Validating file paths to satisfy GitHub CodeQL’s “Uncontrolled data used in path expression” alert
This question was migrated from Information Security Stack Exchange because it can be answered on Stack Overflow. Migrated 38 mins ago. I’m writing functions for a Python package to register files from a file system to an SQL database, and GitHub’s CodeQL has flagged that the file paths are a potential security risk. I have […]
Validating file paths to satisfy GitHub CodeQL’s “Uncontrolled data used in path expression” alert
This question was migrated from Information Security Stack Exchange because it can be answered on Stack Overflow. Migrated 38 mins ago. I’m writing functions for a Python package to register files from a file system to an SQL database, and GitHub’s CodeQL has flagged that the file paths are a potential security risk. I have […]