From 6d4d38de99202710929b886bc225c716327e3eab Mon Sep 17 00:00:00 2001
From: Larry Golding <lgolding@comcast.net>
Date: Sat, 4 Jul 2020 09:17:14 -0700
Subject: [PATCH] Provide messages for SARIF1012.ProvideHelpUris.

---
 docs/Producing effective SARIF.md             |   4 ++++
 docs/Rule factoring.xlsx                      | Bin 13526 -> 13530 bytes
 .../Rules/RuleResources.Designer.cs           |   4 ++--
 src/Sarif.Multitool/Rules/RuleResources.resx  |   4 ++--
 .../Rules/SARIF2012.ProvideHelpUris.cs        |  14 ++++++++++++--
 .../SARIF2012.ProvideHelpUris_Invalid.sarif   |   6 +++---
 6 files changed, 23 insertions(+), 9 deletions(-)

diff --git a/docs/Producing effective SARIF.md b/docs/Producing effective SARIF.md
index ac310d805..786b1335d 100644
--- a/docs/Producing effective SARIF.md	
+++ b/docs/Producing effective SARIF.md	
@@ -518,8 +518,12 @@ for example, 'CS2001' for a diagnostic from the Roslyn C# compiler. For uniformi
 
 #### Description
 
+For each rule, provide a URI where users can find detailed information about the rule. This information should include a detailed description of the invalid pattern, an explanation of why the pattern is poor practice (particularly in contexts such as security or accessibility where driving considerations might not be readily apparent), guidance for resolving the problem (including describing circumstances in which ignoring the problem altogether might be appropriate), examples of invalid and valid patterns, and special considerations (such as noting when a violation should never be ignored or suppressed, noting when a violation could cause downstream tool noise, and noting when a rule can be configured in some way to refine or alter the analysis).
+
 ##### `Default`: note
 
+{0}: The rule '{1}' does not provide a help URI. Providing a URI where users can find detailed information about the rule helps users to understand the result and how they can best address it.
+
 ---
 
 ### Rule `SARIF2013.ProvideEmbeddedFileContent`
diff --git a/docs/Rule factoring.xlsx b/docs/Rule factoring.xlsx
index 5331a0cdc67794458dcc071719a3ec06c9efdbeb..3febd826e1b12030a1c8d48a37c67d667892a89b 100644
GIT binary patch
delta 4107
zcmV+m5cKcXY1(P9<^}~Npy>Hxlj{Z?e{FB0I1v7R()|a-cM3Ky0n~IALeN#(uBx`z
z{ZeV=f+<!2=WNrYs`kI{*o3s*u1>k`Ma0G)^YF~fGsEepUDsNVR7l4Axs6Ud+oFBR
zE7m{E?Z0mdC$=rANMDhb_jGPQQE7iV`}2>}Ef?#1&es+I^m1-DN^Mftm1RRae<Dx#
zhW22ox#)<3rFd}VMo?18hEmnFF7~|0?Fj4b5g`@FVDP$TCCzy`bhK9^h@dS|Kwma&
zBPX=3JO-{KVm)k}l6M<`xMwX>PX^Ssx-va~=(!;GEx5fyp|ulmMes)+40w7InBKjr
zW2NAd*XjhI-I4S=|B>e+^d<zmfA=vs4k>U2ePlX^2Ua5bAgkzr6}^BV@3+wqNXuv?
