },
+    "ai_application_security.llm_security.training_data_poisoning": {
+        "1.16": "other"
+    }
 }
\ No newline at end of file
diff --git a/mappings/cvss_v3/cvss_v3.json b/mappings/cvss_v3/cvss_v3.json
index d1b042e1..492dfb3d 100644
--- a/mappings/cvss_v3/cvss_v3.json
+++ b/mappings/cvss_v3/cvss_v3.json
@@ -7,54 +7,163 @@
       "id": "ai_application_security",
       "children": [
         {
-          "id": "llm_security",
+          "id": "adversarial_example_injection",
           "children": [
             {
-              "id": "excessive_agency_permission_manipulation",
-              "cvss_v3": "AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"
+              "id": "ai_misclassification_attacks",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L"
+            }
+          ]
+        },
+        {
+          "id": "ai_safety",
+          "children": [
+            {
+              "id": "misinformation_wrong_factual_data",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N"
+            }
+          ]
+        },
+        {
+          "id": "denial_of_service_dos",
+          "children": [
+            {
+              "id": "application_wide",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"
+            },
+            {
+              "id": "tenant_scoped",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L"
+            }
+          ]
+        },
+        {
+          "id": "improper_input_handling",
+          "children": [
+            {
+              "id": "ansi_escape_codes",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L"
             },
             {
-              "id": "llm_output_handling",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L"
+              "id": "rtl_overrides",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L"
+            },
+            {
+              "id": "unicode_confusables",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L"
+            }
+          ]
+        },
+        {
+          "id": "improper_output_handling",
+          "children": [
+            {
+              "id": "cross_site_scripting_xss",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
+            },
+            {
+              "id": "markdown_html_injection",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
+            }
+          ]
+        },
+        {
+          "id": "insufficient_rate_limiting",
+          "children": [
+            {
+              "id": "query_flooding_api_token_abuse",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"
+            }
+          ]
+        },
+        {
+          "id": "model_extraction",
+          "children": [
+            {
+              "id": "api_query_based_model_reconstruction",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+            }
+          ]
+        },
+        {
+          "id": "prompt_injection",
+          "children": [
+            {
+              "id": "system_prompt_leakage",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"
+            }
+          ]
+        },
+        {
+          "id": "remote_code_execution",
+          "children": [
+            {
+              "id": "full_system_compromise",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"
             },
             {
-              "id": "prompt_injection",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L"
+              "id": "sandboxed_container_code_execution",
+              "cvss_v3": "AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:H"
+            }
+          ]
+        },
+        {
+          "id": "sensitive_information_disclosure",
+          "children": [
+            {
+              "id": "cross_tenant_pii_leakage_exposure",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"
             },
             {
-              "id": "training_data_poisoning",
+              "id": "key_leak",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+            }
+          ]
+        },
+        {
+          "id": "training_data_poisoning",
+          "children": [
+            {
+              "id": "backdoor_injection_bias_manipulation",
               "cvss_v3": "AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H"
             }
           ]
+        },
+        {
+          "id": "vector_and_embedding_weaknesses",
+          "children": [
+            {
+              "id": "embedding_exfiltration_model_extraction",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N"
+            },
+            {
+              "id": "semantic_indexing",
+              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
+            }
+          ]
         }
       ]
     },
     {
       "id": "algorithmic_biases",
-      "children": [
-        {
-          "id": "aggregation_bias",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
-        },
-        {
-          "id": "processing_bias",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
-        }
-      ]
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
     },
     {
       "id": "application_level_denial_of_service_dos",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
       "children": [
-        {
-          "id": "app_crash",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
         {
           "id": "critical_impact_and_or_easy_difficulty",
           "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
         },
         {
           "id": "excessive_resource_consumption",
+          "children": [
+            {
+              "id": "injection_prompt",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+            }
+          ],
           "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H"
         },
         {
@@ -238,20 +347,33 @@
     },
     {
       "id": "broken_access_control",
-      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
       "children": [
         {
-          "id": "privilege_escalation",
+          "id": "bypass_of_password_confirmation",
           "cvss_v3": "AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N"
         },
+        {
+          "id": "exposed_sensitive_android_intent",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "exposed_sensitive_ios_url_scheme",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
+        {
+          "id": "privilege_escalation",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+        },
         {
           "id": "username_enumeration",
           "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
         }
-      ]
+      ],
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
     },
     {
       "id": "broken_authentication_and_session_management",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
       "children": [
         {
           "id": "authentication_bypass",
@@ -295,10 +417,6 @@
             {
               "id": "on_two_fa_activation_change",
               "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N"
