spelling: against

jsoref · jsoref · commit b1052992fe3b · 2022-10-11T00:23:35.000-04:00
Signed-off-by: Josh Soref &lt;2119212+jsoref@users.noreply.github.com&gt;
diff --git a/go/ql/src/experimental/CWE-369/DivideByZero.qhelp b/go/ql/src/experimental/CWE-369/DivideByZero.qhelp
@@ -18,7 +18,7 @@ possibly causing a divide-by-zero panic.
         </p>
         <sample src="DivideByZeroBad.go" />
         <p>
-This can be fixed by testing the divisor against against zero:
+This can be fixed by testing the divisor against zero:
         </p>
         <sample src="DivideByZeroGood.go" />
     </example>
diff --git a/go/ql/test/experimental/CWE-942/CorsMisconfiguration.go b/go/ql/test/experimental/CWE-942/CorsMisconfiguration.go
@@ -120,7 +120,7 @@ func main() {
 			}
 		})
 		http.HandleFunc("/", func(w http.ResponseWriter, req *http.Request) {
-			// OK-ish: the input origin header is validated agains a whitelist.
+			// OK-ish: the input origin header is validated against a whitelist.
 			responseHeader := w.Header()
 			{
 				origin := req.Header.Get("origin")
@@ -137,7 +137,7 @@ func main() {
 		})
 		http.HandleFunc("/", func(w http.ResponseWriter, req *http.Request) {
 			originSuffix := ".example.com"
-			// OK-ish: the input origin header is validated agains a suffix.
+			// OK-ish: the input origin header is validated against a suffix.
 			origin := req.Header.Get("Origin")
 			if origin != "" && (originSuffix == "" || strings.HasSuffix(origin, originSuffix)) {
 				w.Header().Set("Access-Control-Allow-Origin", origin)
@@ -152,7 +152,7 @@ func main() {
 		})
 		http.HandleFunc("/", func(w http.ResponseWriter, req *http.Request) {
 			originSuffix := ".example.com"
-			// OK-ish: the input origin header is validated agains a whitelist.
+			// OK-ish: the input origin header is validated against a whitelist.
 			origin := req.Header.Get("Origin")
 			if origin != "" && (originSuffix == "" || AccessControlAllowOrigins[origin]) {
 				w.Header().Set("Access-Control-Allow-Origin", origin)
@@ -166,7 +166,7 @@ func main() {
 			}
 		})
 		http.HandleFunc("/", func(w http.ResponseWriter, req *http.Request) {
-			// OK-ish: the input origin header is validated agains a whitelist.
+			// OK-ish: the input origin header is validated against a whitelist.
 			origin := req.Header.Get("origin")
 			if origin != "" && origin != "null" {
 				if len(AccessControlAllowOrigins) == 0 || AccessControlAllowOrigins[origin] {
@@ -178,7 +178,7 @@ func main() {
 			}
 		})
 		// http.HandleFunc("/", func(w http.ResponseWriter, req *http.Request) {
-		//  // OK-ish: the input origin header is validated agains a whitelist.
+		//  // OK-ish: the input origin header is validated against a whitelist.
 		// 	origin := req.Header.Get("origin")
 		// 	if origin != "" && origin != "null" {
 		// 		if _, ok := AccessControlAllowOrigins[origin]; ok {
@@ -190,7 +190,7 @@ func main() {
 		// 	}
 		// })
 		http.HandleFunc("/", func(w http.ResponseWriter, req *http.Request) {
-			// OK-ish: the input origin header is validated agains a whitelist.
+			// OK-ish: the input origin header is validated against a whitelist.
 			if origin := req.Header.Get("Origin"); cors[origin] {
 				w.Header().Set("Access-Control-Allow-Origin", origin)
 			} else if len(origin) > 0 && cors["*"] {
@@ -202,7 +202,7 @@ func main() {
 			w.Header().Set("Access-Control-Allow-Credentials", "true")
 		})
 		http.HandleFunc("/", func(w http.ResponseWriter, req *http.Request) {
-			// OK-ish: the input origin header is validated agains a whitelist.
+			// OK-ish: the input origin header is validated against a whitelist.
 			origin := req.Header.Get("origin")
 			for _, v := range GetAllowOrigin() {
 				if v == origin {
diff --git a/go/ql/test/query-tests/Security/CWE-918/websocket.go b/go/ql/test/query-tests/Security/CWE-918/websocket.go
@@ -96,7 +96,7 @@ func test() {
 	http.HandleFunc("/ex5", func(w http.ResponseWriter, r *http.Request) {
 		untrustedInput := r.Referer()
 
-		// good as input is tested againt regex
+		// good as input is tested against regex
 		if m, _ := regexp.MatchString("ws://localhost:12345/*", untrustedInput); m {
 			nhooyr.Dial(context.TODO(), untrustedInput, nil)
 		}

Original file line number	Diff line number	Diff line change
`@@ -96,7 +96,7 @@ func test() {`
`96`	`96`	`http.HandleFunc("/ex5", func(w http.ResponseWriter, r *http.Request) {`
`97`	`97`	`untrustedInput := r.Referer()`
`98`	`98`
`99`		`- // good as input is tested againt regex`
	`99`	`+ // good as input is tested against regex`
`100`	`100`	`if m, _ := regexp.MatchString("ws://localhost:12345/*", untrustedInput); m {`
`101`	`101`	`nhooyr.Dial(context.TODO(), untrustedInput, nil)`
`102`	`102`	`}`