This website requires JavaScript.
Explore
Help
Register
Sign In
hohn
/
codeql
Watch
1
Star
0
Fork
0
You've already forked codeql
mirror of
https://github.com/github/codeql.git
synced
2026-02-26 11:53:42 +01:00
Code
Issues
Packages
Projects
Releases
Wiki
Activity
Files
df544595525a8df1dab3030753ce673602550910
codeql
/
python
/
ql
/
test
/
query-tests
/
Security
/
CWE-918-ServerSideRequestForgery
History
REDMOND\brodes
f6c302b68c
Removing commented out test cases.
2026-02-06 11:28:48 -05:00
..
full_partial_test.py
Added support for new URIValidator in AntiSSRF library. Updated test caes to use postprocessing results. Currently results for partial ssrf still need work, it is flagging cases where the URL is fully controlled, but is sanitized. I'm not sure if this should be flagged yet.
2026-02-06 11:20:11 -05:00
FullServerSideRequestForgery.expected
Added support for new URIValidator in AntiSSRF library. Updated test caes to use postprocessing results. Currently results for partial ssrf still need work, it is flagging cases where the URL is fully controlled, but is sanitized. I'm not sure if this should be flagged yet.
2026-02-06 11:20:11 -05:00
FullServerSideRequestForgery.qlref
Added support for new URIValidator in AntiSSRF library. Updated test caes to use postprocessing results. Currently results for partial ssrf still need work, it is flagging cases where the URL is fully controlled, but is sanitized. I'm not sure if this should be flagged yet.
2026-02-06 11:20:11 -05:00
options
Python: Add SSRF queries
2021-12-16 01:48:34 +01:00
PartialServerSideRequestForgery.expected
Updating test case expected alerts.
2026-02-06 11:20:13 -05:00
PartialServerSideRequestForgery.qlref
Added support for new URIValidator in AntiSSRF library. Updated test caes to use postprocessing results. Currently results for partial ssrf still need work, it is flagging cases where the URL is fully controlled, but is sanitized. I'm not sure if this should be flagged yet.
2026-02-06 11:20:11 -05:00
test_azure_client.py
Removing commented out test cases.
2026-02-06 11:28:48 -05:00
test_http_client.py
Added support for new URIValidator in AntiSSRF library. Updated test caes to use postprocessing results. Currently results for partial ssrf still need work, it is flagging cases where the URL is fully controlled, but is sanitized. I'm not sure if this should be flagged yet.
2026-02-06 11:20:11 -05:00
test_path_validation.py
Updating test case expected alerts.
2026-02-06 11:20:13 -05:00
test_requests.py
Added support for new URIValidator in AntiSSRF library. Updated test caes to use postprocessing results. Currently results for partial ssrf still need work, it is flagging cases where the URL is fully controlled, but is sanitized. I'm not sure if this should be flagged yet.
2026-02-06 11:20:11 -05:00
