hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-17 23:43:42 +01:00
Code Issues Packages Projects Releases Wiki Activity

Ruby: remove YAML.load_file arg0 as an unsafe deserialization sink

Browse Source
This commit is contained in:
Alex Ford
2022-09-26 11:26:30 +01:00
parent d94b196843
commit 06e435fd84
1 changed files with 2 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
ruby/ql/lib/codeql/ruby/security/UnsafeDeserializationCustomizations.qll
View File

@@ -48,16 +48,13 @@ module UnsafeDeserialization {
}
/**
* An argument in a call to `YAML.load` or `YAML.load_file`, considered a sink
* An argument in a call to `YAML.load`, considered a sink
* for unsafe deserialization. The `YAML` module is an alias of `Psych` in
* recent versions of Ruby.
*/
class YamlLoadArgument extends Sink {
YamlLoadArgument() {
this =
API::getTopLevelMember(["YAML", "Psych"])
.getAMethodCall(["load", "load_file"])
.getArgument(0)
this = API::getTopLevelMember(["YAML", "Psych"]).getAMethodCall("load").getArgument(0)
}
}