lib/brakeman/checks/check_mass_assignment.rb in brakeman-3.2.1 vs lib/brakeman/checks/check_mass_assignment.rb in brakeman-3.3.0
- old
+ new
@@ -158,10 +158,10 @@
end
# Look for and warn about uses of Parameters#permit! for mass assignment
def check_permit!
tracker.find_call(:method => :permit!).each do |result|
- if params? result[:call].target
+ if params? result[:call].target and not result[:chain].include? :slice
warn_on_permit! result
end
end
end