* Add guidance for weak random rule
* Add guidance for outdated TLS protocol
* Add guidance for XXE rule
* Add guidance for weak cipher mode rule
* Point disabled cert validation rules at complete guidance
* Add guidance for DPAPI entropy rule
* Use existing HTTPS guidance for Ruby rule
* Add guidance for strncat rule
* Add guidance for strncpy rule
* Add guidance for 3DES rule
* Add guidance for C gets rule
* Add guidance for C strcat rule
* Add guidance for C strcpy rule
* Add guidance for C malloc rule
* Add guidance for banned C function rule
* Add guidance for InitializeSecurityContext rule
* Add guidance for PowerShell restricted function rule
* Add guidance for NOT implementing MD5/SHA1 rule
* Add guidance for objective-c format string rule
* Add guidance for memcpy rule
* Point C++ TLS version rule to existing guidance
* Point .NET outdated SSL rule to general guidance
* Add guidance for seeding RNG with time rule
* Add guidance for mcrypt rules
* Add guidance for debug rule
* Add guidance for iOS uniqueIdentifier rule
* Add guidance for obj-c xss rule
* Add guidance for eval XSS rule
* Add guidance for hardcoded secret rule
* Add guidance for C FILE copy rule
* Add guidance for PHP file include rule
* Add guidance for ASPNET Controller rule
* Add guidance for iOS NSUserDefaults rule
* Add guidance for hashing time rule
* Remove optional encryption rule (applies to unknown tech?)
* Add test condition that guidance must have content
* Update changelog for guidance changes
Dan Fiedler
Gabe Stocco
David Alcantar
Josh Brown-White