Files

@typescript-eslint
Bandit
Brakeman
- CheckBasicAuth.md
- CheckBasicAuthTimingAttack.md
- CheckCSRFTokenForgeryCVE.md
- CheckContentTag.md
- CheckCookieSerialization.md
- CheckCreateWith.md
- CheckCrossSiteScripting.md
- CheckDefaultRoutes.md
- CheckDeserialize.md
- CheckDetailedExceptions.md
- CheckDigestDoS.md
- CheckDivideByZero.md
- CheckDynamicFinders.md
- CheckEOLRails.md
- CheckEOLRuby.md
- CheckEscapeFunction.md
- CheckEvaluation.md
- CheckExecute.md
- CheckFileAccess.md
- CheckFileDisclosure.md
- CheckFilterSkipping.md
- CheckForceSSL.md
- CheckForgerySetting.md
- CheckHeaderDoS.md
- CheckI18nXSS.md
- CheckJRubyXML.md
- CheckJSONEncoding.md
- CheckJSONEntityEscape.md
- CheckJSONParsing.md
- CheckLinkTo.md
- CheckLinkToHref.md
- CheckMailTo.md
- CheckMassAssignment.md
- CheckMimeTypeDoS.md
- CheckModelAttrAccessible.md
- CheckModelAttributes.md
- CheckModelSerialize.md
- CheckNestedAttributes.md
- CheckNestedAttributesBypass.md
- CheckNumberToCurrency.md
- CheckPageCachingCVE.md
- CheckPathname.md
- CheckPermitAttributes.md
- CheckQuoteTableName.md
- CheckRansack.md
- CheckRedirect.md
- CheckRegexDoS.md
- CheckRender.md
- CheckRenderDoS.md
- CheckRenderInline.md
- CheckResponseSplitting.md
- CheckReverseTabnabbing.md
- CheckRouteDoS.md
- CheckSQL.md
- CheckSQLCVEs.md
- CheckSSLVerify.md
- CheckSafeBufferManipulation.md
- CheckSanitizeConfigCve.md
- CheckSanitizeMethods.md
- CheckSecrets.md
- CheckSelectTag.md
- CheckSelectVulnerability.md
- CheckSend.md
- CheckSendFile.md
- CheckSessionManipulation.md
- CheckSessionSettings.md
- CheckSimpleFormat.md
- CheckSingleQuotes.md
- CheckSkipBeforeFilter.md
- CheckSprocketsPathTraversal.md
- CheckStripTags.md
- CheckSymbolDoS.md
- CheckSymbolDoSCVE.md
- CheckTemplateInjection.md
- CheckTranslateBug.md
- CheckUnsafeReflection.md
- CheckUnsafeReflectionMethods.md
- CheckUnscopedFind.md
- CheckValidationRegex.md
- CheckVerbConfusion.md
- CheckWeakHash.md
- CheckWithoutProtection.md
- CheckXMLDoS.md
- CheckYAMLParsing.md
CSSLint
CodeNarc
CoffeeLint
CppLint
Cppcheck
Detekt
ESLint
Govet
Hadolint
Linter for Dart
Oxlint
PHP_CodeSniffer
PSScriptAnalyzer
Pycodestyle
Pylint
Revive
RuboCop
Scalastyle
ShellCheck
StyleCop.Analyzers
SwiftLint
TSLint
Yamllint
checkstyle
dotnet-assembly
lintr
stylelint
tfsec
LICENSE
README.md
template.md

CheckExecute.md

Pattern: Possible command injection

Issue: -

Description

Checks for string interpolation and parameters in calls to Kernel#system, Kernel#exec, Kernel#syscall, and inside backticks.

Examples of command injection vulnerabilities:

system("rf -rf #{params[:file]}")
exec(params[:command])
unlink #{params[:something}

Further Reading

Brakeman - Command Injection