Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Commit 1e46509

Browse files
hvitvedhvitved
committed
C#: Use TaintTracking2 in cs/inappropriate-encoding 
1 parent 2a2e07d commit 1e46509

1 file changed

Lines changed: 4 additions & 3 deletions

File tree

csharp/ql/src/Security Features/CWE-838/InappropriateEncoding.ql

Lines changed: 4 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -11,7 +11,6 @@
1111
*/
1212

1313
import csharp
14-
import DataFlow
1514
import semmle.code.csharp.frameworks.System
1615
import semmle.code.csharp.frameworks.system.Net
1716
import semmle.code.csharp.frameworks.system.Web
@@ -20,13 +19,15 @@ import semmle.code.csharp.security.dataflow.SqlInjection
2019
import semmle.code.csharp.security.dataflow.XSS
2120
import semmle.code.csharp.security.dataflow.UrlRedirect
2221
import semmle.code.csharp.security.Sanitizers
23-
import semmle.code.csharp.dataflow.DataFlow::DataFlow::PathGraph
22+
import semmle.code.csharp.dataflow.DataFlow2::DataFlow2
23+
import semmle.code.csharp.dataflow.DataFlow2::DataFlow2::PathGraph
24+
import semmle.code.csharp.dataflow.TaintTracking2
2425

2526
/**
2627
* A configuration for specifying expressions that must be
2728
* encoded, along with a set of potential valid encoded values.
2829
*/
29-
abstract class RequiresEncodingConfiguration extends TaintTracking::Configuration {
30+
abstract class RequiresEncodingConfiguration extends TaintTracking2::Configuration {
3031
bindingset[this]
3132
RequiresEncodingConfiguration() { any() }
3233

0 commit comments

Comments
 (0)