mirror of
https://github.com/elicpeter/nyx.git
synced 2026-06-06 19:35:13 +02:00
1bbe4b1cfb
* chore: Exclude CLAUDE.md from Cargo.toml * feat: add callgraph module and integrate into main analysis flow * feat: enhance CLI with new severity filtering and analysis modes * feat: update CHANGELOG with recent enhancements and fixes to severity filtering and output handling * feat: implement state-model dataflow analysis for resource lifecycle and auth state * feat: enhance diagnostic output formatting and add evidence structure * feat: implement attack surface ranking for diagnostics with scoring and sorting * feat: add comprehensive documentation for installation, usage, and rules reference * feat: add multiple language support for command execution and evaluation endpoints * feat: implement inline suppression for findings using `nyx:ignore` comments * feat: add confidence levels to AST patterns and update output structure * feat: implement low-noise prioritization system with category filtering, rollup grouping, and configurable budgets * feat: bump version to 0.4.0 and update changelog with new features and improvements * feat: add dead code allowances to various functions in mod.rs and real_world_tests.rs
25 lines
482 B
PHP
25 lines
482 B
PHP
<?php
|
|
// Negative fixture: none of these should trigger security patterns.
|
|
|
|
function safe_query($pdo, $user) {
|
|
$stmt = $pdo->prepare("SELECT * FROM users WHERE name = ?");
|
|
$stmt->execute([$user]);
|
|
}
|
|
|
|
function safe_hash($data) {
|
|
return hash("sha256", $data);
|
|
}
|
|
|
|
function safe_random() {
|
|
return random_int(1, 100);
|
|
}
|
|
|
|
function safe_include() {
|
|
include "config.php";
|
|
}
|
|
|
|
function safe_string_ops() {
|
|
$x = "hello";
|
|
$y = strtoupper($x);
|
|
$z = strlen($y);
|
|
}
|