The Wayback Machine - https://web.archive.org/web/20260109083144/https://github.com/github/codeql/issues/7483
Skip to content

Query improvement: Include IO.popen as a command execution sink in Ruby's standard library #7483

New issue
New issue
Closed
Closed
Query improvement: Include IO.popen as a command execution sink in Ruby's standard library#7483
Assignees
alexrford
Labels
RubyacknowledgedGitHub staff acknowledges this issueenhancementNew feature or request
@bananabr

Description

@bananabr
bananabr
opened on Dec 27, 2021

The current Ruby standard queries do not consider IO.popen (https://www.rubydoc.info/stdlib/core/IO.popen) as a command execution sink.
I don't have the time to work on a PR right now, but I would really like to see this implemented.

Thank you,

Metadata

Metadata

Assignees

Labels

RubyacknowledgedGitHub staff acknowledges this issueenhancementNew feature or request

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions