codeql/2021-03-18-commons-tostring-builder.md at z80coder/query-pack-release-candidate-2 - codeql - Gitea: Git with a cup of tea

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2025-12-18 01:33:15 +01:00

Files

Chris Smowton fce1d6122f Add change note

2021-04-21 15:47:20 +01:00

236 B

Raw Permalink Blame History

lgtm,codescanning

Added models for Apache Commons Lang's ToStringBuilder class. This may lead to more results from any data-flow query where ToStringBuilder operations fall between the relevant untrusted source and vulnerable sink.