-            },
-            {
-              "id": "permission_change",
-              "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N"
             }
           ]
         },
@@ -326,10 +444,6 @@
         {
           "id": "weak_login_function",
           "children": [
-            {
-              "id": "not_operational",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-            },
             {
               "id": "other_plaintext_protocol_no_secure_alternative",
               "cvss_v3": "AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"
@@ -370,21 +484,14 @@
     },
     {
       "id": "cross_site_request_forgery_csrf",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
       "children": [
         {
           "id": "action_specific",
           "children": [
-            {
-              "id": "authenticated_action",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N"
-            },
             {
               "id": "logout",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:N"
-            },
-            {
-              "id": "unauthenticated_action",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"
             }
           ]
         },
@@ -404,6 +511,7 @@
     },
     {
       "id": "cross_site_scripting_xss",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
       "children": [
         {
           "id": "cookie_based",
@@ -431,10 +539,6 @@
             {
               "id": "non_self",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
-            },
-            {
-              "id": "self",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
             }
           ]
         },
@@ -453,20 +557,12 @@
               "id": "privileged_user_to_privilege_elevation",
               "cvss_v3": "AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N"
             },
-            {
-              "id": "self",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-            },
             {
               "id": "url_based",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
             }
           ]
         },
-        {
-          "id": "trace_method",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
         {
           "id": "universal_uxss",
           "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N"
@@ -475,6 +571,7 @@
     },
     {
       "id": "cryptographic_weakness",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
       "children": [
         {
           "id": "broken_cryptography",
@@ -493,38 +590,13 @@
           "id": "incomplete_cleanup_of_keying_material",
           "cvss_v3": "AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L"
         },
-        {
-          "id": "insecure_implementation",
-          "children": [
-            {
-              "id": "improper_following_of_specification",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L"
-            },
-            {
-              "id": "missing_cryptographic_step",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L"
-            }
-          ]
-        },
         {
           "id": "insecure_key_generation",
           "children": [
-            {
-              "id": "improper_asymmetric_exponent_selection",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L"
-            },
-            {
-              "id": "improper_asymmetric_prime_selection",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L"
-            },
             {
               "id": "insufficient_key_space",
               "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"
             },
-            {
-              "id": "insufficient_key_stretching",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"
-            },
             {
               "id": "key_exchange_without_entity_authentication",
               "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"
@@ -567,10 +639,6 @@
         {
           "id": "insufficient_verification_of_data_authenticity",
           "children": [
-            {
-              "id": "cryptographic_signature",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"
-            },
             {
               "id": "identity_check_value",
               "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"
@@ -597,10 +665,6 @@
         {
           "id": "side_channel_attack",
           "children": [
-            {
-              "id": "differential_fault_analysis",
-              "cvss_v3": "AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
-            },
             {
               "id": "emanations_attack",
               "cvss_v3": "AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
@@ -626,14 +690,6 @@
         {
           "id": "weak_hash",
           "children": [
-            {
-              "id": "lack_of_salt",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N"
-            },
-            {
-              "id": "predictable_hash_collision",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N"
-            },
             {
               "id": "use_of_predictable_salt",
               "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N"
@@ -644,16 +700,7 @@
     },
     {
       "id": "data_biases",
-      "children": [
-        {
-          "id": "pre_existing_bias",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
-        },
-        {
-          "id": "representation_bias",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
-        }
-      ]
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
     },
     {
       "id": "decentralized_application_misconfiguration",
@@ -661,12 +708,7 @@
     },
     {
       "id": "developer_biases",
-      "children": [
-        {
-          "id": "implicit_bias",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:N"
-        }
-      ]
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
     },
     {
       "id": "external_behavior",
@@ -702,11 +744,8 @@
     },
     {
       "id": "insecure_data_transport",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
       "children": [
-        {
-          "id": "cleartext_transmission_of_sensitive_data",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"
-        },
         {
           "id": "executable_download",
           "children": [
@@ -724,6 +763,7 @@
     },
     {
       "id": "insecure_os_firmware",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
       "children": [
         {
           "id": "command_injection",
@@ -735,17 +775,9 @@
             {
               "id": "non_sensitive",
               "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
-            },
-            {
-              "id": "sensitive",
-              "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
             }
           ]
         },
-        {
-          "id": "failure_to_remove_sensitive_artifacts_from_disk",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
-        },
         {
