hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-18 18:10:39 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
alexet/avoid-path-node-java
codeql/java/ql/test/library-tests/frameworks/JaxWs/JaxRsContainerRequestContextSources.java
Chris Smowton 451a46bf0e Add models for getLanguage, getMediaType
2021-09-10 16:36:38 +01:00

19 lines
833 B
Java
Raw Permalink Blame History

import javax.ws.rs.container.ContainerRequestContext;
public class JaxRsContainerRequestContextSources {
void sink(Object o) {}
void test(ContainerRequestContext context) throws Exception {
sink(context.getAcceptableLanguages()); // $ hasValueFlow
sink(context.getAcceptableMediaTypes().get(0).getType()); // $ hasTaintFlow
sink(context.getCookies().get("someKey").getValue()); // $ hasTaintFlow
byte[] buf = new byte[1024];
context.getEntityStream().read(buf);
sink(buf); // $ hasTaintFlow
sink(context.getHeaders().getFirst("someKey")); // $ hasTaintFlow
sink(context.getHeaderString("someKey")); // $ hasValueFlow
sink(context.getLanguage()); // $ hasValueFlow
sink(context.getMediaType().getType()); // $ hasTaintFlow
sink(context.getUriInfo().getPath()); // $ hasTaintFlow
}
}
Reference in New Issue View Git Blame Copy Permalink