codeql/2025-03-10-matches-replace-path-sanitizer.md at c89c403e0e1b925e9a3c408983b03798fe2e02e2 - codeql - Gitea: Git with a cup of tea

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00

Files

Jami Cogswell 41aeb874f1 Java: add change note

2025-03-10 18:56:13 -04:00

221 B

Raw Blame History

category

category
minorAnalysis

Added a path injection sanitizer for calls to java.lang.String.matches, java.lang.String.replace, and java.lang.String.replaceAll that make sure '/', '', '..' are not in the path.