Update zipslip_bad.py

ahmed-farid-dev · web-flow · commit b5f1e9de080e · 2022-03-24T00:33:28.000+01:00
diff --git a/python/ql/src/experimental/Security/CWE-022/zipslip_bad.py b/python/ql/src/experimental/Security/CWE-022/zipslip_bad.py
@@ -2,13 +2,13 @@
 import shutil
 
 def unzip(filename):
-   with zipfile.ZipFile(filename) as zipf:
+    with zipfile.ZipFile(filename) as zipf:
     #BAD : This could write any file on the filesystem.
-      for entry in zipf:
-          shutil.copy(entry, "/tmp/unpack/")
+        for entry in zipf:
+            shutil.copy(entry, "/tmp/unpack/")
           
 def unzip1(filename):
-   with zipfile.ZipFile(filename) as zipf:
-      for entry in zipf:
-         with open(entry, 'wb') as dstfile:
-            shutil.copyfileobj(zipf, dstfile)
+    with zipfile.ZipFile(filename) as zipf:
+        for entry in zipf:
+            with open(entry, 'wb') as dstfile:
+                shutil.copyfileobj(zipf, dstfile)
