hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-18 09:43:15 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
codeql-cli-2.23.2
codeql/java/ql/test/query-tests/security/CWE-532/Test.java
Nora Dimitrijević 6134518d60 [TEST] Java: SensitiveLogInfo: convert to qlref
2025-07-17 18:59:01 +02:00

14 lines
530 B
Java
Raw Permalink Blame History

import org.apache.logging.log4j.Logger;
class Test {
void test(String password, String authToken, String username, String nullToken, String stringTokenizer) {
Logger logger = null;
logger.info("User's password is: " + password); // $ Alert
logger.error("Auth failed for: " + authToken); // $ Alert
logger.error("Auth failed for: " + username); // Safe
logger.error("Auth failed for: " + nullToken); // Safe
logger.error("Auth failed for: " + stringTokenizer); // Safe
}
}
Reference in New Issue View Git Blame Copy Permalink