podmortem · podmortem-pattern-bot · Sep 29, 2025
diff --git a/security/java-security-patterns-20250929_201834-4866d09e.yaml b/security/java-security-patterns-20250929_201834-4866d09e.yaml
@@ -0,0 +1,217 @@
+metadata:
+  library_id: java-security-patterns
+  version: 1.0.0
+  maintainer: AI-GENERATED
+  compatibility: []
+  dependencies: []
+  generated: '2025-09-29T20:18:34.845372'
+categories:
+- authentication
+- communication
+- configuration
+- connection
+- connectivity
+- context
+- credentials
+- database
+- dependency
+- handshake
+- injection
+- protocol
+- security
+- ssl
+- ssl/tls
+- timeout
+- truststore
+- version
+patterns:
+- id: security_database_connection_timeout
+  name: Database Connection Timeout
+  description: Database connection attempts timing out, indicating connectivity or
+    performance issues
+  primary_pattern:
+    regex: (?i)connection.*timeout.*database|database.*connection.*timeout|HikariCP.*connection.*timeout
+    confidence: 0.9
+  severity: HIGH
+  category:
+  - database
+  - timeout
+  - connectivity
+  remediation:
+    description: Database connection pool exhaustion or database performance issues
+    common_causes:
+    - Database server overloaded or unresponsive
+    - Connection pool misconfiguration
+    - Network latency to database
+    - Long-running queries blocking connections
+    suggested_commands:
+    - Check database server CPU and memory usage
+    - Review connection pool settings (max connections, timeout values)
+    - Analyze slow query logs
+    - Verify network connectivity to database
+    documentation_links: []
+- id: security_ssl_handshake_failed
+  name: SSL Handshake Failure
+  description: SSL handshake failures when connecting to external services
+  primary_pattern:
+    regex: (?i)SSL.*handshake.*failed|SSLContext.*handshake.*failed|SSLException.*handshake.*failed
+    confidence: 0.95
+  severity: CRITICAL
+  category:
+  - ssl
+  - handshake
+  - connection
+  remediation:
+    description: Verify SSL/TLS configuration and certificate validity
+    common_causes:
+    - Invalid or expired SSL certificate
+    - Incorrect SSL/TLS protocol version
+    - Missing or incorrect truststore configuration
+    - Firewall or network issues blocking SSL connections
+    suggested_commands:
+    - Check SSL/TLS configuration and certificate validity
+    - Verify truststore configuration and contents
+    - Test SSL connections using tools like OpenSSL or SSL Labs
+    documentation_links: []
+- id: security_authentication_failure
+  name: Authentication Failure
+  description: Authentication failures due to invalid credentials or configuration
+    issues
+  primary_pattern:
+    regex: (?i)Authentication.*failure|AuthenticationException|InvalidCredentials|AuthenticationFailed
+    confidence: 0.85
+  severity: MEDIUM
+  category:
+  - authentication
+  - credentials
+  - configuration
+  remediation:
+    description: Verify authentication credentials and configuration
+    common_causes:
+    - Invalid or expired authentication credentials
+    - Incorrect authentication protocol or method
+    - Missing or incorrect authentication configuration
+    - Firewall or network issues blocking authentication requests
+    suggested_commands:
+    - Check authentication credentials and configuration
+    - Verify authentication protocol and method
+    - Test authentication using tools like curl or Postman
+    documentation_links: []
+- id: security_dependency_injection_error
+  name: Dependency Injection Error
+  description: Dependency injection errors due to incorrect or missing dependencies
+  primary_pattern:
+    regex: (?i)Dependency.*injection.*error|DependencyInjectionException|MissingDependency|InvalidDependency
+    confidence: 0.9
+  severity: HIGH
+  category:
+  - dependency
+  - injection
+  - configuration
+  remediation:
+    description: Verify dependency injection configuration and dependencies
+    common_causes:
+    - Missing or incorrect dependencies in configuration files
+    - Incorrect dependency injection annotations or configurations
+    - Firewall or network issues blocking dependency requests
+    - Long-running queries blocking dependency injections
+    suggested_commands:
+    - Check dependency injection configuration and dependencies
+    - Verify dependency injection annotations and configurations
+    - Test dependency injections using tools like Spring Boot DevTools
