lib/brakeman/checks/check_model_serialize.rb in brakeman-min-3.1.1 vs lib/brakeman/checks/check_model_serialize.rb in brakeman-min-3.1.2
- old
+ new
@@ -58,9 +58,10 @@
:warning_type => "Remote Code Execution",
:warning_code => :CVE_2013_0277,
:message => "Serialized attributes are vulnerable in Rails #{rails_version}, upgrade to #{@upgrade_version} or patch.",
:confidence => confidence,
:link => "https://groups.google.com/d/topic/rubyonrails-security/KtmwSbEpzrU/discussion",
- :file => model.file
+ :file => model.file,
+ :line => model.top_line
end
end
end