           "id": "hardcoded_password",
           "children": [
@@ -759,10 +791,6 @@
             }
           ]
         },
-        {
-          "id": "kiosk_escape_or_breakout",
-          "cvss_v3": "AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L"
-        },
         {
           "id": "local_administrator_on_default_environment",
           "cvss_v3": "AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"
@@ -771,18 +799,6 @@
           "id": "over_permissioned_credentials_on_storage",
           "cvss_v3": "AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
         },
-        {
-          "id": "poorly_configured_disk_encryption",
-          "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
-        },
-        {
-          "id": "poorly_configured_operating_system_security",
-          "cvss_v3": "AV:L/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L"
-        },
-        {
-          "id": "recovery_of_disk_contains_sensitive_material",
-          "cvss_v3": "AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
-        },
         {
           "id": "shared_credentials_on_storage",
           "cvss_v3": "AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
@@ -790,10 +806,6 @@
         {
           "id": "weakness_in_firmware_updates",
           "children": [
-            {
-              "id": "firmware_cannot_be_updated",
-              "cvss_v3": "AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"
-            },
             {
               "id": "firmware_does_not_validate_update_integrity",
               "cvss_v3": "AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H"
@@ -844,12 +856,7 @@
     },
     {
       "id": "misinterpretation_biases",
-      "children": [
-        {
-          "id": "context_ignorance",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"
-        }
-      ]
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
     },
     {
       "id": "mobile_security_misconfiguration",
@@ -867,34 +874,18 @@
     },
     {
       "id": "network_security_misconfiguration",
-      "children": [
-        {
-          "id": "telnet_enabled",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        }
-      ]
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
     },
     {
       "id": "physical_security_issues",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
       "children": [
-        {
-          "id": "bypass_of_physical_access_control",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
-        },
         {
           "id": "weakness_in_physical_access_control",
           "children": [
-            {
-              "id": "cloneable_key",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N"
-            },
             {
               "id": "commonly_keyed_system",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N"
-            },
-            {
-              "id": "master_key_identification",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
             }
           ]
         }
@@ -920,18 +911,11 @@
     },
     {
       "id": "sensitive_data_exposure",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
       "children": [
-        {
-          "id": "disclosure_of_known_public_information",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
         {
           "id": "disclosure_of_secrets",
           "children": [
-            {
-              "id": "data_traffic_spam",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-            },
             {
               "id": "for_internal_asset",
               "cvss_v3": "AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L"
@@ -940,21 +924,9 @@
               "id": "for_publicly_accessible_asset",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"
             },
-            {
-              "id": "intentionally_public_sample_or_invalid",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-            },
-            {
-              "id": "non_corporate_user",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-            },
             {
               "id": "pay_per_use_abuse",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"
-            },
-            {
-              "id": "pii_leakage_exposure",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"
             }
           ]
         },
@@ -972,8 +944,8 @@
           ]
         },
         {
-          "id": "internal_ip_disclosure",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+          "id": "graphql_introspection_enabled",
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"
         },
         {
           "id": "json_hijacking",
@@ -987,10 +959,6 @@
           "id": "non_sensitive_token_in_url",
           "cvss_v3": "AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
         },
-        {
-          "id": "sensitive_data_hardcoded",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
         {
           "id": "sensitive_token_in_url",
           "cvss_v3": "AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
@@ -1031,7 +999,6 @@
         },
         {
           "id": "visible_detailed_error_page",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
           "children": [
             {
               "id": "detailed_server_configuration",
@@ -1041,35 +1008,24 @@
         },
         {
           "id": "weak_password_reset_implementation",
-          "cvss_v3": "AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N",
           "children": [
             {
               "id": "token_leakage_via_host_header_poisoning",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L"
             }
-          ]
-        },
-        {
-          "id": "xssi",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N"
+          ],
+          "cvss_v3": "AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N"
         }
       ]
     },
     {
       "id": "server_security_misconfiguration",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
       "children": [
         {
           "id": "bitsquatting",
           "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
         },
-        {
-          "id": "cache_poisoning",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
-        {
-          "id": "cache_deception",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
         {
           "id": "captcha",
           "children": [
@@ -1080,10 +1036,6 @@
             {
               "id": "implementation_vulnerability",
               "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"
-            },
-            {
-              "id": "missing",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
             }
           ]
         },
@@ -1104,10 +1056,6 @@
             }
           ]
         },
-        {
-          "id": "cookie_scoped_to_parent_domain",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
         {
           "id": "dbms_misconfiguration",
           "children": [
@@ -1117,58 +1065,36 @@