zh2VV<Ej)0;_StF8T6#N5*CLzE7t-lWwYJp~sa6$Jw3^#9Sn@4>vmu5}Hn0|~7{_>K
zyJrVEUka<DH5poU145qQp)#T<!J$40!dSG5ik>LC<h=qN?)~~*%^B=vf5SoH))oC{
zV1hznfxf_37)hCudwEGzV-2F6+spK>qK|iy2v$3?THjT?ly|RWN#57Me-I`qwYM&~
zJ5n0&e|8<1iF6X*r4kn0pXZ+;0oUXa(g8^aTBcghA>PRU)|Vnh-=4j2iTxyAIWt@=
zoB#)bvsn0<gM5T=mM?;^e<;3#Ga^b$P6pNNGp(WLb`bu;bU}8L1$pVfsuvp1-u~z4
z`KMvBeb)}_o_5RVR=#LLFRk5I)>nKxw|(ebw)HeEap1#pYm8r6r5X@b9P1<F-d~hG
zG{6{zL8L1{V9ji9KSz0j^Hq{K*b8$f@O<QCp&pk0Y8j&>DQ4I(e{x?@GTjrXnc3=%
z;;(f_MbM`8Y=UfCBGvB@=M^$ZoE|GlTY|#%WDX|C!-+mYcj~iLW(ILFpoao)G4qnZ
z@m7B51aX3$IPkHv405~*XRCabg*rdF`=|d$4>TH2r_YLJ*$|;_1S!|>F}k94MkEMo
zbO`vqCYyzE=J`M|Uno%F1Ss*GEQ<ms%nLu9p?tXtjhIHV+Wq>29Vm9q)0C(Is#6!H
zS*Lm|_PdA8dfeFO=}qmWSGkV+{^@@^cn#jS^vJ`-?U4tUUoLJgj5dDhfNKJ*M<WY&
zO3T>~lc5Y1vvLYV0tw6wE}F3l007^UzYI-()fY<as&=tC3+${U`sj3b-A;8=Jpc9k
zW<7W<s{N|mUU>fL$Qu;fW%;n$K3#aff6Y!N-e6zn+lPEzZi@@=N3r*Qz5MH6&fm)F
z+y1#I>H#op_ZQxCUGL6@!~OEP*yQ`ua#w8OFOOxl$!qvnJq`D}s>mPYmp1ERFd8L)
z!%e>0dWzw!a^WZ+A6Lubx?H|&ifye(s$!kjF#rAYYPWCLHcJ<}O<sL_*_|xQ%?>E;
zSL;>%Ly~%f&GKyVv@NUrehusX?nn7@@V$cn0{9m;!^rDoq|ItsmHYCsJ_Y8XnloMg
zbT}R6%L5Z#zY~og4XfgHB^-F93Vv>XN`8Fc3XWvqPm(1EGGVUj>}B<E;r%y>XYq78
zo}XOJX5*7+KAoIgjbi^~mL`6h`B|1s!vA@f=MO9JuvpcgDjqMqnSb_i?0dt@a~VK?
ztctgN>;0h4@9&Crv8)Ri#P<eux%+4FSkH^~8onIDmH(9G=5Cn_Z%*RY$4?@EL;)l&
zim1LX%Wr~y0YoF1$X?QliR8<A^;#&(+XUeIf6KXv_b{>HVP@_3%`7vS3BOf?hvG4R
zS=V36x7%X%^jyPqqf;Q0p>+1}<GR={A+}-g(@^p*%QcX|{|B3uNK%N+{JVU8TRqgz
z@D48R>mOoe@b13Y*V#(YdV}SE%f2o*|I#oq$pZ~ISkl0&rirGf6F-SYNg$Timk)d_
z`QTOaP5umBr0L*Q(*>i`(PTP_!tu{c556O(C!DOz5l5#{9Qr@C*hI6zYvY5-X&eR9
zWYU@))K10$W6c4t4afL234=*{N<iW0Pe95A!YfP1%xJ19;Prh9STaL@;e&vv=!7>7
z$<fgKT81jpWg1=Qb$)qXm2U&6iz2>vxlkGZOpE|;ATHE2R9;Dp$fXeetp0GwuJ=+4
zl0lHq1iK`JukRt@UoXS+;Vb0uQX{S?A}|qiittA!<k|x9O-O1PXKF$+3Ym;e$c=3v
zM00Dw1Zctwg@J@Q*kyu$Xg*My>2Xa%@ZQ0NP-YAl+N)jT5`k7_ym3i{TtX4Zm~#sP
zkz7+qjEs;{$OJ($1%Wg^*eO5*-DnmF+M_Ke=8A5+X+8uHosXCE&%b~Ay2$>Pon`+R
zcwawXfA)SE{C!|vUVIw-_T}@<m-Oz=`{jK2D8l+Ual<t*s~)a@5opsjF>(z>Bq&=b
