You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I have identified an inconsistency in the detection behavior of the HTTP_RESPONSE_SPLITTING rule in find-sec-bugs. In the first code case, the rule correctly reports a Buginstance. However, when introducing a nested class, as shown in the second code case, the rule fails to report the Buginstance. This behavior is inconsistent.
Environment
Problem
I have identified an inconsistency in the detection behavior of the HTTP_RESPONSE_SPLITTING rule in find-sec-bugs. In the first code case, the rule correctly reports a Buginstance. However, when introducing a nested class, as shown in the second code case, the rule fails to report the Buginstance. This behavior is inconsistent.
Code
code1
code2
The text was updated successfully, but these errors were encountered: