Add comment

egregius313 · egregius313 · commit 2eff6b351cc3 · 2024-01-08T09:39:09.000-05:00
diff --git a/java/ql/src/Security/CWE/CWE-078/ExecTaintedEnvironmentChecked.java b/java/ql/src/Security/CWE/CWE-078/ExecTaintedEnvironmentChecked.java
@@ -1,6 +1,7 @@
 Map<String, String> env = builder.environment();
 String debug = request.getParameter("debug");
 
+// GOOD: Checking the value and not tainting the variable added to the environment
 if (debug != null) {
     env.put("PYTHONDEBUG", "1");
 }

Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,7 @@`
`1`	`1`	`Map<String, String> env = builder.environment();`
`2`	`2`	`String debug = request.getParameter("debug");`
`3`	`3`
	`4`	`+// GOOD: Checking the value and not tainting the variable added to the environment`
`4`	`5`	`if (debug != null) {`
`5`	`6`	`env.put("PYTHONDEBUG", "1");`
`6`	`7`	`}`