             }
           ]
         },
-        {
-          "id": "directory_listing_enabled",
-          "children": [
-            {
-              "id": "non_sensitive_data_exposure",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-            },
-            {
-              "id": "sensitive_data_exposure",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
-            }
-          ]
-        },
         {
           "id": "email_verification_bypass",
           "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
         },
-        {
-          "id": "exposed_admin_portal",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
-        {
-          "id": "fingerprinting_banner_disclosure",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
         {
           "id": "insecure_ssl",
           "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"
         },
         {
           "id": "lack_of_password_confirmation",
-          "cvss_v3": "AV:P/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L",
           "children": [
             {
               "id": "manage_two_fa",
               "cvss_v3": "AV:P/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L"
             }
-          ]
+          ],
+          "cvss_v3": "AV:P/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L"
         },
         {
           "id": "lack_of_security_headers",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N",
           "children": [
             {
               "id": "cache_control_for_a_sensitive_page",
               "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
             }
-          ]
+          ],
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"
         },
         {
           "id": "mail_server_misconfiguration",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
           "children": [
             {
               "id": "email_spoofing_to_inbox_due_to_missing_or_misconfigured_dmarc_on_email_domain",
@@ -1204,10 +1130,6 @@
         {
           "id": "missing_secure_or_httponly_cookie_flag",
           "children": [
-            {
-              "id": "non_session_cookie",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-            },
             {
               "id": "session_token",
               "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
@@ -1220,7 +1142,6 @@
         },
         {
           "id": "no_rate_limiting_on_form",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
           "children": [
             {
               "id": "change_password",
@@ -1230,11 +1151,11 @@
               "id": "login",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
             }
-          ]
+          ],
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N"
         },
         {
           "id": "oauth_misconfiguration",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
           "children": [
             {
               "id": "account_squatting",
@@ -1243,24 +1164,17 @@
             {
               "id": "account_takeover",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
+            },
+            {
+              "id": "insecure_redirect_uri",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
+            },
+            {
+              "id": "missing_state_parameter",
+              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
             }
-          ]
-        },
-        {
-          "id": "path_traversal",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
-        },
-        {
-          "id": "potentially_unsafe_http_method_enabled",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
-        {
-          "id": "race_condition",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
-        {
-          "id": "request_smuggling",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+          ],
+          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"
         },
         {
           "id": "rfd",
@@ -1291,25 +1205,9 @@
             }
           ]
         },
-        {
-          "id": "software_package_takeover",
-          "cvss_v3": "AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
-        },
-        {
-          "id": "ssl_attack_breach_poodle_etc",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N"
-        },
-        {
-          "id": "unsafe_cross_origin_resource_sharing",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N"
-        },
         {
           "id": "unsafe_file_upload",
           "children": [
-            {
-              "id": "file_extension_filter_bypass",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-            },
             {
               "id": "no_antivirus",
               "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N"
@@ -1320,10 +1218,6 @@
             }
           ]
         },
-        {
-          "id": "username_enumeration",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
         {
           "id": "using_default_credentials",
           "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L"
@@ -1341,10 +1235,10 @@
     },
     {
       "id": "server_side_injection",
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
       "children": [
         {
           "id": "content_spoofing",
-          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N",
           "children": [
             {
               "id": "email_html_injection",
@@ -1354,10 +1248,6 @@
               "id": "external_authentication_injection",
               "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"
             },
-            {
-              "id": "flash_based_external_authentication_injection",
-              "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
-            },
             {
               "id": "html_content_injection",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
@@ -1370,7 +1260,8 @@
               "id": "impersonation_via_broken_link_hijacking",
               "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"
             }
-          ]
+          ],
+          "cvss_v3": "AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N"
         },
         {
           "id": "file_inclusion",
@@ -1380,14 +1271,6 @@
           "id": "http_response_manipulation",
           "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"
         },
-        {
-          "id": "ldap_injection",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
-        },
-        {
-          "id": "parameter_pollution",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
-        },
         {
           "id": "remote_code_execution_rce",
           "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
@@ -1402,10 +1285,6 @@
             {
               "id": "basic",
               "cvss_v3": "AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"
-            },
-            {
-              "id": "custom",
-              "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"
