mirror of
https://github.com/danog/psalm.git
synced 2024-11-30 04:39:00 +01:00
parent
d03a53a5ad
commit
a6c7a48387
@ -343,6 +343,21 @@ class ArgumentAnalyzer
|
||||
// fall through
|
||||
}
|
||||
|
||||
if ($cased_method_id) {
|
||||
$arg_location = new CodeLocation($statements_analyzer->getSource(), $arg->value);
|
||||
|
||||
self::processTaintedness(
|
||||
$statements_analyzer,
|
||||
$cased_method_id,
|
||||
$argument_offset,
|
||||
$arg_location,
|
||||
$function_call_location,
|
||||
$function_param,
|
||||
$arg_type,
|
||||
$specialize_taint
|
||||
);
|
||||
}
|
||||
|
||||
return;
|
||||
}
|
||||
|
||||
|
@ -1222,6 +1222,14 @@ class TaintTest extends TestCase
|
||||
print($_GET["name"]);',
|
||||
'error_message' => 'TaintedInput - src/somefile.php:2:27 - Detected tainted html in path: $_GET -> $_GET[\'name\'] (src/somefile.php:2:27) -> call to print (src/somefile.php:2:27) -> print#1',
|
||||
],
|
||||
'unpackArgs' => [
|
||||
'<?php
|
||||
function test(...$args) {
|
||||
echo $args[0];
|
||||
}
|
||||
test(...$_GET["other"]);',
|
||||
'error_message' => 'TaintedInput',
|
||||
],
|
||||
];
|
||||
}
|
||||
}
|
||||
|
Loading…
Reference in New Issue
Block a user