hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-03 12:45:27 +02:00
Code Issues Packages Projects Releases Wiki Activity

Added two new CMDi sinks fot python's stdlib

Browse Source
This commit is contained in:
Alvaro Muñoz
2022-12-02 22:16:40 +01:00
parent d53d275bba
commit 7e0e56dadc
1 changed files with 3 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
python/ql/lib/semmle/python/frameworks/Stdlib.qll
View File

@@ -1169,7 +1169,9 @@ private module StdlibPrivate {
private class SubprocessPopenCall extends SystemCommandExecution::Range, DataFlow::CallCfgNode {
SubprocessPopenCall() {
exists(string name |
name in ["Popen", "call", "check_call", "check_output", "run"] and
name in [
"Popen", "call", "check_call", "check_output", "run", "getoutput", "getstatusoutput"
] and
this = subprocess().getMember(name).getACall()
)
}