z!pE+$Kv2%56oNgY5Ugi33F{e_#xSK&rgouXqdXO8)08NcGmU`IIK<5qr@I5@md6-N
zfcoBJ2?A{{0flv@5UdY03F`xv##n&Zu{ir+CeY>rP>s8y2p{Rg+yX&KaczO%c(y=L
z;$#}a#)AXqmd6->=9GHtZci=GAPk3y^-;uLSukUSncH}9jj&;`QEeEasj8)5W3=I6
zgH(gwAu`R1dm6q}$QIv>Q>@pS#_-EfitY2uP#~ve^wRazS0V>{grim>-Oe<IUxtgI
z@<gULU`9Qvo-g3gYqpnx0x#1Tei@3V!y5|Z<c(fZo{DjQ(K38ozBPtlhKq>uM5Z_T
z$*8Z?EtK0^(b0d<R|2^!Z+D@7FLj$qILbQQ?bt9_A1oNs@Ypb<m?;%(#~tZLH4pDF
z7scg?Oozc}$Mg}WJ>s~GoMq_lKJ^7$q>nf>G2CNlcNfphr-~V(7Vye~2~dpBEg0$^
zI#z%*E7d%IMp?iLt}(oO^jLh6Rv@Rc02}%~?h$aCdjg@8hgP7|JrZtaPlzJ=%7!5u
zIVI0VOF?#W6ceH>O!Zi8_k@Ti(-?j;r^jO5!xNcXW1|)5%$`80v#|_RlroLsm*LV1
z@I>Y^j8>p~8MGA$ak2z1TWhDiHA`eJ!)OJ%m(jF;0=Sk1h8A}x3*F6zxNnw}Xv2tW
znFT{?nFT|Wh4uy^?hP~#A7w7R0Z(MQ$LI~Z-P802$A&Y+?Y}$$zVP^E=p8hl^9tlr
zk^`d==~~7|2?x)Qh-3!6q<1Fa=wuB`rVT@CvXXGVCR0p=I~v<qsBUK(!}~{%#rsEr
zocz;&s}o5B+8snhT3ErBN6|M855Ej|<rk;nJrrBQQFP#b*Mb?NjG9|8qzKu@LiInj
zVek=|#<0=R@UUj(iHss7ZYTC=s3aVj71vUY;g{i}*gTQBj9!YJg-S%Hqy~j;$%N*S
zKiijRq++-PSuhj4sj^^bkSTR;m#G8=Yib*R3m+tF4DTI179V5^<Whpdb_3C6)l8x<
zJd1PMg4yjHdL}(Vwf_q4N|Q5F+=f^%)H#;1us+y$M#MX;?yAb#5b@q|7x1tx;9X`-
zB^n(w<2FQN_!x89xbsA21!&7$cW_u#4xg5XmQ(BzzW-wb;RACECMMBA2P5Ypnuj-k
ztILMlfoP#I;HBgJn)mLywWYb!^by_P#yBr67~jW@n+=3bZ^29vCbeLQ={1HmeZ#}%
zB~N5Tbkx?gZnNsmW6NJLzWFa1(H&3J+s$nlVpTfU81bYQ9%@yGO>x7+TeX{LahMR^
z-bQ`YX(rLghPZNAFcV^Dx=Z$nohfF2jE{mWV<qI~vEt#Q*JXFB2XoQ<sE=5u5{*;^
zAE9UrzY3Sltpm|QW7_4<Z`~|46SbFsM)XE=f^Qr(820X{3+T23WUix^gho`c5_~3V
z!AwaaP@b410>zBUZzwGD!TWDLA3lU!6qF}2t=c}a?keN+NS#<4rx8T3C?>&wTXfCC
zuT=B!rB#7kQa<j}2h1hfOnF=YQwt`+2gDk~uC(D{SL#5t&={jDItHTQ_qdmQOElU_
z;`0g%Cc*uv1w&-ThQZln!4Ub@7~b+OXW9-#3ym=g@_VN5rRXtL*#w_gTQFl{`ff!}
zEj+%Dg-(NbySm6VPh>`GFS(9?>3-M8zm3T>h+l?_Uh_oeGGMgBaaL!~91FCWbP3x2
zUs*6?yc4ltXwq56!sj;@9-4HDhqtO8i!XO9k!jUF5(dvi&|lJ#QbsXTd@5$)!Hq#`
z8;hh9t6=I(rQzW%)=ji%h~)Dfh7prK>X=Ei2u<;zgZL%LO>;#(NFgqN-5Qt7!P>{V
zoq3Sx)7bVe-A1^Vvw&h;0&N)F%ULjF^Ju}4M9>&E5gMNM9cCZ@FzD6^wa_S2fR2kZ
z&EH4+v!vNh<DF^J>oi)TQA0JtM*tR3jDN6b!w@gh<7nzdilJU)Pmy)xYn~1-cA!iL
