hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-20 10:46:30 +01:00
Code Issues Packages Projects Releases Wiki Activity

Update python/ql/src/Security/CWE-327/InsecureDefaultProtocol.ql

Browse Source 
Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>
This commit is contained in:
yoff
2021-02-26 10:56:48 +01:00
committed by GitHub
parent a067adbaf3
commit 7f7320ae4c
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
python/ql/src/Security/CWE-327/InsecureDefaultProtocol.ql
View File

@@ -23,7 +23,7 @@ CallNode unsafe_call(string method_name) {
not exists(result.getArg(0)) and
method_name = "ssl.SSLContext" and
// in version 3.4, flags were introduced to modify cotexts created with default values
(major_version() < 3 or minor_version() < 4)
(major_version() = 2 or major_version() = 3 and minor_version() < 4)
}
from CallNode call, string method_name