Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Commit f4047e0

Browse files
atorralbaatorralba
committed
Address QL-for-QL alert
Use an alert message consistent with the other languages
1 parent dc6f60a commit f4047e0

1 file changed

Lines changed: 3 additions & 2 deletions

File tree

  • swift/ql/src/queries/Security/CWE-611

swift/ql/src/queries/Security/CWE-611/XXE.ql

Lines changed: 3 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -20,5 +20,6 @@ import DataFlow::PathGraph
2020

2121
from DataFlow::PathNode source, DataFlow::PathNode sink
2222
where any(XxeConfiguration c).hasFlowPath(source, sink)
23-
select sink.getNode(), source, sink, "XML parser with enabled external entities depends on $@.",
24-
source.getNode(), "user input"
23+
select sink.getNode(), source, sink,
24+
"XML parsing depends on a $@ without guarding against external entity expansion.",
25+
source.getNode(), "user-provided value"

0 commit comments

Comments
 (0)