hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-23 10:23:41 +01:00
Code Issues Packages Projects Releases Wiki Activity

Update python/ql/test/query-tests/Security/CWE-918-ServerSideRequestForgery/test_path_validation.py

Browse Source 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
This commit is contained in:
Ben Rodes
2026-02-10 11:09:25 -05:00
committed by GitHub
parent 23bab81855
commit 9f8ed710e2
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
python/ql/test/query-tests/Security/CWE-918-ServerSideRequestForgery/test_path_validation.py
View File

@@ -56,8 +56,8 @@ def urivalidator_path_in_azure_storage_domain_validation(credential):
def complex_urivalidator_checks(credential, trusted_domain):
user_input = request.args['untrusted_input']
# Focus on in_domain only here for simplicity
# It assumed the logic underlying checking paths would apply
# similarly other validator methods
# It is assumed that the logic underlying path checking would apply
# similarly to other validator methods.
url = f"https://{user_input}"
if not URIValidator.in_domain(url, trusted_domain):