Update SafeComparisonOfHeaderValue.py

2026-04-30 03:05:15 +02:00 · 2022-08-15 15:12:38 +01:00
parent 773bb5fffd
commit c578a34892
1 changed files with 1 additions and 1 deletions
--- a/python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstHeaderValue/SafeComparisonOfHeaderValue.py
+++ b/python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstHeaderValue/SafeComparisonOfHeaderValue.py
@@ -10,7 +10,7 @@ from flask import request
 import hmac

@app.route('/good')
-def good1():
+def good():
    secret = request.headers.get('X-Auth-Token')    
    if not hmac.compare_digest(secret, "token"):
        raise Exception('bad token')