Class: Scanny::Checks::XssMarkCheck

Inherits:

Check

• Object
• Check
• Scanny::Checks::XssMarkCheck

Defined in:

lib/scanny/checks/xss/xss_mark_check.rb

Overview

Check for methods mark_as_xss_protected and mark_methods_as_xss_safe that are called and can mark dangerous string as safe for html.

Instance Method Summary

• #check(node) ⇒ Object
• #pattern ⇒ Object

Methods inherited from Check

#compiled_pattern, #issue, #strict?, #visit

Instance Method Details

#check(node) ⇒ Object

# File 'lib/scanny/checks/xss/xss_mark_check.rb', line 14

def check(node)
  issue :info, warning_message
end

#pattern ⇒ Object

# File 'lib/scanny/checks/xss/xss_mark_check.rb', line 6

def pattern
  [
    pattern_mark_as_safe,
    pattern_xss_safe,
    pattern_mark_methods_as_xss_safe
  ].join("|")
end