cgocast
56926ee488
Fix return of BadSqlTainter::afterExpressionAnalysis()
2023-10-09 14:27:36 +02:00
Mark McEver
dcafc2e53d
Documented suggestions for HTML user input
2023-05-12 13:02:13 -05:00
Craig Francis
3d65a8aca9
Add section on limitations
2021-09-04 12:46:15 +01:00
Tyson Andre
0ae573a158
[skip ci] Fix typos in docs/
2021-08-05 16:39:14 -04:00
Bruce Weirdan
c62adf9652
Merge pull request #6198 from mmcev106/master
2021-07-31 00:23:45 +03:00
Mark McEver
92f6639e68
Minor wording change in taint analysis docs
2021-07-30 13:11:22 -05:00
Mark McEver
b574878f19
Clarified when it is safe to run taint analysis
2021-07-28 08:56:52 -05:00
Matthew Brown
74ec3affc2
Add reference to the has_quotes taint
2021-06-26 16:04:04 -04:00
Ian Dunn
2a5afe3d03
Docs: Correct beeing
typo ( #5840 )
2021-05-28 09:43:36 -04:00
Mark McEver
d773007f29
Added a missing word to the docs ( #5644 )
2021-04-19 11:46:22 -04:00
Mark McEver
37496cde05
Added a missing word to the docs
2021-04-19 10:18:25 -05:00
Oliver Hader
56b7cb2423
[TASK] Update documentation ( #5163 )
...
* [TASK] Fix code highlighting in documentation
* [TASK] Document stubs.file.preloadClasses configuration
2021-02-06 22:04:44 -05:00
Oliver Hader
546283b71a
Update documentation for taints and global configuration ( #5098 )
...
* [DOCS] Extend documentation on global variables configuration
* [DOCS] Synchronize meaning of @psalm-taint-source input with source code
* [DOCS] Add documentation for conditional @psalm-taint-escape
* [DOCS] Add documentation for @psalm-taint-unescape
2021-01-25 11:04:00 -05:00
Adrien LUCAS
6f1f680b2d
Add option to dump taint graph ( #5080 )
...
* Add option to dump taint graph
* Fix types
* Simplify types
Co-authored-by: Matthew Brown <github@muglug.com>
2021-01-22 16:04:15 -05:00
orklah
f9fccb2b2d
implement DTO for plugins ( #4881 )
...
* implement DTO for plugins
* introduce EventHandler + reintroduce legacy API for plugins
2021-01-06 09:05:53 -05:00
orklah
1d9987e0ed
fix phpdoc ( #4905 )
2020-12-29 11:42:41 +00:00
Markus Staab
a174b4c415
Document more taint types ( #4704 )
...
* Document more taint types
Taken from the TaintKind enum
* Add more of a description
Co-authored-by: Matthew Brown <github@muglug.com>
2020-11-25 19:28:02 -05:00
Matthew Brown
bf873b2e2a
Fix taint description
2020-11-20 19:51:59 -05:00
Lukas Reschke
24fe7e577d
Advertise SARIF export in the documentation ( #4633 )
2020-11-19 17:48:57 -05:00
Lukas Reschke
fd06167843
$expr->name is not prefixed with $ ( #4554 )
...
The example as-is would currently not flag the following code:
```
public function foo() {
$foo = $bad_data;
\shell_exec($foo);
}
```
Switching it to `bad_data` made it work.
2020-11-15 20:28:24 -05:00
Tom Klingenberg
ea52b9d23a
Fix minor typos in docs ( #3956 )
...
While I was searching for some code, ran across these.
2020-08-08 08:09:41 -04:00
Artem Goutsoul
dbc14209b2
Clarifying taint analysis usage documentation ( #3834 )
...
* Clarifying taint analysis usage documentation
* Fix typo
Co-authored-by: Matthew Brown <github@muglug.com>
2020-07-17 10:10:35 -04:00
Brown
29eb83001f
Remove taint annotation as it could confuse
2020-06-22 12:45:41 -04:00
Brown
e2545790dc
Add reference to new command
2020-06-22 11:37:30 -04:00
Brown
07a38706f6
Fix #3610 - add security analysis documeentation
2020-06-22 00:18:15 -04:00
Brown
fbe3433edd
Use escape terminology
2020-06-21 11:43:08 -04:00
Brown
5e9dc9520e
Improve docs
2020-06-21 01:02:00 -04:00
Brown
dc83c2e2fc
Add annotation for taint sources
2020-06-21 00:58:56 -04:00
Brown
5bc657504d
Add more docs
2020-06-19 12:12:28 -04:00
Brown
67f7079c1a
More better docs
2020-06-19 11:57:34 -04:00
Brown
51202c75ea
Add taint docs
2020-06-19 11:56:12 -04:00