hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-21 03:06:31 +01:00
Code Issues Packages Projects Releases Wiki Activity

Python: unsafe -> mayExecuteInput

Browse Source
This commit is contained in:
Rasmus Lerchedahl Petersen
2020-10-15 12:56:29 +02:00
parent 00566f0eee
commit 172e058438
9 changed files with 16 additions and 16 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
python/ql/src/experimental/Security-new-dataflow/CWE-502/UnsafeDeserialization.ql
View File

@@ -25,7 +25,7 @@ class UnsafeDeserializationConfiguration extends TaintTracking::Configuration {
override predicate isSink(DataFlow::Node sink) {
exists(Decoding d |
d.unsafe() and
d.mayExecuteInput() and
sink = d.getAnInput()
)
}