Enhance sast-rule python/django/rule-django_rawsql_used.yml (!290) · Merge requests · GitLab.org / security-products / sast-rules

Vadym Riznyk requested to merge vrizny-ext/sast-rules:main into main Jan 03, 2024

Commit for fix issue: gitlab-org/gitlab#434267 (closed) I added rules to search only for the use of the function where external user input occurs. I also added a search for a vulnerable parameterized function by enclosing the parameter in quotes.

Edited Jan 04, 2024 by Vadym Riznyk

Enhance sast-rule python/django/rule-django_rawsql_used.yml

Merge request reports