Rasmus Wriedt Larsen 4adc26eb62 Python: Fix command injection example code ...

`subprocess.Popen(["ls", "-la"], shell=True)` correspond to running `sh -c "ls" -la`

So it doesn't follow the pattern of the rest of the test file.

2020-09-30 13:38:37 +02:00

..

CVE-2018-1281

Add bind-socket-all-network-interfaces Python query (#2048)

2019-10-03 11:23:11 +01:00

CWE-020

Python: Get rid of deprecated terms in code and .qhelp.

2020-06-19 16:51:09 +02:00

CWE-022

Merge pull request #2888 from RasmusWL/python-tarslip-sanitizer

2020-03-24 12:59:20 +01:00

CWE-078

Python: Fix command injection example code

2020-09-30 13:38:37 +02:00

CWE-079

Python: Add Value.getABooleanValue and Value.getDefiniteBooleanValue

2020-02-04 11:42:11 +01:00

CWE-089

Python: Always enable legacy taint tracking configuration

2019-11-11 11:17:21 +01:00

CWE-094

Python: Remove --optimize: true from options files

2020-02-25 15:52:00 +01:00

CWE-209

Python: Always enable legacy taint tracking configuration

2019-11-11 11:17:21 +01:00

CWE-215

Update test to reflect new true positive.

2019-04-26 16:21:46 +01:00

CWE-295

Address review comments.

2019-03-19 15:44:11 +01:00

CWE-312

Python: Add test-case to password_in_cookie

2019-11-12 10:36:12 +01:00

CWE-326

Python: Remove --optimize: true from options files

2020-02-25 15:52:00 +01:00

CWE-327

Python: Use proper import for semmle.python.dataflow.TaintTracking

2020-05-25 13:45:49 +02:00

CWE-377

Python: Remove --optimize: true from options files

2020-02-25 15:52:00 +01:00

CWE-502

Python: Remove --optimize: true from options files

2020-02-25 15:52:00 +01:00

CWE-601

Python: Remove unused variable in example for py/url-redirection

2020-01-21 15:45:05 +01:00

CWE-732

Python: Remove --optimize: true from options files

2020-02-25 15:52:00 +01:00

CWE-798

Python: Add test-cases for py/hardcoded-credentials

2020-02-04 11:42:11 +01:00

lib

Python : Add query to detect Server Side Template Injection

2020-07-21 18:01:27 +05:30