search

FloeDesignTechnologies / phpcs-security-audit

phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code
GNU General Public License v3.0
712 stars 85 forks source link

Exclude patterns doesnot work inside rules #45

Closed webinvader closed 4 years ago

webinvader commented 5 years ago

I would like to be able to use the exclude-pattern for specific rules in a ruleset.xml 

<rule ref="Security.BadFunctions.FilesystemFunctions">
        <exclude-pattern>*/config/*</exclude-pattern>
</rule>

This phpcs functionality does not appear to be working with phpcs-security-audit rules.

jrfnl commented 4 years ago

This is caused by this project using a non-standard implementation. See #47 for more information.