+    documentation_links: []
+- id: security_context_missing
+  name: Security Context Missing
+  description: Security context missing or invalid due to incorrect or missing configurations
+  primary_pattern:
+    regex: (?i)Security.*context.*missing|SecurityContextMissingException|InvalidSecurityContext|MissingSecurityContext
+    confidence: 0.95
+  severity: CRITICAL
+  category:
+  - security
+  - context
+  - configuration
+  remediation:
+    description: Verify security context configuration and contents
+    common_causes:
+    - Missing or incorrect security context configuration files
+    - Incorrect security context annotations or configurations
+    - Firewall or network issues blocking security requests
+    - Long-running queries blocking security context injections
+    suggested_commands:
+    - Check security context configuration and contents
+    - Verify security context annotations and configurations
+    - Test security context using tools like Spring Security DevTools
+    documentation_links: []
+- id: security_database_connection_error
+  name: Database Connection Error
+  description: Database connection errors due to incorrect or missing configurations
+  primary_pattern:
+    regex: (?i)Database.*connection.*error|DatabaseConnectionException|InvalidDatabaseConnection|MissingDatabaseConnection
+    confidence: 0.85
+  severity: MEDIUM
+  category:
+  - database
+  - connection
+  - configuration
+  remediation:
+    description: Verify database connection configuration and dependencies
+    common_causes:
+    - Missing or incorrect database connection configuration files
+    - Incorrect database connection annotations or configurations
+    - Firewall or network issues blocking database connections
+    - Long-running queries blocking database connections
+    suggested_commands:
+    - Check database connection configuration and dependencies
+    - Verify database connection annotations and configurations
+    - Test database connections using tools like Spring Boot DevTools
+    documentation_links: []
+- id: security_incorrect_protocol_version
+  name: Incorrect Protocol Version
+  description: Incorrect protocol version used for communication with external services
+  primary_pattern:
+    regex: (?i)Protocol.*version.*incorrect|ProtocolVersionException|InvalidProtocolVersion|IncorrectProtocolVersion
+    confidence: 0.9
+  severity: HIGH
+  category:
+  - protocol
+  - version
+  - communication
+  remediation:
+    description: Verify protocol version used for communication with external services
+    common_causes:
+    - Incorrect protocol version used for communication with external services
+    - Missing or incorrect protocol version configurations
+    - Firewall or network issues blocking communication with external services
+    - Long-running queries blocking communication with external services
+    suggested_commands:
+    - Check protocol version used for communication with external services
+    - Verify protocol version configurations and contents
+    - Test communication with external services using tools like curl or Postman
+    documentation_links: []
+- id: security_missing_truststore_configuration
+  name: Missing Truststore Configuration
+  description: Missing truststore configuration for SSL/TLS connections with external
+    services
+  primary_pattern:
+    regex: (?i)Truststore.*configuration.*missing|TruststoreConfigurationMissingException|InvalidTruststoreConfiguration|MissingTruststoreConfiguration
+    confidence: 0.95
+  severity: CRITICAL
+  category:
+  - truststore
+  - configuration
+  - ssl/tls
+  remediation:
+    description: Verify truststore configuration for SSL/TLS connections with external
+      services
+    common_causes:
+    - Missing truststore configuration for SSL/TLS connections with external services
+    - Incorrect truststore annotations or configurations for SSL/TLS connections with
+      external services
+    - Firewall or network issues blocking SSL/TLS connections with external services
+    - Long-running queries blocking SSL/TLS connections with external services
+    suggested_commands:
+    - Check truststore configuration for SSL/TLS connections with external services
+    - Verify truststore annotations and configurations for SSL/TLS connections with
+      external services
+    documentation_links: []