lib/contrast/extension/assess/exec_trigger.rb in contrast-agent-4.6.0 vs lib/contrast/extension/assess/exec_trigger.rb in contrast-agent-4.7.0
- old
+ new
@@ -16,23 +16,17 @@
return unless Contrast::Utils::Assess::TrackingUtil.tracked?(source)
# source might not be all the args passed in, but it is the one we care
# about. we could pass in all the args in the last param here if it
# becomes an issue in rendering on TS
- Contrast::Agent::Assess::Policy::TriggerMethod.build_finding(
- trigger_node,
- source,
- Kernel,
- nil,
- source)
+ Contrast::Agent::Assess::Policy::TriggerMethod.build_finding(trigger_node, source, Kernel, nil, source)
end
private
def trigger_node
- @_trigger_node ||= begin
- Contrast::Agent::Assess::Policy::Policy.instance.find_node('cmd-injection', 'Kernel', :exec, false)
- end
+ @_trigger_node ||= Contrast::Agent::Assess::Policy::Policy.instance.find_node('cmd-injection', 'Kernel',
+ :exec, false)
end
end
end
end
end