hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-25 08:37:20 +02:00
Code Issues Packages Projects Releases Wiki Activity

Add full stop to alert messages in UntrustedCheckoutHigh and UntrustedCheckoutCritical

Browse Source
This commit is contained in:
Kristen Newbury
2026-05-14 12:58:20 -04:00
parent eae9c0ef0e
commit 29ffd87bf8
2 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
actions/ql/src/Security/CWE-829/UntrustedCheckoutCritical.ql
View File

@@ -52,5 +52,5 @@ where
not exists(ControlCheck check | check.protects(checkout, event, "untrusted-checkout")) and
not exists(ControlCheck check | check.protects(poisonable, event, "untrusted-checkout"))
select poisonable, checkout, poisonable,
"Checkout of untrusted code in a privileged workflow with later potential execution (event trigger: $@)",
"Checkout of untrusted code in a privileged workflow with later potential execution (event trigger: $@).",
event, event.getName()

2
actions/ql/src/Security/CWE-829/UntrustedCheckoutHigh.ql
View File

@@ -43,5 +43,5 @@ where
not exists(ControlCheck check | check.protects(checkout, event, "untrusted-checkout"))
)
select checkout,
"Checkout of untrusted code in a privileged workflow with later potential execution (event trigger: $@)",
"Checkout of untrusted code in a privileged workflow with later potential execution (event trigger: $@).",
event, event.getName()