File tree Expand file tree Collapse file tree
java/ql/src/semmle/code/java/security Expand file tree Collapse file tree Original file line number Diff line number Diff line change @@ -11,15 +11,14 @@ import semmle.code.java.dataflow.TaintTracking
1111private import semmle.code.java.StringFormat
1212
1313/**
14- * A unit class for adding additional taint steps that are specific to Server-side
15- * Request Forgery (SSRF) attacks.
14+ * A unit class for adding additional taint steps that are specific to server-side request forgery (SSRF) attacks.
1615 *
1716 * Extend this class to add additional taint steps to the SSRF query.
1817 */
1918class RequestForgeryAdditionalTaintStep extends Unit {
2019 /**
2120 * Holds if the step from `pred` to `succ` should be considered a taint
22- * step for Server -side Request Forgery .
21+ * step for server -side request forgery .
2322 */
2423 abstract predicate propagatesTaint ( DataFlow:: Node pred , DataFlow:: Node succ ) ;
2524}
@@ -119,7 +118,7 @@ private class ApacheHttpRequestBuilderArgument extends RequestForgerySink {
119118}
120119
121120/**
122- * An argument to any `java.net.http.HttpRequest` Instantiation taken as a
121+ * An argument to any `java.net.http.HttpRequest` instantiation taken as a
123122 * sink for request forgery vulnerabilities.
124123 */
125124private class HttpRequestNewBuilder extends RequestForgerySink {
You can’t perform that action at this time.
0 commit comments