z^*TzH4@hCl;-B$bKrudlOSWN%WvRAO%UaHx@upvo#pj2M{PIMmS$oNELM723VWqHw
zumD>?WDjY<P`lC@(TH^r;AX6jh}EOLhcZpuOM?^3HgbfUS}O?O0JVUqY3XR>fZM`D
zP3xf44G*i-8pOr^LSxK&eoSh^_~TyMEzyQ{H&<HPO)o8)OSE@?fX799w6zkA%N6cx
zZ6N%h*W3ak&bMLkZqkAw&es^WUNt<d^Bss54N=R~>X}#du--0zDn91b(`vgPtl`;P
z@dPVOtWpoT%J=Y8uDl8r^uDa&(bVSCGdvkyKz9buyn2JjvaFjApzebAuBcyjgR)w|
zld<w)?+b5NR&|vUuWA_KOgvd!Egsaw4v(f^{vWf67lafAX}P|^XtNS5GXa0JX}7sQ
zq3yuQMA$%ZqWBh)yRFzJCCTji?M>UQb}0CmoO6FU=aOiC%ro=_+N4UxIP?RIKyoEg
zxr_1ZX6a2aGL}ifG9@9#6&O5EuCF3qP_8sQYgK@@DH!BP(okN+cyDb%2{C*RIWxX<
zNGEQU&Y5*by(0zVpKJ$Y5Cnf?l7nS}Sw?E0S9C;tLJHm?i-XP@fZzl&$U#~|LO&!w
zUJE)me-1QC&zYyTDqN>i+&)|IR_xqIlXk|kEd6rW#BljT^1fcZG*!J+*1O_>lSpvN
zH887mvSJ7AmI~-mW%Xhs(i7`NX3W^N+xa#HabG#V*45dJZq}7fnLtzvCCwqTZXP{J
zejAbBgYMC$WBW1)<WkeN<5_tdE*>^ZoD70N;00qZyxW8mI-1dN_EG1$n6F#37x^jO
zzr=|bj5gtz1`|4*_K0Ud(&WDUImtJZp$rwXt1deO1tp;9`C^mnF;W3%lRh#n8_W$Z
znz0H10N*|U02lxO000000000000021lZG-y0g{u<GC%<llMORE0UeV_GeH3>lZrD?
z0WFi;GgJXSlQ1+R9BH|}!Ds;h0EPkp01*HH000000000000002ER%0EJprMUtu!MB
JU@-sy006b$<yrs$

delta 4111
zcmV+q5b*EXY1V15<^~0R=EoRclj{Z?e_d~!IuL!YbpHeLI|1{xfU>Cq?5dHPDoWDy
zB~s;p3DyGMYn$vwQU80#X4xc7RqajhinX!F9L~&~8IC`0yViQ3LNeaZ5k7K}Mf;Lh
ztiPY5uh&aEMwV2huSm;#I!BLGqK_y4d^p~4vAW}YWdT4h=crL?ojQ&z8`=?hf5g|c
z2TRRGM-(i@y(8Cxl1es|s;+fB*NvQxupW&FsW=3K*EK6?!ONkey&6FTZHWT<vSDjE
zp>^dUa2*k=VQrVZTLZ)$Yngg9pvdaV^z6Rpg50&>_7;cMR=^d(AG<Jk)0@Eb=2aal
z1(&>5M*!`Nq~G|DT?gY=A=ti+f5Bl$fg|Vx(>dI;645(ZMSHC184SCBjfO#5Mk^@<
z@11Djo|}hGj%(J^n^C$JS+Bp4PG_n`R!gK>R7}xoj%Kjr8~SQP4C`!QEm%D-_GZXA
z*~|GtSQV|w(5h<?@&pf+5k-j?>XRUh(^gT@6Ge00E70N2ufNrt!Oj~Fe+suQ>AwRL
z6bcLU1-`;a%9Py63!)lp5bYf0>1{<HZY2?{wq>=tt#~PKU&xZYt%3g_Oj2rZ9dLJ~
zG~WN}IxrLIB)$tJEVw@_K0^Yo$OEJUk`A;?wVpw|vH!g<MT);aWv4jFW<_Wxe&pK$
zc5^$P<qP{Xj0!O2VUB|zf8dOW(vp)wHM>k}=s60)-<ZzHcCuhM9a!~D<H_CqY(4)n
zOtv4|VcpYi7~RNcP3Wby{l@x=Z|2B{&V{VUY3T(%EH}pZja8}vQN^)7GVXn%?7jiU
zI1D0P0m9SF=IALZ60cY!iS4;zVF#{{?JU$o?l1BfC&_Z=8Ai?ve@do%0yQ&Ry;1y?
