Class: Police::Labels::UnsafeString

Inherits:

DataFlow::Label

• Object
• DataFlow::Label
• Police::Labels::UnsafeString

Defined in:

lib/police/labels/unsafe_string.rb

Overview

Marks strings that are read from the outside environment with no sanitization.

Class Method Summary

• .autoflow? ⇒ Boolean
• .return_hook(method_name) ⇒ Object
• .yield_args_hook(method_name) ⇒ Object

Instance Method Summary

• #accept?(data) ⇒ Boolean

Class Method Details

.autoflow? ⇒ Boolean

Returns:

• (Boolean)

See Also:

• DataFlow::Label#autoflow?

# File 'lib/police/labels/unsafe_string.rb', line 8

def self.autoflow?
  true
end

.return_hook(method_name) ⇒ Object

See Also:

• DataFlow::Label#return_hook

# File 'lib/police/labels/unsafe_string.rb', line 18

def self.return_hook(method_name)
  nil
end

.yield_args_hook(method_name) ⇒ Object

See Also:

• DataFlow::Label#yield_args_hook

# File 'lib/police/labels/unsafe_string.rb', line 23

def self.yield_args_hook(method_name)
  nil
end

Instance Method Details

#accept?(data) ⇒ Boolean

Returns:

• (Boolean)

See Also:

• DataFlow::Label#accept?

# File 'lib/police/labels/unsafe_string.rb', line 13

def accept?(data)
  data.kind_of? String
end