dépôts / lhc / web / wiklou.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e590431) | patch
Set @return-taint of Sanitizer::stripAllTags to tainted
authorsbassett <sbassett@wikimedia.org>
Tue, 13 Aug 2019 22:06:53 +0000 (17:06 -0500)
committersbassett <sbassett@wikimedia.org>
Tue, 13 Aug 2019 22:07:27 +0000 (17:07 -0500)
commitdcdbd13d97bbf824c94db7c764cb34b18ef3d8ba
tree20a961b2c2e9c555463ce29f725dc0f5b9c4b602tree | snapshot
parente5904311297a40db0ca6ce3f04717529ac94fa38commit | diff
Set @return-taint of Sanitizer::stripAllTags to tainted

phan-taint-check (aka SecurityCheckPlugin) doesn't recognize
Sanitizer::stripAllTags' output as tainted in certain situations.
Adding a @return-taint of tainted to ensure that it does, which
may result in the reporting of more issues.

Bug: T230234
Change-Id: I357c168417a26882c7c460df20f36ec2be401096
includes/parser/Sanitizer.php diff | blob | history
Wiklou, le Wiki du Wiklou