file_put_contents warning about dynamic parameter

FloeDesignTechnologies / phpcs-security-audit

phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code

GNU General Public License v3.0

712 stars 85 forks source link

file_put_contents warning about dynamic parameter #90

Open tebeso opened 3 years ago

tebeso commented 3 years ago

I get phpcs: PHPCS_SecurityAudit.BadFunctions.FilesystemFunctions.WarnFilesystem: Filesystem function file_put_contents() detected with dynamic parameter with this: file_put_contents('test.txt', 1, FILE_APPEND); So FILE_APPEND is a dynamic parameter? If its the content or filename, i would say okay, but the flag?