Skip to content

Commit c59042f

Browse files
committed
Java: Taint tracking through String.replace(all)?
1 parent 7d555a7 commit c59042f

File tree

1 file changed

+2
-0
lines changed

1 file changed

+2
-0
lines changed

java/ql/src/semmle/code/java/dataflow/internal/TaintTrackingUtil.qll

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -387,6 +387,8 @@ private predicate taintPreservingQualifierToMethod(Method m) {
387387
m.getName().regexpMatch("get|toArray|subList|spliterator|set|iterator|listIterator") or
388388
(m.getName().regexpMatch("remove") and not m.getReturnType() instanceof BooleanType)
389389
)
390+
or
391+
m instanceof StringReplaceMethod
390392
}
391393

392394
private class StringReplaceMethod extends Method {

0 commit comments

Comments
 (0)