Skip to content

Commit 4602c5c

Browse files
joefarebrotherjoefarebrother
committed
Remove experimental version + qhelp fixes
1 parent e4e02ec commit 4602c5c

21 files changed

+2
-660
lines changed

python/ql/src/Security/CWE-074/TemplateInjection.qhelp

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -16,10 +16,10 @@
1616
<sample src="examples/JinjaBad.py" />
1717

1818
<p>The following is an example of a string that could be used to cause remote code execution when interpreted as a template:</p>
19-
<sample src="examples/template_exploit" />
19+
<sample src="examples/template_exploit.txt" />
2020

2121
<p>In the following case, user input is not used to construct the template; rather is only used for as the parameters to render the template, which is safe.</p>
22-
<sample scr="examples/JinjaGoodParam" />
22+
<sample src="examples/JinjaGoodParam.py" />
2323

2424
<p>In the following case, a <code>SandboxedEnvironment</code> is used, preventing remote code execution.</p>
2525
<sample src="examples/JinjaGoodSandbox.py" />

python/ql/src/experimental/Security/CWE-074/JinjaBad.py

Lines changed: 0 additions & 19 deletions
This file was deleted.

python/ql/src/experimental/Security/CWE-074/JinjaGood.py

Lines changed: 0 additions & 20 deletions
This file was deleted.

python/ql/src/experimental/Security/CWE-074/TemplateConstructionConcept.qll

Lines changed: 0 additions & 165 deletions
This file was deleted.

python/ql/src/experimental/Security/CWE-074/TemplateInjection.qhelp

Lines changed: 0 additions & 24 deletions
This file was deleted.

python/ql/src/experimental/Security/CWE-074/TemplateInjection.ql

Lines changed: 0 additions & 20 deletions
This file was deleted.

python/ql/src/experimental/Security/CWE-074/TemplateInjectionCustomizations.qll

Lines changed: 0 additions & 59 deletions
This file was deleted.

python/ql/src/experimental/Security/CWE-074/TemplateInjectionQuery.qll

Lines changed: 0 additions & 18 deletions
This file was deleted.

python/ql/test/experimental/query-tests/Security/CWE-074-TemplateInjection/AirspeedSsti.py

Lines changed: 0 additions & 11 deletions
This file was deleted.

python/ql/test/experimental/query-tests/Security/CWE-074-TemplateInjection/BottleSsti.py

Lines changed: 0 additions & 20 deletions
This file was deleted.

0 commit comments

Comments
 (0)