z?x+~rw4P0nktI_74sljtlf>z<lC&i#Tu<g;f?Y4sC+JpvmdeZ^E(Y{);GWLhB(U9u
zAKF2jcy=84o}CAUw+Ls8Vv&V9Kf3#;|3?or8c(Osie}jmp{@lfSMV{qq;*Cl2x@c)
z_`W2Yg>mNkKrvY2TqTGpaqTRN0y`|0emKKLz6h7kWVQSCJ3CP9n5QXG15~FjOtVh)
zxZLgTH|ud@m#0^?mtGb+?z^Y|bnptiZ|Q-Dmp2C<%)gvppBrub)&a)^SdT^)&Xksu
zpR-^JSpp8=H%=0<3IG7&J^%n10F#R{8k6A+E`NQa#I7nAo3p^qN~Vubch~JyH_7u~
zzi-xq*P`05%I$^cpN_miv0auAtL@W;_xsoEWa16>b-sPb*X6dj@O~6~@7K$}{^k6w
ztiJ7^i=rL~hVA~sd#>x<*>JdDJ{OyOe_HN}t@zDjS#9!K{8&8=_q(ddAJiXh*27>l
zN`Ho%e6{s7!&&9RQ9eGdmc@0seAyJ+T9Z`8I<Lk2_s^@{zG2%eUFbG>_3dSMvMe_{
zL2<uYuj(I))EjJ;XN#w8S>^X@vF`7FlrIP0EAd|-{)Npj>N*-}vszZ=zI?1t1@lnP
z883f2oDTElfeEkQiN=qHRq?u#4m?r?KYuqRKR$2;N3!rI$&v$^G*@-@vU<4i{+q<J
zcsd==Pp)RO@kunFPEM{yv41j46F<%TEK4Tg|Gdldhn4WKT-Bf|9xuF^fA(?gd&A3f
z6+nNiino31`=HM6?}~M?tP3%S?+xm5_s`<7o)_!2{9`eL|CHtCZkbDOPU6;&pMPYC
z3Xr@gqx!xqze)OqAR38@>=mt?NWQFBuZ5<(i3NQBZ#6ghT}*6vm|6RKGs{e6!f(~!
zp?J(+*7cY2?Y3AwJ=bEo(WxL)p>+1}<GR={MQn?~PeaAKEZ2fW{C}`n$s`rAnSWQG
zZ>xv;S$q?h_Vo|BGV$%c*w@)g(tmn`<;%V<H~%s)ImrW!aIm5gpN1xyo=*HE8YO{T
zT3<e4VZ|pt4d3L?&_#w$d>Xo7bUK<$Cs8>5ndynYQPY!7*5-(#(<l!8pIU5U*u-b!
zgUM+e1=D2Gnw_Yfj047oLwq(I<I^MzChaK+3P*nmq*|c(Wa*e0O$~+ke1D%pESaJ3
zg@EYj6ki&WqoMh=40WWdG`h~~{PMgi-v**C%J|;pQf2%zIfD2i;zCbD=as_9Tnfdn
z^)C+D^<HX;WRT=D$*u^+pYKJ&zg~vt!&i~ROM|$=h`>h7F~T3&kZS_s+mMtPXKF(-
z44I5=$PG0Rpt&V50hsVYV}C@#9PBayG#@a{^th&>@ZQ0NqRdz>q^n)y5{cGjym3hc
zT!In6m~#RFNUkv?21ZCRWC9?WhKMvi*eL)5-53@Tv`1S`>=oU1(|ia-bUt3rKmY#e
z>mvJGc9#8P;C=mk{n`6v@b`gzdGTrR+n3KbU(&lf@0au8qYUfg#D6W<h*|Y;jYQk7
ziGgb{A_3Wg5k7Pc0RcIeVhHq%MzEeSB&=sx8q1VYnc9Vljq+5YZBv3&&J03?#vyK|
zFx?$6w>-vLf~fC3mLSpg5<pmI8o~O&kgz^rX{-gv9gDLMW)f{L0MxiEjPQXz%n1lc
zifaM_<C%bf#K{bVjeiFR%q@?x%&GL&-JV9CWe47rZXZPK6@eK8%$(wZHG;xGqf!{8
zsk)_LW3=I6gVccDA+pU1dm6q}s21OjQ>fRO!SKt_itY2u&>*K}^wRaz*CHqO2uH01
zx}6yezYG^a<%w)>h#B>$dU87{s)n@;5O|rv@XOFV9p2C&Cx37BlJZoJ3zp%-@@+8u
zGF(KIC$hcKPey&MZlT)V%8venxe};ddAkesd#T$@!9mu+Zim7^eIPKX;h`|7m}wPk
z#~tcM4G-@y7scg?Y=?=_j_D&$d*pE$I?FKKed<fNOdok@V!6lC?k=90j}<cnE#MV_
z2|$d`2@G}*9)BwUnw1(Jt1LhTHyGYMW-Pu)Ymie}5F7eF?vZfHJ%QB8Lo3kf9tF3v
zCj=3FMPblJPRp~^QlOn2#)KdXQ!`fEJt5%942Iv#nXy>+@I?03*lGnjvnSB%Y%K#6
zrOaUXWw^8gJdwQ&s}<;825tpHm@I+I*4k-r%@Wzmuzy;C?qxKs0IX$!rN!OJf_Jka
z?3)!O*f7FcMqp4aBQQ8waBmR8-oWtiQRdPc@I<zItlps8Jxy<LY&b*M{;Lz<3y)uh
z*+KI;uR$&)Ij|a$u4Q~waN+q8lFXo&^v)C<oUB2~q%f!^YYFFTGR8!(qoKwEbvrW{
z-alq6-hV$D<m8`Tok$ws?jS<a!V0!JioR)h_+_{&zdQ}^q1Xxzq67B31ZE5}YEEEK
z5u(Nd^*^OB@QBP{*yw0@ShMm(RuKyODYk+Gv%*?xF#IxH6q_fqm(feHvrvoZ6xE=x
zEt#Tu<j?jM8mJg7K?G(3H&p}%2bosqc9}{*uz#l1Snwd(V0iDCvG^d<AeRypwi}2p
zt7Zy);StVh3ud=-@R{@k)cz}RR~ns}!Zw7!VCN8HL4BZjM#wv??&`|g5b@q|7x1tx
z;9X`-6&f5f!#2cV_!x89xbsAI1!&7$cW@9Y2T#jG;uL!X@BdIBcwkOoViX;CFmxVb
zcz<}ax@@=|h!zGTymY)@^WI&zwlsH|KEnIk80IB`@qO61Q6Ok~0y71el)xa<8w_ju
zhKJ2dp2&*msI6(;W;L6~mcL?n^ItK7JD#Aon^PEMRXo-h@T3F}wyMLXxZ&Zg+D)`L
zObBjoqdw|1Q)pmASUCvH1lbwyl6_=njDH!!qab3e1l>H=Jbd)J>~76qE}9?p5$jZ;
zfvUhG6ocVc;j+1PAX*qqyZrgBo27Q5_7czt-)K(YjiUy`-W_!T-FATNb@Y<Z2rE_s
z&qN8#6eR-YiBTe8%osgGLCgp4zs-F35OPsap2)Up`^dVhjL#!|Vr`v9Ai=_z1b=SP
