hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-02 04:05:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

Update ql/src/Security/CWE-349/CachePoisoning.ql

Browse Source 
Co-authored-by: Jaroslav Lobačevski <jarlob@github.com>
This commit is contained in:
Alvaro Muñoz
2024-05-08 18:48:16 +02:00
committed by GitHub
parent fafb44d4f6
commit 409a6aa137
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
ql/src/Security/CWE-349/CachePoisoning.ql
View File

@@ -43,4 +43,4 @@ where
// (The cache specific token can be leaked even for non-privileged workflows)
checkout.getAFollowingStep() instanceof PoisonableStep
)
select checkout, "Potential cache poisoning on privileged workflow."
select checkout, "Potential cache poisoning of a default branch."