We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
There was an error while loading. Please reload this page.
1 parent 794a86a commit 499adc2Copy full SHA for 499adc2
1 file changed
python/ql/test/experimental/dataflow/sensitive-data/test.py
@@ -19,3 +19,15 @@ def encrypt_password(pwd):
19
fetch_certificate() # $ SensitiveDataSource=certificate
20
account_id() # $ SensitiveDataSource=id
21
safe_to_store = encrypt_password(pwd)
22
+
23
+# attributes
24
+foo = ObjectFromDatabase()
25
+foo.secret # $ SensitiveDataSource=secret
26
+foo.username # $ SensitiveDataSource=id
27
28
+# Special handling of lookups of sensitive properties
29
+request.args["password"], # $ MISSING: SensitiveDataSource=password
30
+request.args.get("password") # $ SensitiveDataSource=password
31
32
+# I don't think handling `getlist` is super important, just included it to show what we don't handle
33
+request.args.getlist("password")[0] # $ MISSING: SensitiveDataSource=password
0 commit comments