             }
           ]
         },
@@ -1421,16 +1300,7 @@
     },
     {
       "id": "societal_biases",
-      "children": [
-        {
-          "id": "confirmation_bias",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"
-        },
-        {
-          "id": "systemic_bias",
-          "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"
-        }
-      ]
+      "cvss_v3": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N"
     },
     {
       "id": "unvalidated_redirects_and_forwards",
diff --git a/mappings/cwe/cwe.json b/mappings/cwe/cwe.json
index cadb68a2..395db0c8 100644
--- a/mappings/cwe/cwe.json
+++ b/mappings/cwe/cwe.json
@@ -797,6 +797,12 @@
             "CWE-200"
           ]
         },
+        {
+          "id": "graphql_introspection_enabled",
+          "cwe": [
+            "CWE-200"
+          ]
+        },
         {
           "id": "non_sensitive_token_in_url",
           "cwe": [
diff --git a/mappings/remediation_advice/remediation_advice.json b/mappings/remediation_advice/remediation_advice.json
index e38e5f4c..24ba0d57 100644
--- a/mappings/remediation_advice/remediation_advice.json
+++ b/mappings/remediation_advice/remediation_advice.json
@@ -9,41 +9,9 @@
   "content": [
     {
       "id": "ai_application_security",
-      "children": [
-        {
-          "id": "llm_security",
-          "children": [
-            {
-              "id": "excessive_agency_permission_manipulation",
-              "remediation_advice": "Implement stringent access controls and define clear user permissions for interacting with the LLM. Employ regular audits and monitoring to detect and prevent unauthorized or excessive permission changes. Use role-based access control systems to manage user permissions effectively. Educate users and administrators about the risks of permission manipulation and establish protocols for safely managing access rights.",
-              "references": [
-                "https://owasp.org/www-project-ai-security-and-privacy-guide/#:~:text=,auditability%2C%20bias%20countermeasures%20and%20oversight"
-              ]
-            },
-            {
-              "id": "llm_output_handling",
-              "remediation_advice": "Implement output filtering and validation to ensure the LLM's responses are appropriate and secure. Use context-aware controls to manage how the LLM processes and responds to various inputs. Regularly audit and update the LLM to handle new types of outputs and emerging security threats. Train users on the potential risks associated with LLM outputs, particularly in sensitive applications.",
-              "references": [
-                "https://whylabs.ai/blog/posts/safeguard-monitor-large-language-model-llm-applications"
-              ]
-            },
-            {
-              "id": "prompt_injection",
-              "remediation_advice": "Implement robust input sanitization to prevent malicious or unintended prompt execution. Establish strict access controls and usage monitoring to detect and prevent unauthorized or anomalous interactions with the LLM. Regularly review and update the model's training data and algorithms to reduce vulnerabilities. Educate users and developers on safe interaction practices with AI systems.",
-              "references": [
-                "https://developer.nvidia.com/blog/securing-llm-systems-against-prompt-injection"
-              ]
-            },
-            {
-              "id": "training_data_poisoning",
-              "remediation_advice": "Implement robust anomaly detection systems to identify and address poisoned data in real-time. Regularly retrain the LLM with clean, diverse, and representative datasets to correct any potential biases or vulnerabilities. Engage in continuous monitoring and auditing of the training process and data sources.",
-              "references": [
-                "https://owasp.org/www-project-top-10-for-large-language-model-applications/#:~:text=,security%2C%20accuracy%2C%20or%20ethical%20behavior",
-                "https://owasp.org/www-project-top-10-for-large-language-model-applications/Archive/0_1_vulns/Training_Data_Poisoning.html"
-              ]
-            }
-          ]
-        }
+      "remediation_advice": "Secure AI apps by isolating tenants, enforcing strict input/output validation, and limiting API access. Use adversarial training, prompt escaping, and differential privacy. Sanitize all content to block XSS, Unicode abuse, and injections. Apply rate limiting and monitor for abnormal usage. Protect model APIs from extraction or abuse. Follow OWASP LLM Top 10, MITRE ATLAS, and SAIF for best practices.",
+      "references": [
+        "https://owasp.org/www-project-top-10-for-large-language-model-applications/"
       ]
     },
     {
@@ -358,6 +326,13 @@
     {
       "id": "broken_access_control",
       "children": [
+        {
+          "id": "bypass_of_password_confirmation",
+          "remediation_advice": "Ensure that password confirmation checks are enforced server-side for all sensitive operations. Do not rely solely on client-side enforcement, as it can be bypassed. Use middleware or access control logic to validate the user's current password before processing the request.",
+          "references": [
+            "https://portswigger.net/web-security/access-control"
+          ]
+        },
         {
           "id": "exposed_sensitive_android_intent",
           "remediation_advice": "1. If you use an intent to bind to a Service, ensure that your app is secure by using an explicit intent. Using an implicit intent to start a service is a security risk as you can't be certain what service will respond to the intent, and the user can't see which service starts.\n2. If data within a broadcast intent may be sensitive, you should consider applying a permission to make sure that malicious applications can't register to receive those messages without appropriate permissions. In these circumstances you may also consider invoking the receiver directly rather than raising a broadcast.\n3. By default, receivers are exported and can be invoked by any other application. If your BroadcastReceiver is intended for use by other applications, you may want to apply security permissions to receivers using the <receiver> element within the application manifest. This prevents applications without appropriate permissions from sending an intent to the BroadcastReceiver.\n",
@@ -1248,6 +1223,10 @@
             "http://resources.infosecinstitute.com/metadata-and-information-security/"
           ]
         },
+        {
+          "id": "graphql_introspection_enabled",
+          "remediation_advice": "Disable GraphQL introspection in production environments to prevent attackers from enumerating the API schema."
+        },
         {
           "id": "json_hijacking",
