File tree Expand file tree Collapse file tree 3 files changed +4
-8
lines changed
java/ql/src/Security/CWE/CWE-489 Expand file tree Collapse file tree 3 files changed +4
-8
lines changed Original file line number Diff line number Diff line change @@ -17,9 +17,5 @@ from AndroidXmlAttribute androidXmlAttr
1717where
1818 androidXmlAttr .getName ( ) = "debuggable" and
1919 androidXmlAttr .getValue ( ) = "true" and
20- not androidXmlAttr .getLocation ( ) .getFile ( ) .getAbsolutePath ( ) .matches ( "%/build%" ) // USE THIS (from speaking with Tony) - 11 MRVA results
21- //not androidXmlAttr.getLocation().toString().matches("%build%") // my original query - 2 MRVA results
22- //not androidXmlAttr.getLocation().toString().matches("%/build%") // 11 MRVA results
23- //not androidXmlAttr.getLocation().getFile().getAbsolutePath().matches("%build%") // 2 MRVA results...
24- // comment for test commit to new branch
25- select androidXmlAttr , "The 'debuggable' attribute is enabled."
20+ not androidXmlAttr .getLocation ( ) .getFile ( ) .getRelativePath ( ) .matches ( "%/build%" )
21+ select androidXmlAttr , "The 'android:debuggable' attribute is enabled."
Original file line number Diff line number Diff line change 11<manifest ... >
2- <!-- GOOD: 'android:debuggable' set to false -->
2+ <!-- GOOD: 'android:debuggable' set to ' false' -->
33 <application
44 android : debuggable =" false"
55 <activity ... >
Original file line number Diff line number Diff line change 11<manifest ... >
2- <!-- BAD: 'android:debuggable' set to true -->
2+ <!-- BAD: 'android:debuggable' set to ' true' -->
33 <application
44 android : debuggable =" true"
55 <activity ... >
You can’t perform that action at this time.
0 commit comments