codeql/java/change-notes/2021-03-18-commons-tostring-builder.md

mirror of https://github.com/github/codeql.git synced 2025-12-19 02:13:17 +01:00
lgtm,codescanning
* Added models for Apache Commons Lang's `ToStringBuilder` class. This may lead to more results from any data-flow query where ToStringBuilder operations fall between the relevant untrusted source and vulnerable sink.
	`lgtm,codescanning`
	* Added models for Apache Commons Lang's `ToStringBuilder` class. This may lead to more results from any data-flow query where ToStringBuilder operations fall between the relevant untrusted source and vulnerable sink.