# YAML Security Threats

Security vulnerabilities and detection rules for YAML. 20 rules across 9 CWE categories.

- Total rules: 20
- CWE categories: 9
- Critical rules: 5
- High severity: 5

## Frameworks

- Kubernetes

## Top CWEs

- **CWE-250**: Execution with Unnecessary Privileges
- **CWE-319**: Cleartext Transmission of Sensitive Information
- **CWE-668**: Exposure of Resource to Wrong Sphere
- **CWE-732**: Incorrect Permission Assignment for Critical Resource
- **CWE-1188**: Insecure Default Initialization of Resource
- **CWE-284**: Improper Access Control
- **CWE-400**: Uncontrolled Resource Consumption
- **CWE-798**: Use of Hard-coded Credentials
- **CWE-829**: Inclusion of Functionality from Untrusted Control Sphere