SonarSource
diff --git a/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S2053.html‎
Lines changed: 2 additions & 0 deletions b/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S2053.html‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S2053.json‎
Lines changed: 3 additions & 0 deletions b/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S2053.json‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S2245.html‎
Lines changed: 5 additions & 5 deletions b/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S2245.html‎
Lines changed: 5 additions & 5 deletions
diff --git a/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S2245.json‎
Lines changed: 3 additions & 0 deletions b/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S2245.json‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S3329.html‎
Lines changed: 5 additions & 3 deletions b/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S3329.html‎
Lines changed: 5 additions & 3 deletions
diff --git a/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S3329.json‎
Lines changed: 3 additions & 0 deletions b/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S3329.json‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S4347.html‎
Lines changed: 2 additions & 0 deletions b/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S4347.html‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S4347.json‎
Lines changed: 3 additions & 0 deletions b/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S4347.json‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S4423.html‎
Lines changed: 2 additions & 1 deletion b/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S4423.html‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S4423.json‎
Lines changed: 3 additions & 0 deletions b/‎sonar-java-plugin/src/main/resources/org/sonar/l10n/java/rules/java/S4423.json‎
Lines changed: 3 additions & 0 deletions
@@ -68,6 +68,8 @@ <h3>Standards</h3>
   <li> OWASP - <a href="https://owasp.org/Top10/A02_2021-Cryptographic_Failures/">Top 10 2021 Category A2 - Cryptographic Failures</a> </li>
   <li> OWASP - <a href="https://www.owasp.org/www-project-top-ten/2017/A3_2017-Sensitive_Data_Exposure">Top 10 2017 Category A3 - Sensitive Data
   Exposure</a> </li>
+  <li> OWASP - <a href="https://owasp.org/www-project-mobile-top-10/2023-risks/m10-insufficient-cryptography">Mobile Top 10 2024 Category M10 -
+  Insufficient Cryptography</a> </li>
   <li> CWE - <a href="https://cwe.mitre.org/data/definitions/759">CWE-759 - Use of a One-Way Hash without a Salt</a> </li>
   <li> CWE - <a href="https://cwe.mitre.org/data/definitions/760">CWE-760 - Use of a One-Way Hash with a Predictable Salt</a> </li>
   <li> STIG Viewer - <a href="https://stigviewer.com/stig/application_security_and_development/2023-06-08/finding/V-222542">Application Security and
 
@@ -30,6 +30,9 @@
     "OWASP Top 10 2021": [
       "A2"
     ],
+    "OWASP Mobile Top 10 2024": [
+      "M10"
+    ],
     "PCI DSS 3.2": [
       "6.5.10"
     ],
 
@@ -52,16 +52,16 @@ <h2>See</h2>
   <li> OWASP - <a href="https://owasp.org/Top10/A02_2021-Cryptographic_Failures/">Top 10 2021 Category A2 - Cryptographic Failures</a> </li>
   <li> OWASP - <a href="https://owasp.org/www-project-top-ten/2017/A3_2017-Sensitive_Data_Exposure">Top 10 2017 Category A3 - Sensitive Data
   Exposure</a> </li>
-  <li> OWASP - <a href="https://mas.owasp.org/checklists/MASVS-CRYPTO/">Mobile AppSec Verification Standard - Cryptography Requirements</a> </li>
-  <li> OWASP - <a href="https://owasp.org/www-project-mobile-top-10/2016-risks/m5-insufficient-cryptography">Mobile Top 10 2016 Category M5 -
-  Insufficient Cryptography</a> </li>
   <li> CWE - <a href="https://cwe.mitre.org/data/definitions/338">CWE-338 - Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)</a>
   </li>
   <li> CWE - <a href="https://cwe.mitre.org/data/definitions/330">CWE-330 - Use of Insufficiently Random Values</a> </li>
   <li> CWE - <a href="https://cwe.mitre.org/data/definitions/326">CWE-326 - Inadequate Encryption Strength</a> </li>
   <li> CWE - <a href="https://cwe.mitre.org/data/definitions/1241">CWE-1241 - Use of Predictable Algorithm in Random Number Generator</a> </li>
+  <li> OWASP - <a href="https://mas.owasp.org/checklists/MASVS-CRYPTO/">Mobile AppSec Verification Standard - Cryptography Requirements</a> </li>
+  <li> OWASP - <a href="https://owasp.org/www-project-mobile-top-10/2016-risks/m5-insufficient-cryptography">Mobile Top 10 2016 Category M5 -
+  Insufficient Cryptography</a> </li>
+  <li> OWASP - <a href="https://owasp.org/www-project-mobile-top-10/2023-risks/m10-insufficient-cryptography">Mobile Top 10 2024 Category M10 -
+  Insufficient Cryptography</a> </li>
   <li> <a href="https://wiki.sei.cmu.edu/confluence/x/oTdGBQ">CERT, MSC02-J.</a> - Generate strong random numbers </li>
-  <li> Derived from FindSecBugs rule <a href="https://h3xstream.github.io/find-sec-bugs/bugs.htm#PREDICTABLE_RANDOM">Predictable Pseudo Random Number
-  Generator</a> </li>
 </ul>
 
@@ -37,6 +37,9 @@
     "OWASP Mobile": [
       "M5"
     ],
+    "OWASP Mobile Top 10 2024": [
+      "M10"
+    ],
     "MASVS": [
       "MSTG-CRYPTO-6"
     ],
 
