You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Even though the SARIF spec v2.1.0 doesn't prohibit it, the use of ".." segments in file scheme URIs is dangerous for reasons explained in oasis-tcs/sarif-spec#461. Add a warning-level analysis rule that reports the presence of ".." segments that are either (a) absolute, using the file: scheme, or (b) relative (because the user might resolve them to an absolute URI with the file: scheme).
The text was updated successfully, but these errors were encountered:
Even though the SARIF spec v2.1.0 doesn't prohibit it, the use of ".." segments in file scheme URIs is dangerous for reasons explained in oasis-tcs/sarif-spec#461. Add a warning-level analysis rule that reports the presence of ".." segments that are either (a) absolute, using the
file:
scheme, or (b) relative (because the user might resolve them to an absolute URI with thefile:
scheme).The text was updated successfully, but these errors were encountered: