update cpp cbom queries to be recommendation only - prevents false alarms when converted into SARIF for GH Code Scanning output panes.

Author: unprovable

cpp/ql/src/experimental/cryptography/inventory/new_models/AllAsymmetricAlgorithms.ql

@@ -3,7 +3,7 @@
  * @description Finds all potential usage of asymmeric keys (RSA & ECC) using the supported libraries.
  * @kind problem
  * @id cpp/quantum-readiness/cbom/all-asymmetric-algorithms
- * @problem.severity error
+ * @severity recommendation
  * @tags cbom
  *       cryptography
  */

cpp/ql/src/experimental/cryptography/inventory/new_models/AllCryptoAlgorithms.ql

@@ -3,7 +3,7 @@
  * @description Finds all potential usage of cryptographic algorithms usage using the supported libraries.
  * @kind problem
  * @id cpp/quantum-readiness/cbom/all-cryptographic-algorithms
- * @problem.severity error
+ * @severity recommendation
  * @tags cbom
  *       cryptography
  */

cpp/ql/src/experimental/cryptography/inventory/new_models/AsymmetricEncryptionAlgorithms.ql

@@ -3,7 +3,7 @@
  * @description Finds all potential usage of asymmeric keys for encryption or key exchange using the supported libraries.
  * @kind problem
  * @id cpp/quantum-readiness/cbom/all-asymmetric-encryption-algorithms
- * @problem.severity error
+ * @severity recommendation
  * @tags cbom
  *       cryptography
  */

cpp/ql/src/experimental/cryptography/inventory/new_models/AsymmetricPaddingAlgorithms.ql

@@ -3,7 +3,7 @@
  * @description Finds all potential usage of padding schemes used with asymmeric algorithms.
  * @kind problem
  * @id cpp/quantum-readiness/cbom/asymmetric-padding-schemes
- * @problem.severity error
+ * @severity recommendation
  * @tags cbom
  *       cryptography
  */

cpp/ql/src/experimental/cryptography/inventory/new_models/AuthenticatedEncryptionAlgorithms.ql

@@ -3,7 +3,7 @@
  * @description Finds all potential usage of authenticated encryption schemes using the supported libraries.
  * @kind problem
  * @id cpp/quantum-readiness/cbom/authenticated-encryption-algorithms
- * @problem.severity error
+ * @severity recommendation
  * @tags cbom
  *       cryptography
  */

cpp/ql/src/experimental/cryptography/inventory/new_models/BlockModeAlgorithms.ql

@@ -3,7 +3,7 @@
  * @description Finds all potential block cipher modes of operations using the supported libraries.
  * @kind problem
  * @id cpp/quantum-readiness/cbom/block-cipher-mode
- * @problem.severity error
+ * @severity recommendation
  * @tags cbom
  *       cryptography
  */

cpp/ql/src/experimental/cryptography/inventory/new_models/BlockModeKnownIVsOrNonces.ql

@@ -3,7 +3,7 @@
  * @description Finds all potential sources for initialization vectors (IV) or nonce used in block ciphers while using the supported libraries.
  * @kind problem
  * @id cpp/quantum-readiness/cbom/iv-sources
- * @problem.severity error
+ * @severity recommendation
  * @tags cbom
  *       cryptography
  */

cpp/ql/src/experimental/cryptography/inventory/new_models/BlockModeUnknownIVsOrNonces.ql

@@ -3,7 +3,7 @@
  * @description Finds all potentially unknown sources for initialization vectors (IV) or nonce used in block ciphers while using the supported libraries.
  * @kind problem
  * @id cpp/quantum-readiness/cbom/unkown-iv-sources
- * @problem.severity error
+ * @severity recommendation
  * @tags cbom
  *       cryptography
  */

cpp/ql/src/experimental/cryptography/inventory/new_models/EllipticCurveAlgorithmSize.ql

@@ -3,7 +3,7 @@
  * @description Finds all potential key lengths for elliptic curve algorithms usage.
  * @kind problem
  * @id cpp/quantum-readiness/cbom/elliptic-curve-key-length
- * @problem.severity error
+ * @severity recommendation
  * @tags cbom
  *       cryptography
  */

cpp/ql/src/experimental/cryptography/inventory/new_models/EllipticCurveAlgorithms.ql

@@ -3,7 +3,7 @@
  * @description Finds all potential usage of elliptic curve algorithms using the supported libraries.
  * @kind problem
  * @id cpp/quantum-readiness/cbom/elliptic-curve-algorithms
- * @problem.severity error
+ * @severity recommendation
  * @tags cbom
  *       cryptography
  */