Skip to content

Commit bada5bf

Browse files
geoffw0geoffw0
committed
Swift: Placeholder query + docs for CWE-95.
1 parent 34de400 commit bada5bf

File tree

4 files changed

+53
-0
lines changed

4 files changed

+53
-0
lines changed

swift/ql/src/queries/Security/CWE-095/UnsafeWebViewFetch.qhelp

Lines changed: 32 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,32 @@
1+
<!DOCTYPE qhelp PUBLIC
2+
"-//Semmle//qhelp//EN"
3+
"qhelp.dtd">
4+
<qhelp>
5+
<overview>
6+
<p>TODO</p>
7+
8+
</overview>
9+
<recommendation>
10+
11+
<p>TODO</p>
12+
13+
</recommendation>
14+
<example>
15+
16+
<p>TODO</p>
17+
18+
<sample src="StringLengthConflationBad.swift" />
19+
20+
<p>TODO</p>
21+
22+
<sample src="StringLengthConflationGood.swift" />
23+
24+
</example>
25+
<references>
26+
27+
<li>
28+
<a href="TODO">TODO</a>
29+
</li>
30+
31+
</references>
32+
</qhelp>

swift/ql/src/queries/Security/CWE-095/UnsafeWebViewFetch.ql

Lines changed: 17 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,17 @@
1+
/**
2+
* @name Unsafe WebView fetch
3+
* @description TODO
4+
* @kind problem
5+
* @problem.severity warning
6+
* @security-severity TODO
7+
* @precision high
8+
* @id swift/unsafe-webview-fetch
9+
* @tags security
10+
* external/cwe/cwe-095
11+
* external/cwe/cwe-079
12+
* external/cwe/cwe-749
13+
*/
14+
15+
import swift
16+
17+
select "TODO"

swift/ql/src/queries/Security/CWE-095/UnsafeWebViewFetchBad.swift

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,2 @@
1+
2+
TODO

swift/ql/src/queries/Security/CWE-095/UnsafeWebViewFetchGood.swift

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,2 @@
1+
2+
TODO

0 commit comments

Comments
 (0)