Improve ziparchive Go rule with source and sanitizers (!325) · Merge requests · GitLab.org / security-products / sast-rules

Michael Henriksen requested to merge feat/issue-409443/ziparchive into main Jan 19, 2024

Adds tar.Reader as a source and sanitizers to treat sources that have gone through file(path).Clean + strings.HasPrefix as sanitized. Also adds test annotations to the relate test file.

Part of Enhance Go semgrep rules (gitlab-org/gitlab#409443 - closed)

Improve ziparchive Go rule with source and sanitizers

Merge request reports