Skip to content

Commit 9f97441

Browse files
egregius313egregius313
committed
Add references to CWE-454 (External Initialization of Trusted Variables)
1 parent 97b29bb commit 9f97441

File tree

2 files changed

+4
-0
lines changed

2 files changed

+4
-0
lines changed

java/ql/src/Security/CWE/CWE-078/ExecTaintedEnvironment.qhelp

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -34,6 +34,9 @@ safe before using it.</p>
3434
<sample src="ExecTaintedEnvironmentChecked.java" />
3535
</example>
3636
<references>
37+
<li>
38+
MITRE: <a href="https://cwe.mitre.org/data/definitions/454.html">CWE-454: External Initialization of Trusted Variables or Data Stores</a>.
39+
</li>
3740
<li>
3841
The Java Tutorials: <a href="https://docs.oracle.com/javase/tutorial/essential/environment/env.html">, Environment Variables</a>.
3942
</li>

java/ql/src/Security/CWE/CWE-078/ExecTaintedEnvironment.ql

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -11,6 +11,7 @@
1111
* @tags security
1212
* external/cwe/cwe-078
1313
* external/cwe/cwe-088
14+
* external/cwe/cwe-454
1415
*/
1516

1617
import java

0 commit comments

Comments
 (0)