We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
There was an error while loading. Please reload this page.
1 parent 7265e94 commit 9affa15Copy full SHA for 9affa15
1 file changed
java/ql/src/experimental/CWE-532/SensitiveInfoLog.ql
@@ -17,7 +17,7 @@ import PathGraph
17
*/
18
private string getACredentialRegex() {
19
result = "(?i).*challenge|pass(wd|word|code|phrase)(?!.*question).*" or
20
- result = "(?i)(.*username|url).*"
+ result = "(?i)(.*username|.*secret|url).*"
21
}
22
23
/** Variable keeps sensitive information judging by its name * */
@@ -31,6 +31,7 @@ class CredentialExpr extends Expr {
31
class LoggerType extends RefType {
32
LoggerType() {
33
this.hasQualifiedName("org.apache.log4j", "Category") or //Log4J
34
+ this.hasQualifiedName("org.apache.logging.log4j", "Logger") or //Log4J 2
35
this.hasQualifiedName("org.slf4j", "Logger") or //SLF4j and Gradle Logging
36
this.hasQualifiedName("org.jboss.logging", "BasicLogger") //JBoss Logging
37
0 commit comments