Sobelow v0.13.0

View Source Sobelow.XSS.Raw (Sobelow v0.13.0)

XSS in raw

This submodule checks for the use of raw in templates as this can lead to XSS vulnerabilities if taking user input.

Raw checks can be ignored with the following command:

$ mix sobelow -i XSS.Raw

Link to this section Summary

Functions

details()
id()
parse_raw_def(fun)
parse_render_def(fun)
rule()
run(fun, meta_file, arg3, controller)

Link to this section Functions

Link to this function

details()

View Source
Link to this function

id()

View Source
Link to this function

parse_raw_def(fun)

View Source
Link to this function

parse_render_def(fun)

View Source
Link to this function

rule()

View Source
Link to this function

run(fun, meta_file, arg3, controller)

View Source