Skip to content

Commit 528c451

Browse files
aegilopsaegilops
committed
Added change note, adjusted spacing in comment
1 parent 0c0fbc1 commit 528c451

File tree

2 files changed

+5
-1
lines changed

2 files changed

+5
-1
lines changed

java/ql/lib/semmle/code/java/security/SensitiveLoggingQuery.qll

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -47,7 +47,7 @@ private class TypeType extends RefType {
4747
/**
4848
* A sanitizer that may remove sensitive information from a string before logging.
4949
*
50-
* It allows for substring operations taking the first N (or last N, for Kotlin) characters, limited to 7 or fewer.
50+
* It allows for substring operations taking the first N (or last N, for Kotlin) characters, limited to 7 or fewer.
5151
*/
5252
private class SensitiveLoggerSanitizerCalled extends SensitiveLoggerBarrier {
5353
SensitiveLoggerSanitizerCalled() {

java/ql/src/change-notes/2025-11-17-sensitive-logging-new-sanitizers.md

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,4 @@
1+
---
2+
category: minorAnalysis
3+
---
4+
* Calls to `substring` (for Java), `take` (for Kotlin) and similar functions, when called with a fixed length less than or equal to 7, are now treated as sanitizers for the `java/sensitive-log` query.

0 commit comments

Comments
 (0)