hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-22 15:25:18 +02:00
Code Issues Packages Projects Releases Wiki Activity

Fix warnings

Browse Source
This commit is contained in:
jarlob
2023-04-06 23:07:22 +02:00
parent 3745cccedd
commit 7573c615f6
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
javascript/ql/src/Security/CWE-094/ExpressionInjection.ql
View File

@@ -104,7 +104,7 @@ private predicate isExternalUserControlledWorkflowRun(string context) {
}
/**
* The env variable name in `${{ env.name }}`
* Holds if the env variable name in `${{ env.name }}`
* is where the external user controlled value was assigned to.
*/
bindingset[injection]
@@ -122,7 +122,7 @@ predicate isRunInjectable(Actions::Run run, string injection, string context) {
(
injection = context
or
exists(Actions::Env env | isEnvTainted(env, injection, context))
isEnvTainted(_, injection, context)
)
}
@@ -139,7 +139,7 @@ predicate isScriptInjectable(Actions::Script script, string injection, string co
(
injection = context
or
exists(Actions::Env env | isEnvTainted(env, injection, context))
isEnvTainted(_, injection, context)
)
)
}