codeql/2023-05-27-unsafe-deserialization.md at 139585fe5c6a12b78e81ffdefbc218a25335bf00 - codeql - Gitea: Git with a cup of tea

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00

Files

Harry Maclean 562065f29e Ruby: Add change note

2023-05-27 01:20:09 +00:00

225 B

Raw Blame History

category

category
minorAnalysis

Additional sinks for rb/unsafe-deserialization have been added. This includes various methods from the yaml and plist gems, which deserialize YAML and Property List data, respectively.