           "remediation_advice": "Follow the JSON specification which requires an object as top level entity. If the top level object is an array, the response will be a valid Java Script code that might be parsed using a `<script>` tag.",
@@ -1345,17 +1324,17 @@
           ]
         },
         {
-          "id": "cache_poisoning",
-          "remediation_advice": "The most robust defense against cache poisoning is to disable caching. This is plainly unrealistic advice for some, but it's likely that some websites that start using a service like Cloudflare for DDoS protection or easy SSL end up vulnerable to cache poisoning simply because caching is enabled by default.\n\nRestricting caching to purely static responses is also effective, provided you're sufficiently wary about what you define as 'static'.\n\nLikewise, avoiding taking input from headers and cookies is an effective way to prevent cache poisoning, but it's hard to know if other layers and frameworks are sneaking in support for extra headers. You might want to audit every page of your application with Param Miner to flush out unkeyed inputs.\n\nOnce you've identified unkeyed inputs in your application, the ideal solution is to outright disable them. Failing that, you could strip the inputs at the cache layer, or add them to the cache key. Some caches let you use the Vary header to key unkeyed inputs, and others let you define custom cache keys but may restrict this feature to 'enterprise' customers.\n\nFinally, regardless of whether your application has a cache, some of your clients may have a cache at their end and as such client-side vulnerabilities like XSS in HTTP headers should never be ignored.",
+          "id": "cache_deception",
+          "remediation_advice": "The most effective way to prevent cache deception is to carefully control which responses are cached and to avoid caching responses that contain user-specific or sensitive data.\n\nEnsure that authentication-protected pages and any responses containing sensitive information explicitly disable caching via headers such as `Cache-Control: no-store, no-cache, must-revalidate` and `Pragma: no-cache`.\n\nBe particularly cautious with URL structures. Cache deception attacks often rely on tricking the cache into treating dynamic responses as static. A simple mitigation is to ensure that URLs ending in extensions like `.css`, `.js`, `.png`, etc., only serve static content and do not process dynamic requests.\n\nFor additional protection, configure your cache layer to only cache responses from a predefined allowlist of safe URL patterns. This prevents attackers from injecting deceptive paths that lead to cached sensitive data.\n\nAuditing your cache behavior using tools like Param Miner or manual testing can help identify and eliminate unintended caching of sensitive responses. Additionally, security headers such as `X-Content-Type-Options: nosniff` can help prevent certain forms of cache-related attacks.\n\nFinally, if your application uses a CDN or a reverse proxy (e.g., Cloudflare, Akamai, Varnish), ensure that caching rules are correctly configured to prevent caching of personalized or user-specific content.",
           "references": [
-            "https://portswigger.net/blog/practical-web-cache-poisoning"
+            "https://portswigger.net/web-security/web-cache-deception"
           ]
         },
         {
-          "id": "cache_deception",
-          "remediation_advice": "The most effective way to prevent cache deception is to carefully control which responses are cached and to avoid caching responses that contain user-specific or sensitive data.\n\nEnsure that authentication-protected pages and any responses containing sensitive information explicitly disable caching via headers such as `Cache-Control: no-store, no-cache, must-revalidate` and `Pragma: no-cache`.\n\nBe particularly cautious with URL structures. Cache deception attacks often rely on tricking the cache into treating dynamic responses as static. A simple mitigation is to ensure that URLs ending in extensions like `.css`, `.js`, `.png`, etc., only serve static content and do not process dynamic requests.\n\nFor additional protection, configure your cache layer to only cache responses from a predefined allowlist of safe URL patterns. This prevents attackers from injecting deceptive paths that lead to cached sensitive data.\n\nAuditing your cache behavior using tools like Param Miner or manual testing can help identify and eliminate unintended caching of sensitive responses. Additionally, security headers such as `X-Content-Type-Options: nosniff` can help prevent certain forms of cache-related attacks.\n\nFinally, if your application uses a CDN or a reverse proxy (e.g., Cloudflare, Akamai, Varnish), ensure that caching rules are correctly configured to prevent caching of personalized or user-specific content.",
+          "id": "cache_poisoning",
+          "remediation_advice": "The most robust defense against cache poisoning is to disable caching. This is plainly unrealistic advice for some, but it's likely that some websites that start using a service like Cloudflare for DDoS protection or easy SSL end up vulnerable to cache poisoning simply because caching is enabled by default.\n\nRestricting caching to purely static responses is also effective, provided you're sufficiently wary about what you define as 'static'.\n\nLikewise, avoiding taking input from headers and cookies is an effective way to prevent cache poisoning, but it's hard to know if other layers and frameworks are sneaking in support for extra headers. You might want to audit every page of your application with Param Miner to flush out unkeyed inputs.\n\nOnce you've identified unkeyed inputs in your application, the ideal solution is to outright disable them. Failing that, you could strip the inputs at the cache layer, or add them to the cache key. Some caches let you use the Vary header to key unkeyed inputs, and others let you define custom cache keys but may restrict this feature to 'enterprise' customers.\n\nFinally, regardless of whether your application has a cache, some of your clients may have a cache at their end and as such client-side vulnerabilities like XSS in HTTP headers should never be ignored.",
           "references": [
-            "https://portswigger.net/web-security/web-cache-deception"
+            "https://portswigger.net/blog/practical-web-cache-poisoning"
           ]
         },
         {
diff --git a/third-party-mappings/remediation_training/secure-code-warrior-links.json b/third-party-mappings/remediation_training/secure-code-warrior-links.json
index 1b1d14c9..cb904d92 100755
--- a/third-party-mappings/remediation_training/secure-code-warrior-links.json
+++ b/third-party-mappings/remediation_training/secure-code-warrior-links.json
@@ -1,10 +1,36 @@
 {
   "ai_application_security": null,
-  "ai_application_security.llm_security": null,
-  "ai_application_security.llm_security.excessive_agency_permission_manipulation": null,
-  "ai_application_security.llm_security.llm_output_handling": null,
