hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-19 10:23:15 +01:00
Code Issues Packages Projects Releases Wiki Activity

Python: Simplify CgiFieldStorageFieldKind.getTaintOfAttribute

Browse Source
This commit is contained in:
Rasmus Wriedt Larsen
2020-04-24 08:04:55 +02:00
parent 22096c36b9
commit 23f3736b67
1 changed files with 1 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
python/ql/src/semmle/python/web/stdlib/Request.qll
View File

@@ -117,10 +117,8 @@ class CgiFieldStorageFieldKind extends TaintKind {
CgiFieldStorageFieldKind() { this = "CgiFieldStorageFieldKind" }
override TaintKind getTaintOfAttribute(string name) {
name = "filename" and result instanceof ExternalStringKind
name in ["filename", "value"] and result instanceof ExternalStringKind
or
name = "file" and result instanceof ExternalFileObject
or
name = "value" and result instanceof ExternalStringKind
}
}