Skip to content

Commit c2b6383

Browse files
yoffRasmusWL
yoff
and
RasmusWL
authored
Apply suggestions from code review
 Claim conversions do not execute inputs in order to remove interaction with `py/unsafe-deserialization`. Co-authored-by: Rasmus Wriedt Larsen <[email protected]>
1 parent d90630a commit c2b6383

File tree

1 file changed

+2
-2
lines changed
  • python/ql/lib/semmle/python/frameworks

1 file changed

+2
-2
lines changed

python/ql/lib/semmle/python/frameworks/NoSQL.qll

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -170,7 +170,7 @@ private module NoSql {
170170

171171
override string getFormat() { result = "NoSQL" }
172172

173-
override predicate mayExecuteInput() { any() }
173+
override predicate mayExecuteInput() { none() }
174174
}
175175

176176
/**
@@ -200,7 +200,7 @@ private module NoSql {
200200

201201
override string getFormat() { result = "NoSQL" }
202202

203-
override predicate mayExecuteInput() { any() }
203+
override predicate mayExecuteInput() { none() }
204204
}
205205

206206
/**

0 commit comments

Comments
 (0)