-  "ai_application_security.llm_security.prompt_injection": null,
-  "ai_application_security.llm_security.training_data_poisoning": null,
+  "ai_application_security.adversarial_example_injection": null,
+  "ai_application_security.adversarial_example_injection.ai_misclassification_attacks": null,
+  "ai_application_security.ai_safety": null,
+  "ai_application_security.ai_safety.misinformation_wrong_factual_data": null,
+  "ai_application_security.denial_of_service_dos": null,
+  "ai_application_security.denial_of_service_dos.application_wide": null,
+  "ai_application_security.denial_of_service_dos.tenant_scoped": null,
+  "ai_application_security.improper_input_handling": null,
+  "ai_application_security.improper_input_handling.ansi_escape_codes": null,
+  "ai_application_security.improper_input_handling.rtl_overrides": null,
+  "ai_application_security.improper_input_handling.unicode_confusables": null,
+  "ai_application_security.improper_output_handling": null,
+  "ai_application_security.improper_output_handling.cross_site_scripting_xss": null,
+  "ai_application_security.improper_output_handling.markdown_html_injection": null,
+  "ai_application_security.insufficient_rate_limiting": null,
+  "ai_application_security.insufficient_rate_limiting.query_flooding_api_token_abuse": null,
+  "ai_application_security.model_extraction": null,
+  "ai_application_security.model_extraction.api_query_based_model_reconstruction": null,
+  "ai_application_security.prompt_injection": null,
+  "ai_application_security.prompt_injection.system_prompt_leakage": null,
+  "ai_application_security.remote_code_execution": null,
+  "ai_application_security.remote_code_execution.full_system_compromise": null,
+  "ai_application_security.remote_code_execution.sandboxed_container_code_execution": null,
+  "ai_application_security.sensitive_information_disclosure": null,
+  "ai_application_security.sensitive_information_disclosure.cross_tenant_pii_leakage_exposure": null,
+  "ai_application_security.sensitive_information_disclosure.key_leak": null,
+  "ai_application_security.training_data_poisoning": null,
+  "ai_application_security.training_data_poisoning.backdoor_injection_bias_manipulation": null,
+  "ai_application_security.vector_and_embedding_weaknesses": null,
+  "ai_application_security.vector_and_embedding_weaknesses.embedding_exfiltration_model_extraction": null,
+  "ai_application_security.vector_and_embedding_weaknesses.semantic_indexing": null,
   "algorithmic_biases": null,
   "algorithmic_biases.aggregation_bias": null,
   "algorithmic_biases.processing_bias": null,
@@ -59,6 +85,8 @@
   "blockchain_infrastructure_misconfiguration": null,
   "blockchain_infrastructure_misconfiguration.improper_bridge_validation_and_verification_logic": null,
   "broken_access_control": null,
+  "broken_access_control.bypass_of_password_confirmation": null,
+  "broken_access_control.bypass_of_password_confirmation.change_password": null,
   "broken_access_control.exposed_sensitive_android_intent": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:exposed_sensitive_android_intent&redirect=true",
   "broken_access_control.exposed_sensitive_ios_url_scheme": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:exposed_sensitive_ios_url_scheme&redirect=true",
   "broken_access_control.idor": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=broken_access_control:idor&redirect=true",
@@ -304,6 +332,7 @@
   "sensitive_data_exposure.exif_geolocation_data_not_stripped_from_uploaded_images": null,
   "sensitive_data_exposure.exif_geolocation_data_not_stripped_from_uploaded_images.automatic_user_enumeration": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:exif_geolocation_data_not_stripped_from_uploaded_images:automatic_user_enumeration&redirect=true",
   "sensitive_data_exposure.exif_geolocation_data_not_stripped_from_uploaded_images.manual_user_enumeration": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:exif_geolocation_data_not_stripped_from_uploaded_images:manual_user_enumeration&redirect=true",
+  "sensitive_data_exposure.graphql_introspection_enabled": null,
   "sensitive_data_exposure.internal_ip_disclosure": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:internal_ip_disclosure&redirect=true",
   "sensitive_data_exposure.json_hijacking": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:json_hijacking&redirect=true",
   "sensitive_data_exposure.mixed_content": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:mixed_content&redirect=true",
@@ -333,8 +362,8 @@
   "sensitive_data_exposure.xssi": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=sensitive_data_exposure:xssi&redirect=true",
   "server_security_misconfiguration": null,
   "server_security_misconfiguration.bitsquatting": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:bitsquatting&redirect=true",
-  "server_security_misconfiguration.cache_poisoning": null,
   "server_security_misconfiguration.cache_deception": null,
+  "server_security_misconfiguration.cache_poisoning": null,
   "server_security_misconfiguration.captcha": null,
   "server_security_misconfiguration.captcha.brute_force": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:captcha:brute_force&redirect=true",
   "server_security_misconfiguration.captcha.implementation_vulnerability": "https://integration-api.securecodewarrior.com/api/v1/trial?id=bugcrowd&mappingList=vrt&mappingKey=server_security_misconfiguration:captcha:implementation_vulnerability&redirect=true",
diff --git a/vulnerability-rating-taxonomy.json b/vulnerability-rating-taxonomy.json
index ceaf3193..73873d59 100644
--- a/vulnerability-rating-taxonomy.json
+++ b/vulnerability-rating-taxonomy.json
@@ -1,6 +1,6 @@
 {
   "metadata": {
-    "release_date": "2025-03-11T00:00:00+00:00"
+    "release_date": "2025-06-23T00:00:00+00:00"
   },
   "content": [
     {
@@ -9,35 +9,202 @@
       "type": "category",
       "children": [
         {
-          "id": "llm_security",
-          "name": "Large Language Model (LLM) Security",
+          "id": "adversarial_example_injection",
+          "name": "Adversarial Example Injection",
           "type": "subcategory",
           "children": [
             {
-              "id": "excessive_agency_permission_manipulation",
-              "name": "Excessive Agency/Permission Manipulation",
+              "id": "ai_misclassification_attacks",
+              "name": "AI Misclassification Attacks",
+              "type": "variant",
+              "priority": 4
+            }
+          ]
+        },
+        {
+          "id": "ai_safety",
+          "name": "AI Safety",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "misinformation_wrong_factual_data",
+              "name": "Misinformation / Wrong Factual Data",
+              "type": "variant",
+              "priority": 4
+            }
+          ]
+        },
+        {
+          "id": "denial_of_service_dos",
