Enhance sast-rule python/django/rule-django_rawsql_used.yml (!292) · Merge requests · GitLab.org / security-products / sast-rules

Vadym Riznyk requested to merge feat/issue-434267/rule-django_rawsql_used into main Jan 04, 2024

Commit for fix issue: gitlab-org/gitlab#434267 (closed) I added rules to search only for the use of the function where external user input occurs. I also added a search for a vulnerable parameterized function by enclosing the parameter in quotes.

Enhance sast-rule python/django/rule-django_rawsql_used.yml

Merge request reports