Add $_REQUEST as a taint source

Ref #3636
2024-11-30 04:39:00 +01:00 · 2020-06-22 17:16:06 -04:00 · 2020-06-22 17:16:06 -04:00 · 7f05b3c530
commit 7f05b3c530
parent f2f5606ca8
1 changed files with 5 additions and 1 deletions
--- a/src/Psalm/Internal/Analyzer/Statements/Expression/Fetch/VariableFetchAnalyzer.php
+++ b/src/Psalm/Internal/Analyzer/Statements/Expression/Fetch/VariableFetchAnalyzer.php
@ -361,7 +361,11 @@ class VariableFetchAnalyzer
        $codebase = $statements_analyzer->getCodebase();

        if ($codebase->taint && $codebase->config->trackTaintsInPath($statements_analyzer->getFilePath())) {
-            if ($var_name === '$_GET' || $var_name === '$_POST' || $var_name === '$_COOKIE') {
+            if ($var_name === '$_GET'
+                || $var_name === '$_POST'
+                || $var_name === '$_COOKIE'
+                || $var_name === '$_REQUEST'
+            ) {
                $taint_location = new CodeLocation($statements_analyzer->getSource(), $stmt);

                $server_taint_source = new Source(