codeql/2021-10-20-path-injection.md at b4eadefb925b5594aea6b77830daa9caeca17e56 - codeql - Gitea: Git with a cup of tea

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2026-05-04 05:05:12 +02:00

Files

Nick Rolfe 16c62d22de Add change-note for rb/path-injection

2021-10-20 13:19:49 +01:00

167 B

Raw Blame History

lgtm,codescanning

A new query (rb/path-injection) has been added. The query finds file operations using paths that derive from user input without being sanitized.