z4G+Ik!^4+W4RT5OxKAH2S7<xsVF64DOac#x4TfE5!^5uBfoNecR#$WkM9c4SFZotz
zu$6@86$B=M{V0J!vO-~CHW3&k-v+~5-sMc&foNecc0qp6^t}{4#wwe@^J)S!MyBsp
z^pxQ7eJFGW#M{+Hu6ZImT6@X0dVgXZ<Su+RCNm&@87_Lw6WPlUqa98OJA39>qU~iQ
zVEcbXV8(DKLSS&x5o5vg8-fQXo#x@KYR2Nr9ZO_ewU2~}cOvkUbf}bJ%oLuA5j?Ol
zNU5<<I<X3-&r}*7-eTQEi-t(O-(eXs>7$OBLd(#UFFMF4L2jBW`b7$P>3`O`WDnLp
z*6qxL#GJ;qpL83+UXB38umn;V*vk<Zw0R^jC=m>XO@xN0eTUhH4+h;jp%w;Z3(#?K
zw)y*Lf0i`cX}B{@dYwiqG$_g=cmzOzV)(!!g+X4#$I;k}7=yjYo+6vbH#{9)>_FKL
z>UETy;Nx9?1RvukKruW^rhhQVvUo6TS>n7IZu-qwe0~_74$F3+Y|Hji-~_9pKZ0UG
zf}jQyAheAnFxa$sMmT64G`Jb7!?b3!_fWQJd&zJ@>?B99uO&h79w-6Arp2S7Gj4(h
zo7O?B8y;4y4TuZ>g~8Y*{g~I5@yEU7TcIuaZmzWC8(&&9mvH+a-hUYF(b+0A)B@Pr
zQXu%Q*PH+$=TjKCp(HTK`3A$5tcHhmz5~&sA!?agzxJx%*W2Y!#mBsQT5b1(wRrtj
zzQigfR_XU#)pzk?uDUA9<9%6+w^N&+p2f@Ig=o;kYp>qmu`KK62O;p1_pYd4c7w87
ziI-#5``#DcuB_@RUlG+}gfsbaakY5R6Fa<}e))fsU<wtppcily1w7+h0cW!nEHeRr
zbm^bDxzKjtWFl-JSW$cn$=z0Llagd^{r0BqRx1iVCg<E=&bcI>AIk!Lf;PF52@Xa+
zMj*Kox!flBC0ly87#Yi?V1<&9;2I2`r<WHouP9d<p0uh!+Z+sXBxxwG61=mvqJ$W}
zgOZt%b4Vv{lrEWdN4+H#;~#7bB=r4%2`Rxc!7L*U(5rePJ|P9~k=0%oEkJMr1(YDI
zA;Bmh-(Cy4G=C1X%D`FXwys>KQ`{k2@J{UAN0ax)!{IPGL~RV0KOk@G)pJ|b%Vo1G
z4mgbkr(6TGN~bHf*KVnR9#qjRHYNkHS!BVCUAvucau9d5^J`t7&FE@f>zoNwv{2IQ
z3+v|5qvY2y`90_!Z98@^gFr4d?K+;7*JyE{EpZz9q3`(<FSyBqDIL#fFne!u{g`iB
zbQk3*-M_@C=SNu>(#WULctAV@(l+<cpOb!*(FPT>uP!?S1%Bqo7+;g`F;W3!lR`2r
z8{jui60r&Z0OCFX02lxO00000000000001}lZrA$0gsc=GC%<ilMypI0UDD`GeH3;
zla4b`0V<Q<GgJXPlQc9V96aM&0cQaK0EPkp01*HH000000000000030E0c3HJprAQ
Nu{0wFTrmIu006nY-r)cM

diff --git a/src/Sarif.Multitool/Rules/RuleResources.Designer.cs b/src/Sarif.Multitool/Rules/RuleResources.Designer.cs
index a61a0e0c6..2eb93815b 100644
--- a/src/Sarif.Multitool/Rules/RuleResources.Designer.cs
+++ b/src/Sarif.Multitool/Rules/RuleResources.Designer.cs
@@ -635,7 +635,7 @@ internal static string SARIF2011_ProvideContextRegion_Note_Default_Text {
         }
         
         /// <summary>
-        ///   Looks up a localized string similar to Placeholder.
+        ///   Looks up a localized string similar to For each rule, provide a URI where users can find detailed information about the rule. This information should include a detailed description of the invalid pattern, an explanation of why the pattern is poor practice (particularly in contexts such as security or accessibility where driving considerations might not be readily apparent), guidance for resolving the problem (including describing circumstances in which ignoring the problem altogether might be appropriate), examples of invalid and valid patterns, [rest of string was truncated]&quot;;.
         /// </summary>
         internal static string SARIF2012_ProvideHelpUris_FullDescription_Text {
             get {
@@ -644,7 +644,7 @@ internal static string SARIF2012_ProvideHelpUris_FullDescription_Text {
         }
         
         /// <summary>
-        ///   Looks up a localized string similar to {0}: Placeholder &apos;{1}&apos;.
