hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-26 17:25:19 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #15731 from erik-krogh/java-url

Browse Source 
Java: More sanitizers for request-forgery
This commit is contained in:
Erik Krogh Kristensen
2024-03-12 19:31:52 +01:00
committed by GitHub
parent 8d1ee10981 f613823047
commit 863e3f79e5
4 changed files with 132 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
java/ql/src/change-notes/2024-03-12-request-sanitizers.md Normal file
View File

@@ -0,0 +1,4 @@
---
category: minorAnalysis
---
* Added sanitizers for relative URLs, `List.contains()`, and checking the host of a URI to the `java/ssrf` and `java/unvalidated-url-redirection` queries.