hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-20 10:46:30 +01:00
Code Issues Packages Projects Releases Wiki Activity

Apply suggestions from code review

Browse Source 
Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>
This commit is contained in:
yoff
2020-10-12 15:26:53 +02:00
committed by GitHub
parent 4bd56fdbe4
commit 433a36225b
2 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
python/ql/src/experimental/Security-new-dataflow/CWE-502/UnsafeDeserialization.ql
View File

@@ -19,7 +19,7 @@ import experimental.dataflow.RemoteFlowSources
import DataFlow::PathGraph
class UnsafeDeserializationConfiguration extends TaintTracking::Configuration {
UnsafeDeserializationConfiguration() { this = "Unsafe deserialization configuration" }
UnsafeDeserializationConfiguration() { this = "UnsafeDeserializationConfiguration" }
override predicate isSource(DataFlow::Node source) { source instanceof RemoteFlowSource }

4
python/ql/src/experimental/semmle/python/frameworks/Marshal.qll
View File

@@ -9,7 +9,7 @@ private import experimental.semmle.python.Concepts
private module Marshal {
/** Gets a reference to the `marshal` module. */
DataFlow::Node marshal(DataFlow::TypeTracker t) {
private DataFlow::Node marshal(DataFlow::TypeTracker t) {
t.start() and
result = DataFlow::importModule("marshal")
or
@@ -38,7 +38,7 @@ private module Marshal {
/**
* A call to `marshal.loads`
* See https://docs.python.org/2/library/marshal.html#marshal.load
* See https://docs.python.org/3/library/marshal.html#marshal.loads
*/
private class MarshalDeserialization extends DeserializationSink::Range {
MarshalDeserialization() {