hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-30 11:15:13 +02:00
Code Issues Packages Projects Releases Wiki Activity

Ruby: Minor refactor

Browse Source
This commit is contained in:
Harry Maclean
2022-02-02 17:32:11 +13:00
parent 8f5380122a
commit 5adcdf1cf8
1 changed files with 1 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
ruby/ql/lib/codeql/ruby/security/UrlRedirectCustomizations.qll
View File

@@ -68,11 +68,7 @@ module UrlRedirect {
// Otherwise, we have to rely on a heuristic to filter out invulnerable handlers.
// We exclude any handlers with names containing create/update/destroy, as these are not likely to handle GET requests.
not exists(method.(ActionControllerActionMethod).getARoute()) and
not this.asExpr()
.getExpr()
.getEnclosingMethod()
.getName()
.regexpMatch(".*(create|update|destroy).*")
not method.getName().regexpMatch(".*(create|update|destroy).*")
)
)
}