GitHub-Mirror/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd synced 2025-10-06 00:13:24 +02:00
Code Issues Releases Wiki Activity

codeql: taint basename()

Browse Source
This commit is contained in:
Lennart Poettering
2025-06-06 15:56:46 +02:00
committed by Yu Watanabe
parent 0f64d570cb
commit 52c9a3c392
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
.github/codeql-queries/PotentiallyDangerousFunction.ql vendored
View File

@@ -49,6 +49,9 @@ predicate potentiallyDangerousFunction(Function f, string message) {
) or (
f.getQualifiedName() = "dirname" and
message = "Call dirname() is icky. Use path_extract_directory() instead."
) or (
f.getQualifiedName() = "basename" and
message = "Call basename() is icky. Use path_extract_filename() instead."
)
}