hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-01-09 20:50:21 +01:00
Code Issues Packages Projects Releases Wiki Activity

Add cargo as poisonable step

Browse Source
This commit is contained in:
Alvaro Muñoz
2024-06-24 12:45:24 +02:00
parent 6df70d1a45
commit b5dfda27fd
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
ql/lib/codeql/actions/security/PoisonableSteps.qll
View File

@@ -23,7 +23,7 @@ private string dangerousCommands() {
"terraform apply", "gomplate ", "pre-commit run", "pre-commit install", "go generate",
"msbuild ", "mvn ", "gradle ", "bundle install", "bundle exec ", "^ant ", "mkdocs build",
"pytest", "pip install -r ", "pip install --requirement", "java -jar ", "poetry install",
"poetry run"
"poetry run", "cargo "
]
}