+        ///   Looks up a localized string similar to {0}: The rule &apos;{1}&apos; does not provide a help URI. Providing a URI where users can find detailed information about the rule helps users to understand the result and how they can best address it..
         /// </summary>
         internal static string SARIF2012_ProvideHelpUris_Note_Default_Text {
             get {
diff --git a/src/Sarif.Multitool/Rules/RuleResources.resx b/src/Sarif.Multitool/Rules/RuleResources.resx
index f7585e6a6..37c22b007 100644
--- a/src/Sarif.Multitool/Rules/RuleResources.resx
+++ b/src/Sarif.Multitool/Rules/RuleResources.resx
@@ -349,10 +349,10 @@ This is part of a set of authoring practices that make your rule messages more r
     <value>{0}: In rule '{1}', the message with id '{2}' includes dynamic content that is not enclosed in single quotes. Enquoting dynamic content makes it easier to spot, and single quotes give a less cluttered appearance.</value>
   </data>
   <data name="SARIF2012_ProvideHelpUris_FullDescription_Text" xml:space="preserve">
-    <value>Placeholder</value>
+    <value>For each rule, provide a URI where users can find detailed information about the rule. This information should include a detailed description of the invalid pattern, an explanation of why the pattern is poor practice (particularly in contexts such as security or accessibility where driving considerations might not be readily apparent), guidance for resolving the problem (including describing circumstances in which ignoring the problem altogether might be appropriate), examples of invalid and valid patterns, and special considerations (such as noting when a violation should never be ignored or suppressed, noting when a violation could cause downstream tool noise, and noting when a rule can be configured in some way to refine or alter the analysis).</value>
   </data>
   <data name="SARIF2012_ProvideHelpUris_Note_Default_Text" xml:space="preserve">
-    <value>{0}: Placeholder '{1}'</value>
+    <value>{0}: The rule '{1}' does not provide a help URI. Providing a URI where users can find detailed information about the rule helps users to understand the result and how they can best address it.</value>
   </data>
   <data name="SARIF2013_ProvideEmbeddedFileContent_FullDescription_Text" xml:space="preserve">
     <value>Placeholder</value>
diff --git a/src/Sarif.Multitool/Rules/SARIF2012.ProvideHelpUris.cs b/src/Sarif.Multitool/Rules/SARIF2012.ProvideHelpUris.cs
index 0f0185644..12d8d6c03 100644
--- a/src/Sarif.Multitool/Rules/SARIF2012.ProvideHelpUris.cs
+++ b/src/Sarif.Multitool/Rules/SARIF2012.ProvideHelpUris.cs
@@ -15,7 +15,15 @@ public class ProvideHelpUris : SarifValidationSkimmerBase
         public override string Id => RuleId.ProvideHelpUris;
 
         /// <summary>
-        /// Placeholder
+        /// For each rule, provide a URI where users can find detailed information about the rule.
