Enhance sast-rule csharp/injection/rule-CommandInjection.yml (!286) · Merge requests · GitLab.org / security-products / sast-rules · GitLab

Lanka De Alwis requested to merge feat/issue-435924/CS-CommandInjection into main Jan 02, 2024

Related Issue: gitlab-org/gitlab#435924 (closed)

Update rule:

Ignore cases with hardcoded strings
Remove pattern-inside for name space classification

Changers in Playground: https://semgrep.dev/playground/r/qNU2BqQ/lk3.csharp_injection_rule-commandinjection

Edited Jan 02, 2024 by Lanka De Alwis