Thanks to visit codestin.com Credit goes to github.com
We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
1 parent 1405052 commit 19e8974Copy full SHA for 19e8974
1 file changed
go/ql/lib/semmle/go/frameworks/stdlib/NetHttp.qll
@@ -163,7 +163,7 @@ module NetHttp {
163
// NB. SummarizedCallables do not implement a direct call-site-crossing flow step; instead
164
// they are implemented by a function body with internal dataflow nodes, so we mimic the
165
// one-step style for the particular case of taint propagation direct from an argument or receiver
166
- // to another argument, receiver or return value without an
+ // to another argument, receiver or return value, matching the behaviour for a `TaintTracking::FunctionModel`.
167
this = getSummaryInputOrOutputNode(call, input) and
168
responseWriter.(DataFlow::PostUpdateNode).getPreUpdateNode() =
169
getSummaryInputOrOutputNode(call, output) and
0 commit comments