@@ -114,12 +114,14 @@ <h3>Standards</h3>
   Exposure</a> </li>
   <li> OWASP - <a href="https://owasp.org/www-project-top-ten/2017/A6_2017-Security_Misconfiguration">Top 10 2017 Category A6 - Security
   Misconfiguration</a> </li>
+  <li> OWASP - <a href="https://mas.owasp.org/checklists/MASVS-CRYPTO/">Mobile AppSec Verification Standard - Cryptography Requirements</a> </li>
+  <li> OWASP - <a href="https://owasp.org/www-project-mobile-top-10/2016-risks/m5-insufficient-cryptography">Mobile Top 10 2016 Category M5 -
+  Insufficient Cryptography</a> </li>
+  <li> OWASP - <a href="https://owasp.org/www-project-mobile-top-10/2023-risks/m10-insufficient-cryptography">Mobile Top 10 2024 Category M10 -
+  Insufficient Cryptography</a> </li>
   <li> CWE - <a href="https://cwe.mitre.org/data/definitions/329">CWE-329 - Not Using an Unpredictable IV with CBC Mode</a> </li>
   <li> CWE - <a href="https://cwe.mitre.org/data/definitions/780">CWE-780 - Use of RSA Algorithm without OAEP</a> </li>
   <li> <a href="https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf">NIST, SP-800-38A</a> - Recommendation for Block Cipher
   Modes of Operation </li>
-  <li> OWASP - <a href="https://mas.owasp.org/checklists/MASVS-CRYPTO/">Mobile AppSec Verification Standard - Cryptography Requirements</a> </li>
-  <li> OWASP - <a href="https://owasp.org/www-project-mobile-top-10/2016-risks/m5-insufficient-cryptography">Mobile Top 10 2016 Category M5 -
-  Insufficient Cryptography</a> </li>
 </ul>
 
@@ -51,6 +51,9 @@
     "OWASP Mobile": [
       "M5"
     ],
+    "OWASP Mobile Top 10 2024": [
+      "M10"
+    ],
     "MASVS": [
       "MSTG-CRYPTO-3"
     ]
 
@@ -66,6 +66,8 @@ <h3>Standards</h3>
   <li> OWASP - <a href="https://owasp.org/Top10/A02_2021-Cryptographic_Failures/">Top 10 2021 Category A2 - Cryptographic Failures</a> </li>
   <li> OWASP - <a href="https://owasp.org/www-project-top-ten/2017/A6_2017-Security_Misconfiguration">Top 10 2017 Category A6 - Security
   Misconfiguration</a> </li>
+  <li> OWASP - <a href="https://owasp.org/www-project-mobile-top-10/2023-risks/m10-insufficient-cryptography">Mobile Top 10 2024 Category M10 -
+  Insufficient Cryptography</a> </li>
   <li> CWE - <a href="https://cwe.mitre.org/data/definitions/330">CWE-330 - Use of Insufficiently Random Values</a> </li>
   <li> CWE - <a href="https://cwe.mitre.org/data/definitions/332">CWE-332 - Insufficient Entropy in PRNG</a> </li>
   <li> CWE - <a href="https://cwe.mitre.org/data/definitions/336">CWE-336 - Same Seed in Pseudo-Random Number Generator (PRNG)</a> </li>
 
@@ -34,6 +34,9 @@
     "OWASP Top 10 2021": [
       "A2"
     ],
+    "OWASP Mobile Top 10 2024": [
+      "M10"
+    ],
     "ASVS 4.0": [
       "2.3.1",
       "2.6.2",
 
@@ -135,10 +135,11 @@ <h3>Standards</h3>
   Exposure</a> </li>
   <li> OWASP - <a href="https://owasp.org/www-project-top-ten/2017/A6_2017-Security_Misconfiguration">Top 10 2017 Category A6 - Security
   Misconfiguration</a> </li>
-  <li> CWE - <a href="https://cwe.mitre.org/data/definitions/327">CWE-327 - Use of a Broken or Risky Cryptographic Algorithm</a> </li>
   <li> OWASP - <a href="https://mas.owasp.org/checklists/MASVS-CRYPTO/">Mobile AppSec Verification Standard - Cryptography Requirements</a> </li>
   <li> OWASP - <a href="https://owasp.org/www-project-mobile-top-10/2016-risks/m5-insufficient-cryptography">Mobile Top 10 2016 Category M5 -
   Insufficient Cryptography</a> </li>
+  <li> OWASP - <a href="https://owasp.org/www-project-mobile-top-10/2023-risks/m5-insecure-communication">Mobile Top 10 2024 Category M5 - Insecure
+  Communication</a> </li>
   <li> CWE - <a href="https://cwe.mitre.org/data/definitions/327">CWE-327 - Use of a Broken or Risky Cryptographic Algorithm</a> </li>
   <li> <a href="https://wiki.sei.cmu.edu/confluence/x/hDdGBQ">CERT, MSC61-J.</a> - Do not use insecure or weak cryptographic algorithms </li>
 </ul>
 
@@ -33,6 +33,9 @@
     "OWASP Mobile": [
       "M3"
     ],
+    "OWASP Mobile Top 10 2024": [
+      "M5"
+    ],
     "MASVS": [
       "MSTG-NETWORK-2"
     ],