Eliminate false positives caused by .

haby0 · haby0 · commit 027760170554 · 2021-09-16T20:59:34.000+08:00
diff --git a/python/ql/src/experimental/Security/CWE-348/ClientSuppliedIpUsedInSecurityCheckLib.qll b/python/ql/src/experimental/Security/CWE-348/ClientSuppliedIpUsedInSecurityCheckLib.qll
@@ -124,7 +124,7 @@ private class CompareSink extends ClientSuppliedIpUsedInSecurityCheckSink {
         compare.getLeft() = this.asExpr()
         or
         compare.getComparator(0) = this.asExpr() and
-        not compare.getLeft().(StrConst).getText() in ["%", ","]
+        not compare.getLeft().(StrConst).getText() in ["%", ",", "."]
       )
     )
   }

Original file line number	Diff line number	Diff line change
`@@ -124,7 +124,7 @@ private class CompareSink extends ClientSuppliedIpUsedInSecurityCheckSink {`
`124`	`124`	`compare.getLeft() = this.asExpr()`
`125`	`125`	`or`
`126`	`126`	`compare.getComparator(0) = this.asExpr() and`
`127`		`- not compare.getLeft().(StrConst).getText() in ["%", ","]`
	`127`	`+ not compare.getLeft().(StrConst).getText() in ["%", ",", "."]`
`128`	`128`	`)`
`129`	`129`	`)`
`130`	`130`	`}`