Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Sign up
Appearance settings

Commit c2e4daf

Browse files
Merge pull request #116 from python-security/change_default_trigger_words
Combine flask and django trigger words, make it the default
2 parents 66f7d3f + b98bf50 commit c2e4daf

File tree

2 files changed

+35
-1
lines changed

2 files changed

+35
-1
lines changed

‎pyt/argument_helpers.py‎

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,7 @@
1515
default_trigger_word_file = os.path.join(
1616
os.path.dirname(__file__),
1717
'vulnerability_definitions',
18-
'flask_trigger_words.pyt'
18+
'all_trigger_words.pyt'
1919
)
2020

2121

Lines changed: 34 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,34 @@
1+
sources:
2+
request.args.get(
3+
Markup(
4+
POST.get(
5+
GET.get(
6+
META.get(
7+
POST[
8+
GET[
9+
META[
10+
FILES[
11+
.data
12+
form[
13+
form(
14+
mark_safe(
15+
cookies[
16+
files[
17+
SQLAlchemy
18+
19+
sinks:
20+
replace( -> escape
21+
send_file( -> '..', '..' in
22+
execute(
23+
system(
24+
filter(
25+
subprocess.call(
26+
render_template(
27+
set_cookie(
28+
redirect(
29+
url_for(
30+
flash(
31+
jsonify(
32+
render(
33+
render_to_response(
34+
Popen(

0 commit comments

Comments
(0)

AltStyle によって変換されたページ (->オリジナル) /