hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-30 03:05:15 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
2a932f0748fb7b30df2e4fa1a4bf80028d14951d
codeql/ruby/ql/src/change-notes/released/0.4.2.md
Arthur Baars 45c9a0d0b1 Apply suggestions from code review 
Co-authored-by: Jeroen Ketema <93738568+jketema@users.noreply.github.com>
2022-10-20 15:22:29 +02:00

667 B
Raw Blame History

0.4.2

New Queries

  • Added a new query, rb/non-constant-kernel-open, to detect uses of Kernel.open and related methods with non-constant values.
  • Added a new query, rb/sensitive-get-query, to detect cases where sensitive data is read from the query parameters of an HTTP GET request.

Minor Analysis Improvements

  • HTTP response header and body writes via ActionDispatch::Response are now recognized.
  • The rb/path-injection query now treats the file: argument of the Rails render method as a sink.
  • The alert messages of many queries were changed to better follow the style guide and make the messages consistent with other languages.