Wrap stat call in try/catch to prevent crash when we encounter a bad symlink

mozilla / scanjs

[DEPRECATED] Static analysis tool for javascript code.

Other

428 stars 39 forks source link

Wrap stat call in try/catch to prevent crash when we encounter a bad symlink #105

Closed defreez closed 10 years ago

defreez commented 10 years ago

There are apps in the market tarballs with bad symlinks. The call to fs.statSync throws an exception which needs to be caught, or ScanJS crashes.

pwnetrationguru commented 10 years ago

lgtm

mozfreddyb commented 10 years ago

Thank you for contributing to scanjs, @defreez. Feel free to take additional issues or reach out to us in #security or #websectools on irc.mozilla.org :-)