Sobelow v0.13.0

View Source Sobelow.CI.System (Sobelow v0.13.0)

Command Injection in System.cmd

This submodule of the CI module checks for Command Injection vulnerabilities through usage of the System.cmd function.

Ensure the the command passed to System.cmd is not user-controlled.

System.cmd Injection checks can be ignored with the following command:

$ mix sobelow -i CI.System

Link to this section Summary

Functions

details()
id()
parse_def(fun)
rule()
run(fun, meta_file)

Link to this section Functions

Link to this function

details()

View Source
Link to this function

id()

View Source
Link to this function

parse_def(fun)

View Source
Link to this function

rule()

View Source
Link to this function

run(fun, meta_file)

View Source