FilesExpand file tree

 codeql-cli-2.25.2

/

0.6.2.md

Copy path

BlameMore file actions

BlameMore file actions

Latest commit

 

History

History

History

7 lines (5 loc) · 544 Bytes

 codeql-cli-2.25.2

/

0.6.2.md

Top

File metadata and controls

• Preview
• Code
• Blame

7 lines (5 loc) · 544 Bytes

Raw

Copy raw file

Download raw file

Outline

Edit and raw actions

0.6.2

Minor Analysis Improvements

• The query java/groovy-injection now recognizes groovy.text.TemplateEngine.createTemplate as a sink.
• The queries java/xxe and java/xxe-local now recognize the second argument of calls to XPath.evaluate as a sink.
• Experimental sinks for the query "Resolving XML external entity in user-controlled data" (java/xxe) have been promoted to the main query pack. These sinks were originally submitted as part of an experimental query by @haby0.