hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-30 19:26:02 +02:00
Code Issues Packages Projects Releases Wiki Activity

Restrict the reach for an additional taint step

Browse Source
This commit is contained in:
ALJI Mohamed
2022-10-19 16:08:49 +01:00
parent 25a7fcffc0
commit 9163cbec09
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
python/ql/src/experimental/Security/CWE-022bis/TarSlipImprov.ql
View File

@@ -97,6 +97,7 @@ class Configuration extends TaintTracking::Configuration {
exists(AttrRead attr, MethodCallNode call |
attr.accesses(nodeFrom, "getmembers") and
nodeFrom = call.getObject() and
nodeFrom instanceof AllTarfileOpens and
nodeTo = call
)
or