Skip to content

Commit 9e5a80a

Browse files
krakendiokrakendio
committed
update select clause and expected file
1 parent 7bf7e59 commit 9e5a80a

File tree

2 files changed

+4
-3
lines changed

2 files changed

+4
-3
lines changed

go/ql/src/experimental/CWE-525/WebCacheDeception.ql

Lines changed: 3 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -22,5 +22,6 @@ where
2222
rn.reads(f) and
2323
f.getParameter(0) = hw.getResponseWriter() and
2424
hw.getHeaderName() = "cache-control"
25-
select "Wildcard Endpoint used with : " + httpHandleFuncCall.getArgument(0),
26-
hw.getHeaderName() + " Header is used"
25+
select httpHandleFuncCall.getArgument(0),
26+
"Wildcard Endpoint used with " + httpHandleFuncCall.getArgument(0) + " and '" + hw.getHeaderName()
27+
+ "' Header is used"

go/ql/test/experimental/CWE-525/WebCacheDeception.expected

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1 +1 @@
1-
| Wildcard Endpoint used with : "/adminusers/" | cache-control Header is used |
1+
| WebCacheDeceptionBad.go:82:18:82:31 | "/adminusers/" | Wildcard Endpoint used with "/adminusers/" and 'cache-control' Header is used |

0 commit comments

Comments
 (0)