-
PoC: https://psalm.dev/r/49e01bb19a
```php
// tainted HTML is correct here
$a = new Other($_GET['inject']);
echo $a->value;
// ... but it's a false-positive here
$b = new Other('static');
e…
-
The taint analysis module prints an error message if it finds unknown operations.
JUMPDEST and ASSERT_FAIL will need to be implemented.
-
Hi,
I have been trying to understand how to get a new target working with LAVA. I tried to get a more complex project working with LAVA but it does not work so i decided to understand how to LAVA b…
-
- [x] I have searched open and closed issues for duplicates
- [x] I made sure that I am not using an old project version (DO: pull PhASAR, update git submodules, rebuild the project and check…
-
https://psalm.dev/r/e3d3058ede
Why doesn't this work? Is there a workaround?
-
Hi, we are trying to perform taint analysis with SVF. A common case is as below:
```C
void foo(char *p) {
char cmd[32];
sprintf(cmd, "ls %s", p);
system(cmd);
}
```
As shown in a…
-
## Environment
| Component | Version |
| ------------------ | ------- |
| Java | 8 |
| SpotBugs | 4.7.3 |
| FindSecBugs | 1.12.0 |
## Problem
F…
-
given:
https://psalm.dev/r/1a0c4d8202
I tried:
```
/**
* @psalm-taint-source input
*/
function getLogs(): Task
```
```
/**
* @psalm-taint-source input
*/
class Task {
```
```
…
-
Hello from @RustSec! :wave:
We have a long standing issue (https://github.com/rustsec/rustsec/issues/21) to use call graph analysis for false positive elimination.
Right now our advisories somet…
-
Consider adding in the server based option to #189 .
This would allow someone to provide an ArcGIS Print Server url to the application, and can utilize it to generate export images.
Some benefit…