Contents

require 'brakeman/checks/check_file_access'
require 'brakeman/processors/lib/processor_helper'

#Checks for user input in send_file()
class Brakeman::CheckSendFile < Brakeman::CheckFileAccess
  Brakeman::Checks.add self

  def run_check
    debug_info "Finding all calls to send_file()"

    methods = tracker.find_call :target => false, :method => :send_file

    methods.each do |call|
      process_result call
    end
  end
end

Version data entries

5 entries across 5 versions & 1 rubygems

Version	Path
brakeman-1.2.0	lib/brakeman/checks/check_send_file.rb
brakeman-1.1.0	lib/brakeman/checks/check_send_file.rb
brakeman-1.1.pre	lib/brakeman/checks/check_send_file.rb
brakeman-1.0.0	lib/brakeman/checks/check_send_file.rb
brakeman-1.0.rc1	lib/brakeman/checks/check_send_file.rb