mirror of https://github.com/zulip/zulip.git
5 lines
285 B
Plaintext
5 lines
285 B
Plaintext
# One of the ways user-controlled data enters the application is through the
|
|
# request variables framework. This model teaches Pysa that every instance of
|
|
# 'REQ()' in a view function is a source of UserControlled taint.
|
|
class zerver.lib.request._REQ(TaintSource[UserControlled]): ...
|