chains - sequences of weaknesses (the cwe corpus has relationships like "canFollow" and "canPrecede" which could help with this
mapping labels (steve's comment above). all entries have a "mapping label" now (under the title) as well as "mapping notes"
pick the most appropriate CWE that is lowest level allow
e.g. prohibited,
[6:33 PM] Alec J Summers
general CWE guidance is to leverage the mapping notes that steve mentioned... every cwe will have it under its title, or in the schema. things that are or for RCM should be avoided.
ideally, mappings are done at the level of abstraction
or
**Alec J Summers to provide prescriptive guidance on the use of prohibited etc...**
need to ensure that we don't map to a lower level of abstraction
Alec J Summers Opportunities for refinement:
pick the most appropriate CWE that is lowest level allow e.g. prohibited,
[6:33 PM] Alec J Summers general CWE guidance is to leverage the mapping notes that steve mentioned... every cwe will have it under its title, or in the schema. things that are or for RCM should be avoided.
ideally, mappings are done at the