hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-30 19:26:02 +02:00
Code Issues Packages Projects Releases Wiki Activity

QLDocs

Browse Source
This commit is contained in:
Tony Torralba
2021-05-17 15:04:50 +02:00
parent 897cd5384f
commit cfb38c43b3
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
java/ql/src/semmle/code/java/security/JWT.qll
View File

@@ -34,6 +34,7 @@ class JwtParserWithInsecureParseSink extends DataFlow::Node {
)
}
/** Gets the method access that does the insecure parsing. */
MethodAccess getParseMethodAccess() { result = insecureParseMa }
}
@@ -86,7 +87,7 @@ private class SigningKeySourceModel extends SourceModelCsv {
}
}
/** CSV sink models representing qualifiers of methods that insecurely parse a JWT */
/** CSV sink models representing qualifiers of methods that parse a JWT insecurely. */
private class InsecureJwtParseSinkModel extends SinkModelCsv {
override predicate row(string row) {
row =