checker: request tainted file write and request tainted `HttpResponse`/`HttpResponseBadRequest` by MashyBasker · Pull Request #172 · DeepSourceCorp/globstar

MashyBasker · 2025-03-19T15:48:28Z

Purpose

This PR adds checker for the following:

file.write() method call tainted with dynamic data from a request call
HttpResponse and HttpResponseBadRequest tainted with dynamic data from request call

…uest Signed-off-by: Maharshi Basu <basumaharshi10@gmail.com>

vercel · 2025-03-19T15:48:32Z

The latest updates on your projects. Learn more about Vercel for Git ↗︎

1 Skipped Deployment

Name	Status	Preview	Comments	Updated (UTC)
globstar	⬜️ Ignored (Inspect)	Visit Preview		Mar 21, 2025 2:51pm

Signed-off-by: Sourya Vatsyayan <sourya@deepsource.io>

checker: request tainted file write + HttpResponse/HttpResponseBadReq…

4abde69

…uest Signed-off-by: Maharshi Basu <basumaharshi10@gmail.com>

MashyBasker requested a review from sourya-deepsource March 20, 2025 06:45

Merge branch 'master' into checkers/django-user-tainted-data-pass

745a13a

Signed-off-by: Sourya Vatsyayan <sourya@deepsource.io>

sourya-deepsource approved these changes Mar 21, 2025

View reviewed changes

sourya-deepsource merged commit 0dbdffb into DeepSourceCorp:master Mar 21, 2025
3 checks passed