mirror of
https://github.com/hohn/codeql-workshop-sql-injection-java.git
synced 2025-12-16 10:43:05 +01:00
Add query help template in markdown format
This commit is contained in:
Michael Hohn
committed by
=Michael Hohn
=Michael Hohn
parent
f865a134cc
commit
561552bbee
@@ -129,3 +129,11 @@
|
||||
...
|
||||
#+END_SRC
|
||||
|
||||
** (optional) Write query help
|
||||
Help is included from a markdown file. For a query =foo.ql= the file =foo.md=
|
||||
is included in the SARIF output when the
|
||||
: --sarif-include-query-help=always
|
||||
flag is set.
|
||||
|
||||
To write such a help file, copy the template in [[./help-template.md]] and
|
||||
customize the content.
|
||||
|
||||
18
session/help-template.md
Normal file
18
session/help-template.md
Normal file
@@ -0,0 +1,18 @@
|
||||
# SQLI Vulnerability
|
||||
Loops can ...
|
||||
|
||||
## Recommendation
|
||||
When writing...
|
||||
|
||||
## Example
|
||||
The following example ...
|
||||
|
||||
```java
|
||||
import java.sql.Connection;
|
||||
...
|
||||
```
|
||||
The solution is ...
|
||||
|
||||
## References
|
||||
* Java Language Specification: [Blocks and Statements](https://docs.oracle.com/javase/specs/jls/se11/html/jls-14.html).
|
||||
|
||||
Reference in New Issue
Block a user