fix(bash): fix printf injection queries (#6405)

This commit is contained in:
David Guevara 2024-04-05 02:01:19 -06:00 committed by GitHub
parent 00debd1fb1
commit e6cd337e30
No known key found for this signature in database
GPG key ID: B5690EEEBB952194

View file

@ -14,9 +14,15 @@
name: (command_name) @_command
.
argument: [
(string)
(raw_string)
] @injection.content)
(string
(string_content) @injection.content)
(concatenation
(string
(string_content) @injection.content))
(raw_string) @injection.content
(concatenation
(raw_string) @injection.content)
])
(#eq? @_command "printf")
(#set! injection.language "printf"))
@ -28,9 +34,15 @@
(_)
.
argument: [
(string)
(raw_string)
] @injection.content)
(string
(string_content) @injection.content)
(concatenation
(string
(string_content) @injection.content))
(raw_string) @injection.content
(concatenation
(raw_string) @injection.content)
])
(#eq? @_command "printf")
(#eq? @_arg "-v")
(#set! injection.language "printf"))
@ -41,9 +53,15 @@
argument: (word) @_arg
.
argument: [
(string)
(raw_string)
] @injection.content)
(string
(string_content) @injection.content)
(concatenation
(string
(string_content) @injection.content))
(raw_string) @injection.content
(concatenation
(raw_string) @injection.content)
])
(#eq? @_command "printf")
(#eq? @_arg "--")
(#set! injection.language "printf"))