apunkt/nyx
1
0
Fork 0
mirror of https://github.com/elicpeter/nyx.git synced 2026-06-21 20:18:06 +02:00
Code Issues Projects Releases Packages Wiki Activity

Python fp and docs updtes (#58)

Browse source 
* refactor: Update comments for clarity and add expectations.json files for performance metrics

* feat: Implement FP guard for JS/TS local-collection receivers to suppress missing ownership checks

* feat: Enhance Rust parameter handling to classify local collections and prevent false ownership checks

* refactor: Simplify code formatting for better readability in multiple files

* refactor: Improve UTF-8 sequence length handling and enhance clarity in loop iteration

* feat: Update Java and Python patterns to include new security rules

* refactor: Improve comment clarity and consistency across multiple Rust files

* refactor: Simplify code formatting for improved readability in integration tests and module files

* refactor: Improve comment formatting and enhance clarity in assertions across multiple files
This commit is contained in:
Eli Peter 2026-04-29 19:53:34 -04:00 committed by GitHub
parent 4db0805de6
commit a438886217
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
291 changed files with 9485 additions and 3851 deletions
Download patch file Download diff file Expand all files Collapse all files

2
tests/fixtures/rust_module_path_resolution/src/auth/session.rs vendored
View file

@ -1,5 +1,5 @@
// Session-module validate: accidentally shells out with its param.
// Same name + arity as auth::token::validate ambiguous without a use map.
// Same name + arity as auth::token::validate, ambiguous without a use map.
// If cross-file resolution incorrectly targets this function from main.rs,
// the param taint from env::var will flow into Command::arg → taint finding.
pub fn validate(input: &str) -> String {

2
tests/fixtures/rust_module_path_resolution/src/auth/token.rs vendored
View file

@ -1,5 +1,5 @@
// Token-module validate: strips shell metacharacters and returns a safe value.
// No sink in the body purely a pass-through sanitizer.
// No sink in the body, purely a pass-through sanitizer.
pub fn validate(input: &str) -> String {
input.replace(['&', ';', '|', '$', '`', '\\', '"', '\''], "")
}

2
tests/fixtures/rust_module_path_resolution/src/main.rs vendored
View file

@ -1,7 +1,7 @@
use crate::auth::token::validate;
// `validate(&cmd)` must resolve unambiguously to `auth::token::validate`
// (a pass-through sanitizer) NOT `auth::session::validate` (which sinks
// (a pass-through sanitizer), NOT `auth::session::validate` (which sinks
// its arg into std::process::Command). A correct use-map driven resolver
// produces zero cross-file taint findings on this file.
fn main() {