+        /// This information should include a detailed description of the invalid pattern, an
+        /// explanation of why the pattern is poor practice (particularly in contexts such as
+        /// security or accessibility where driving considerations might not be readily apparent),
+        /// guidance for resolving the problem (including describing circumstances in which ignoring
+        /// the problem altogether might be appropriate), examples of invalid and valid patterns,
+        /// and special considerations (such as noting when a violation should never be ignored or
+        /// suppressed, noting when a violation could cause downstream tool noise, and noting when
+        /// a rule can be configured in some way to refine or alter the analysis).
         /// </summary>
         public override MultiformatMessageString FullDescription => new MultiformatMessageString { Text = RuleResources.SARIF2012_ProvideHelpUris_FullDescription_Text };
 
@@ -57,7 +65,9 @@ private void AnalyzeReportingDescriptor(ReportingDescriptor reportingDescriptor,
                     ruleMoniker += $".{reportingDescriptor.Name}";
                 }
 
-                // {0}: Placeholder '{1}'
+                // {0}: The rule '{1}' does not provide a help URI. Providing a URI where users can
+                // find detailed information about the rule helps users to understand the result and
+                // how they can best address it.
                 LogResult(
                     reportingDescriptorPointer,
                     nameof(RuleResources.SARIF2012_ProvideHelpUris_Note_Default_Text),
diff --git a/src/Test.FunctionalTests.Sarif/TestData/Multitool/ValidateCommand/ExpectedOutputs/SARIF2012.ProvideHelpUris_Invalid.sarif b/src/Test.FunctionalTests.Sarif/TestData/Multitool/ValidateCommand/ExpectedOutputs/SARIF2012.ProvideHelpUris_Invalid.sarif
index f168e1cf8..1f9a0e8b0 100644
--- a/src/Test.FunctionalTests.Sarif/TestData/Multitool/ValidateCommand/ExpectedOutputs/SARIF2012.ProvideHelpUris_Invalid.sarif
+++ b/src/Test.FunctionalTests.Sarif/TestData/Multitool/ValidateCommand/ExpectedOutputs/SARIF2012.ProvideHelpUris_Invalid.sarif
@@ -11,14 +11,14 @@
               "id": "SARIF2012",
               "name": "ProvideHelpUris",
               "shortDescription": {
-                "text": "Placeholder."
+                "text": "For each rule, provide a URI where users can find detailed information about the rule."
               },
               "fullDescription": {
-                "text": "Placeholder"
+                "text": "For each rule, provide a URI where users can find detailed information about the rule. This information should include a detailed description of the invalid pattern, an explanation of why the pattern is poor practice (particularly in contexts such as security or accessibility where driving considerations might not be readily apparent), guidance for resolving the problem (including describing circumstances in which ignoring the problem altogether might be appropriate), examples of invalid and valid patterns, and special considerations (such as noting when a violation should never be ignored or suppressed, noting when a violation could cause downstream tool noise, and noting when a rule can be configured in some way to refine or alter the analysis)."
               },
               "messageStrings": {
                 "Note_Default": {
-                  "text": "{0}: Placeholder '{1}'"
+                  "text": "{0}: The rule '{1}' does not provide a help URI. Providing a URI where users can find detailed information about the rule helps users to understand the result and how they can best address it."
                 }
               },
               "helpUri": "http://docs.oasis-open.org/sarif/sarif/v2.1.0/sarif-v2.1.0.html"