Skip to content

Commit 52bbb32

Browse files
MathiasVPMathiasVP
committed
QLDoc: Wrap lines and disambiguate explanation.
1 parent d93d3c8 commit 52bbb32

File tree

2 files changed

+6
-2
lines changed

2 files changed

+6
-2
lines changed

cpp/ql/src/Security/CWE/CWE-020/IRUntrustedDataToExternalAPI.qhelp

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -4,7 +4,9 @@
44
<qhelp>
55
<overview>
66
<p>Using unsanitized untrusted data in an external API can cause a variety of security issues. This query reports
7-
external APIs that use untrusted data. The results are not filtered so that you can audit all examples. The query provides data for security reviews of the application and you can also use it to identify external APIs that should be modeled as either taint steps, or sinks for specific problems.</p>
7+
external APIs that use untrusted data. The results are not filtered. This makes it possible to audit all examples.
8+
The query provides data for security reviews of the application and you can also use it to identify external APIs
9+
that should be modeled as either taint steps, or sinks for specific problems.</p>
810

911
<p>An external API is defined as a call to a function that is not defined in the source code, and is not modeled
1012
as a taint step in the default taint library. External APIs may be from the

cpp/ql/src/Security/CWE/CWE-020/UntrustedDataToExternalAPI.qhelp

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -4,7 +4,9 @@
44
<qhelp>
55
<overview>
66
<p>Using unsanitized untrusted data in an external API can cause a variety of security issues. This query reports
7-
external APIs that use untrusted data. The results are not filtered so that you can audit all examples. The query provides data for security reviews of the application and you can also use it to identify external APIs that should be modeled as either taint steps, or sinks for specific problems.</p>
7+
external APIs that use untrusted data. The results are not filtered. This makes it possible to audit all examples.
8+
The query provides data for security reviews of the application and you can also use it to identify external APIs
9+
that should be modeled as either taint steps, or sinks for specific problems.</p>
810

911
<p>An external API is defined as a call to a function that is not defined in the source code, and is not modeled
1012
as a taint step in the default taint library. External APIs may be from the

0 commit comments

Comments
 (0)