Title: Java: CWE-552 Add sources and sinks to to detect unsafe getResource calls in Java EE applications by luchua-bc · Pull Request #8706 · github/codeql · GitHub
Open Graph Title: Java: CWE-552 Add sources and sinks to to detect unsafe getResource calls in Java EE applications by luchua-bc · Pull Request #8706 · github/codeql
X Title: Java: CWE-552 Add sources and sinks to to detect unsafe getResource calls in Java EE applications by luchua-bc · Pull Request #8706 · github/codeql
Description: CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security - Java: CWE-552 Add sources and sinks to to detect unsafe getResource calls in Java EE applications by luchua-bc · Pull Request #8706 · github/codeql
Open Graph Description: Directly incorporating user input into the getResource call on the server side without proper validation of the input can allow any web application resource such as configuration files and source c...
X Description: Directly incorporating user input into the getResource call on the server side without proper validation of the input can allow any web application resource such as configuration files and source c...
Opengraph URL: https://github.com/github/codeql/pull/8706
X: @github
Domain: github.com
| route-pattern | /:user_id/:repository/pull/:id/commits(.:format) |
| route-controller | pull_requests |
| route-action | commits |
| fetch-nonce | v2:bb2a1d9a-0d22-e8bc-e76d-69fe26f8e92a |
| current-catalog-service-hash | ae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b |
| request-id | 8BE0:189311:26D96:34401:6A4D7849 |
| html-safe-nonce | 60a80c154aef50db8cbc2838b401b37ca7fbf1410176cfd674fdb3db18237d61 |
| visitor-payload | eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiI4QkUwOjE4OTMxMToyNkQ5NjozNDQwMTo2QTRENzg0OSIsInZpc2l0b3JfaWQiOiI3MDkyODk0OTIzNTMyMTA1ODAxIiwicmVnaW9uX2VkZ2UiOiJpYWQiLCJyZWdpb25fcmVuZGVyIjoiaWFkIn0= |
| visitor-hmac | 899e48534f03beefddbe2cd4be1aefd089769c5b2e7bea388b696e635d25185f |
| hovercard-subject-tag | pull_request:904353616 |
| github-keyboard-shortcuts | repository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot |
| google-site-verification | Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I |
| octolytics-url | https://collector.github.com/github/collect |
| analytics-location | / |
| fb:app_id | 1401488693436528 |
| apple-itunes-app | app-id=1477376905, app-argument=https://github.com/github/codeql/pull/8706/commits |
| twitter:image | https://opengraph.githubassets.com/bd164677011e2fe310b2f2be8505fe532ed5a422ebe72de30647efc885a2e4bd/github/codeql/pull/8706 |
| twitter:card | summary_large_image |
| og:image | https://opengraph.githubassets.com/bd164677011e2fe310b2f2be8505fe532ed5a422ebe72de30647efc885a2e4bd/github/codeql/pull/8706 |
| og:image:alt | Directly incorporating user input into the getResource call on the server side without proper validation of the input can allow any web application resource such as configuration files and source c... |
| og:image:width | 1200 |
| og:image:height | 600 |
| og:site_name | GitHub |
| og:type | object |
| og:author:username | luchua-bc |
| hostname | github.com |
| expected-hostname | github.com |
| None | 7f8e15305e2ab58890ca84b830615e375f5df303cf471cafcba0c08272981be3 |
| turbo-cache-control | no-cache |
| go-import | github.com/github/codeql git https://github.com/github/codeql.git |
| octolytics-dimension-user_id | 9919 |
| octolytics-dimension-user_login | github |
| octolytics-dimension-repository_id | 143040428 |
| octolytics-dimension-repository_nwo | github/codeql |
| octolytics-dimension-repository_public | true |
| octolytics-dimension-repository_is_fork | false |
| octolytics-dimension-repository_network_root_id | 143040428 |
| octolytics-dimension-repository_network_root_nwo | github/codeql |
| turbo-body-classes | logged-out env-production page-responsive |
| disable-turbo | false |
| browser-stats-url | https://api.github.com/_private/browser/stats |
| browser-errors-url | https://api.github.com/_private/browser/errors |
| release | 8608b0750fc35e283e5ec5b094bff942d7a0e197 |
| ui-target | full |
| theme-color | #1e2327 |
| color-scheme | light dark |
Links:
Viewport: width=device-width