+          "name": "Denial-of-Service (DoS)",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "application_wide",
+              "name": "Application-Wide",
               "type": "variant",
               "priority": 2
             },
             {
-              "id": "llm_output_handling",
-              "name": "LLM Output Handling",
+              "id": "tenant_scoped",
+              "name": "Tenant-Scoped",
+              "type": "variant",
+              "priority": 4
+            }
+          ]
+        },
+        {
+          "id": "improper_input_handling",
+          "name": "Improper Input Handling",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "ansi_escape_codes",
+              "name": "ANSI Escape Codes",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "rtl_overrides",
+              "name": "RTL Overrides",
+              "type": "variant",
+              "priority": 5
+            },
+            {
+              "id": "unicode_confusables",
+              "name": "Unicode Confusables",
+              "type": "variant",
+              "priority": 5
+            }
+          ]
+        },
+        {
+          "id": "improper_output_handling",
+          "name": "Improper Output Handling",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "cross_site_scripting_xss",
+              "name": "Cross-Site Scripting (XSS)",
+              "type": "variant",
+              "priority": 3
+            },
+            {
+              "id": "markdown_html_injection",
+              "name": "Markdown/HTML Injection",
+              "type": "variant",
+              "priority": 4
+            }
+          ]
+        },
+        {
+          "id": "insufficient_rate_limiting",
+          "name": "Insufficient Rate Limiting",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "query_flooding_api_token_abuse",
+              "name": "Query Flooding / API Token Abuse",
+              "type": "variant",
+              "priority": 4
+            }
+          ]
+        },
+        {
+          "id": "model_extraction",
+          "name": "Model Extraction",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "api_query_based_model_reconstruction",
+              "name": "API Query-Based Model Reconstruction",
+              "type": "variant",
+              "priority": 1
+            }
+          ]
+        },
+        {
+          "id": "prompt_injection",
+          "name": "Prompt Injection",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "system_prompt_leakage",
+              "name": "System Prompt Leakage",
+              "type": "variant",
+              "priority": 2
+            }
+          ]
+        },
+        {
+          "id": "remote_code_execution",
+          "name": "Remote Code Execution",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "full_system_compromise",
+              "name": "Full System Compromise",
               "type": "variant",
               "priority": 1
             },
             {
-              "id": "prompt_injection",
-              "name": "Prompt Injection",
+              "id": "sandboxed_container_code_execution",
+              "name": "Sandboxed Container Code Execution",
+              "type": "variant",
+              "priority": 2
+            }
+          ]
+        },
+        {
+          "id": "sensitive_information_disclosure",
+          "name": "Sensitive Information Disclosure",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "cross_tenant_pii_leakage_exposure",
+              "name": "Cross-Tenant PII Leakage/Exposure",
               "type": "variant",
               "priority": 1
             },
             {
-              "id": "training_data_poisoning",
-              "name": "Training Data Poisoning",
+              "id": "key_leak",
+              "name": "Key Leak",
               "type": "variant",
               "priority": 1
             }
           ]
+        },
+        {
+          "id": "training_data_poisoning",
+          "name": "Training Data Poisoning",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "backdoor_injection_bias_manipulation",
+              "name": "Backdoor Injection / Bias Manipulation",
+              "type": "variant",
+              "priority": 1
+            }
+          ]
+        },
+        {
+          "id": "vector_and_embedding_weaknesses",
+          "name": "Vector and Embedding Weaknesses",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "embedding_exfiltration_model_extraction",
+              "name": "Embedding Exfiltration / Model Extraction",
+              "type": "variant",
+              "priority": 2
+            },
+            {
+              "id": "semantic_indexing",
+              "name": "Semantic Indexing",
+              "type": "variant",
+              "priority": 3
+            }
+          ]
         }
       ]
     },
@@ -378,6 +545,19 @@
       "name": "Broken Access Control (BAC)",
       "type": "category",
       "children": [
+        {
+          "id": "bypass_of_password_confirmation",
+          "name": "Bypass of Password Confirmation",
+          "type": "subcategory",
+          "children": [
+            {
+              "id": "change_password",
+              "name": "Change Password",
+              "type": "variant",
+              "priority": 4
+            }
+          ]
+        },
         {
           "id": "exposed_sensitive_android_intent",
           "name": "Exposed Sensitive Android Intent",
@@ -1910,6 +2090,12 @@
             }
           ]
         },
+        {
+          "id": "graphql_introspection_enabled",
+          "name": "GraphQL Introspection Enabled",
+          "type": "subcategory",
+          "priority": 5
+        },
         {
           "id": "internal_ip_disclosure",
           "name": "Internal IP Disclosure",
@@ -2092,14 +2278,14 @@
           "priority": 5
         },
         {
-          "id": "cache_poisoning",
-          "name": "Cache Poisoning",
+          "id": "cache_deception",
+          "name": "Cache Deception",
           "type": "subcategory",
           "priority": null
         },
         {
-          "id": "cache_deception",
-          "name": "Cache Deception",
+          "id": "cache_poisoning",
+          "name": "Cache Poisoning",
           "type": "subcategory",
           "priority": null
         },

From f91a469e91180f03727dbec43a24ceeb7be29181 Mon Sep 17 00:00:00 2001
From: San <174913797+SaaSCh@users.noreply.github.com>
Date: Thu, 24 Jul 2025 10:29:40 +0200
Subject: [PATCH 54/54] validate_artifacts.yml aktualisieren

---
 .github/workflows/validate_artifacts.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/validate_artifacts.yml b/.github/workflows/validate_artifacts.yml
index 3600f388..e57dfd85 100644
--- a/.github/workflows/validate_artifacts.yml
+++ b/.github/workflows/validate_artifacts.yml
@@ -3,7 +3,7 @@ name: Validate Artifacts
 on:
   push:
     branches: 
-      - master
+      - main
   release:
     types:
       - created