hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-05 13:45:19 +02:00
Code Issues Packages Projects Releases Wiki Activity

Update java/ql/test/query-tests/security/CWE-611/DocumentBuilderTests.java

Browse Source 
Co-authored-by: intrigus-lgtm <60750685+intrigus-lgtm@users.noreply.github.com>
This commit is contained in:
Chris Smowton
2021-11-25 12:52:08 +00:00
committed by GitHub
parent 9eb9eb606e
commit 9540beeda9
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
java/ql/test/query-tests/security/CWE-611/DocumentBuilderTests.java
View File

@@ -32,7 +32,7 @@ class DocumentBuilderTests {
DocumentBuilderFactory factory = DocumentBuilderFactory.newInstance();
factory.setFeature("http://javax.xml.XMLConstants/feature/secure-processing", true);
DocumentBuilder builder = factory.newDocumentBuilder();
builder.parse(sock.getInputStream()); //safe -- secure-processing by itself is insufficient
builder.parse(sock.getInputStream()); //unsafe -- secure-processing by itself is insufficient
}
public void enableDTD(Socket sock) throws Exception {