Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Commit 09d8a75

Browse files
am0o0am0o0
committed
Fix QLDoc issues
1 parent eb401a2 commit 09d8a75

3 files changed

Lines changed: 6 additions & 13 deletions

File tree

python/ql/src/experimental/Security/CWE-409/DecompressionBombs.ql

Lines changed: 0 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -12,11 +12,6 @@
1212
*/
1313

1414
import python
15-
import semmle.python.dataflow.new.DataFlow
16-
import semmle.python.dataflow.new.TaintTracking
17-
import semmle.python.ApiGraphs
18-
import semmle.python.dataflow.new.RemoteFlowSources
19-
import semmle.python.dataflow.new.internal.DataFlowPublic
2015
import experimental.semmle.python.security.DecompressionBomb
2116
import BombsFlow::PathGraph
2217

python/ql/src/experimental/semmle/python/security/DecompressionBomb.qll

Lines changed: 3 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,4 @@
11
import python
2-
import semmle.python.dataflow.new.DataFlow
32
import semmle.python.dataflow.new.TaintTracking
43
import semmle.python.ApiGraphs
54
import semmle.python.dataflow.new.RemoteFlowSources
@@ -26,7 +25,7 @@ module DecompressionBomb {
2625

2726
module ZipFile {
2827
/**
29-
* A `zipfile` Instance
28+
* Gets `zipfile` Instance
3029
*
3130
* ```python
3231
* zipfile.ZipFile()
@@ -129,7 +128,7 @@ module TarFile {
129128
}
130129

131130
/**
132-
* A tarfile instance for extracting compressed data
131+
* Gets tarfile instance for extracting compressed data
133132
*/
134133
API::Node tarfileExtractMember() {
135134
result =
@@ -374,7 +373,7 @@ module BombsConfig implements DataFlow::ConfigSig {
374373
predicate isSource(DataFlow::Node source) {
375374
source instanceof RemoteFlowSource
376375
or
377-
source instanceof FastAPI
376+
source instanceof FastApi
378377
}
379378

380379
predicate isSink(DataFlow::Node sink) { sink instanceof DecompressionBomb::Sink }

python/ql/src/experimental/semmle/python/security/FileAndFormRemoteFlowSource.qll

Lines changed: 3 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,4 @@
11
import python
2-
import semmle.python.dataflow.new.DataFlow
32
import semmle.python.dataflow.new.TaintTracking
43
import semmle.python.ApiGraphs
54

@@ -8,10 +7,10 @@ import semmle.python.ApiGraphs
87
*/
98
module FileAndFormRemoteFlowSource {
109
/**
11-
* A
10+
* A FastAPI Remote Flow Source for requests with multipart data in the body or requests with single file in the body
1211
*/
13-
class FastAPI extends DataFlow::Node {
14-
FastAPI() {
12+
class FastApi extends DataFlow::Node {
13+
FastApi() {
1514
exists(API::Node fastApiParam, Expr fastApiUploadFile |
1615
fastApiParam =
1716
API::moduleImport("fastapi")

0 commit comments

Comments
 (0)