Skip to content

Commit 9cb249f

Browse files
RasmusWLRasmusWL
committed
Python: Add test we don't handle for py/request-without-cert-validation 
1 parent 4a02505 commit 9cb249f

File tree

1 file changed

+3
-0
lines changed
  • python/ql/test/query-tests/Security/CWE-295-RequestWithoutValidation

1 file changed

+3
-0
lines changed

python/ql/test/query-tests/Security/CWE-295-RequestWithoutValidation/make_request.py

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -36,3 +36,6 @@ def req2(verify):
3636
# requests treat `None` as default value, which means it is turned on
3737
requests.get('https://semmle.com') # OK
3838
requests.get('https://semmle.com', verify=None) # OK
39+
40+
s = requests.Session()
41+
s.get("url", verify=False) # BAD

0 commit comments

Comments
 (0)