codeql/2021-10-20-path-injection.md at z80coder/query-pack-release-candidate-2 - codeql - Gitea: Git with a cup of tea

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 17:23:36 +01:00

Files

Nick Rolfe 16c62d22de Add change-note for rb/path-injection

2021-10-20 13:19:49 +01:00

167 B

Raw Permalink Blame History

lgtm,codescanning

A new query (rb/path-injection) has been added. The query finds file operations using paths that derive from user input without being sanitized.