Currently MWVisitor::detectHTMLForm tries to do some checking of html form specifiers. It currently does not check the 'help' key. However, that key is raw html so we should add it.
Description
Description
Details
Details
Subject | Repo | Branch | Lines +/- | |
---|---|---|---|---|
MW: Detect tainted `help` HTMLForm property | mediawiki/tools/phan/SecurityCheckPlugin | master | +20 -3 |
Related Objects
Related Objects
Event Timeline
Comment Actions
Change 963145 had a related patch set uploaded (by Daimona Eaytoy; author: Daimona Eaytoy):
[mediawiki/tools/phan/SecurityCheckPlugin@master] MW: Detect tainted `help` HTMLForm property
Comment Actions
Change 963145 merged by jenkins-bot:
[mediawiki/tools/phan/SecurityCheckPlugin@master] MW: Detect tainted `help` HTMLForm property