Lower confidence on mass assign with no user input

lib/brakeman/checks/check_mass_assignment.rb

@@ -47,7 +47,7 @@ class Brakeman::CheckMassAssignment < Brakeman::BaseCheck
       if include_user_input? call[3] and not hash? call[3][1]
         confidence = CONFIDENCE[:high]
       else
-        confidence = CONFIDENCE[:med]
+        confidence = CONFIDENCE[:low]
       end
       
       warn :result => res,