qtil
advanced-security/qtil-ruby 0.0.2
Index
Search

Module Rails

Provides classes for working with Rails.

Import path

import codeql.ruby.frameworks.Rails

Classes

CookiesCall

A call to fetch the request cookies in a Rails app.

HtmlEscapeCall

A call to a Rails method to escape HTML.

HtmlSafeCall

DEPRECATED: Any call to html_safe is considered an XSS sink. A method call on a string to mark it as HTML safe for Rails. Strings marked as such will not be automatically escaped when inserted into HTML.

ParamsCall

A call to fetch the request parameters in a Rails app.

RenderCall

A call to a render method that will populate the response body with the rendered content.

RenderToCall

A render call that does not automatically set the HTTP response body.