codeql/2021-10-20-path-injection.md at 3043ac850cdfed9bdb25e1b0c177fb26791105df - codeql - Gitea: Git with a cup of tea

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2026-04-28 10:15:14 +02:00

Files

Nick Rolfe 16c62d22de Add change-note for rb/path-injection

2021-10-20 13:19:49 +01:00

167 B

Raw Blame History

lgtm,codescanning

A new query (rb/path-injection) has been added. The query finds file operations using paths that derive from user input without being sanitized.