update py/unsafe-deserialization to match ruby/javascript/java

erik-krogh · erik-krogh · commit 31e15e27fc3c · 2022-08-22T21:41:47.000+02:00
diff --git a/python/ql/src/Security/CWE-502/UnsafeDeserialization.ql b/python/ql/src/Security/CWE-502/UnsafeDeserialization.ql
@@ -18,4 +18,4 @@ import DataFlow::PathGraph
 
 from Configuration config, DataFlow::PathNode source, DataFlow::PathNode sink
 where config.hasFlowPath(source, sink)
-select sink.getNode(), source, sink, "Deserializing of $@.", source.getNode(), "untrusted input"
+select sink.getNode(), source, sink, "Unsafe deserialization of $@.", source.getNode(), "user input"
