hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00
Code Issues Packages Projects Releases Wiki Activity

Actions: Fix typos in query names for env var injection

Browse Source 
This will reflect in the UI titles of existing and new alerts
once shipped but should not churn any existing alerts.
This commit is contained in:
Aditya Sharad
2025-03-13 17:01:10 -07:00
parent fba7bcd127
commit 956b5bf6d6
5 changed files with 10 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
actions/ql/src/Security/CWE-077/EnvPathInjectionCritical.ql
View File

@@ -1,5 +1,5 @@
/**
* @name PATH Enviroment Variable built from user-controlled sources
* @name PATH environment variable built from user-controlled sources
* @description Building the PATH environment variable from user-controlled sources may alter the execution of following system commands
* @kind path-problem
* @problem.severity error

2
actions/ql/src/Security/CWE-077/EnvPathInjectionMedium.ql
View File

@@ -1,5 +1,5 @@
/**
* @name PATH Enviroment Variable built from user-controlled sources
* @name PATH environment variable built from user-controlled sources
* @description Building the PATH environment variable from user-controlled sources may alter the execution of following system commands
* @kind path-problem
* @problem.severity error

2
actions/ql/src/Security/CWE-077/EnvVarInjectionCritical.ql
View File

@@ -1,5 +1,5 @@
/**
* @name Enviroment Variable built from user-controlled sources
* @name Environment variable built from user-controlled sources
* @description Building an environment variable from user-controlled sources may alter the execution of following system commands
* @kind path-problem
* @problem.severity error

2
actions/ql/src/Security/CWE-077/EnvVarInjectionMedium.ql
View File

@@ -1,5 +1,5 @@
/**
* @name Enviroment Variable built from user-controlled sources
* @name Environment variable built from user-controlled sources
* @description Building an environment variable from user-controlled sources may alter the execution of following system commands
* @kind path-problem
* @problem.severity error

6
actions/ql/src/change-notes/2025-03-13-environment-query-names.md Normal file
View File

@@ -0,0 +1,6 @@
---
category: fix
---
* Fixed typos in the query and alert titles for the queries
`actions/envpath-injection/critical`, `actions/envpath-injection/medium`,
`actions/envvar-injection/critical`, and `actions/envvar-injection/medium`.