File tree Expand file tree Collapse file tree 1 file changed +3
-3
lines changed
go/ql/src/Security/CWE-079 Expand file tree Collapse file tree 1 file changed +3
-3
lines changed Original file line number Diff line number Diff line change @@ -38,16 +38,16 @@ predicate isSinkToTemplateExec(DataFlow::Node sink) {
3838}
3939
4040/**
41- * Data flow configuration that tracks flows from untrusted sources (A) to template execution calls (C),
42- * and tracks whether a conversion to a passthrough type (B) has occurred .
41+ * Data flow configuration that tracks flows from untrusted sources to template execution calls
42+ * which go through a conversion to an unescaped type.
4343 */
4444module UntrustedToTemplateExecWithConversionConfig implements DataFlow:: StateConfigSig {
4545 private newtype TConversionState =
4646 TUnconverted ( ) or
4747 TConverted ( UnescapedType unescapedType )
4848
4949 /**
50- * Flow state for tracking whether a conversion to a passthrough type has occurred.
50+ * Flow state for tracking whether a conversion to an unescaped type has occurred.
5151 */
5252 class FlowState extends TConversionState {
5353 predicate isBeforeConversion ( ) { this instanceof TUnconverted }
You can’t perform that action at this time.
0 commit comments