Skip to content

Commit 5b7e49e

Browse files
data-douserdata-douser
committed
Fixes for PR check failures
1 parent 3b5ebb6 commit 5b7e49e

File tree

2 files changed

+3
-1
lines changed

2 files changed

+3
-1
lines changed

actions/ql/integration-tests/query-suite/not_included_in_qls.expected

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -10,6 +10,8 @@ ql/actions/ql/src/experimental/Security/CWE-078/CommandInjectionCritical.ql
1010
ql/actions/ql/src/experimental/Security/CWE-078/CommandInjectionMedium.ql
1111
ql/actions/ql/src/experimental/Security/CWE-088/ArgumentInjectionCritical.ql
1212
ql/actions/ql/src/experimental/Security/CWE-088/ArgumentInjectionMedium.ql
13+
ql/actions/ql/src/experimental/Security/CWE-1427/PromptInjectionCritical.ql
14+
ql/actions/ql/src/experimental/Security/CWE-1427/PromptInjectionMedium.ql
1315
ql/actions/ql/src/experimental/Security/CWE-200/SecretExfiltration.ql
1416
ql/actions/ql/src/experimental/Security/CWE-284/CodeExecutionOnSelfHostedRunner.ql
1517
ql/actions/ql/src/experimental/Security/CWE-829/ArtifactPoisoningPathTraversal.ql

actions/ql/lib/codeql/actions/security/PromptInjectionQuery.qll

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -85,7 +85,7 @@ predicate criticalSeverityPromptInjection(
8585
* and any other externally triggerable context that Critical excludes.
8686
*
8787
* Only actor/association control checks suppress Medium findings because
88-
* repository checks do not prevent prompt injection any user who can
88+
* repository checks do not prevent prompt injection -- any user who can
8989
* open an issue/PR on the target repo can inject into the prompt content.
9090
*/
9191
Event getRelevantEventForMediumSeverity(DataFlow::Node sink) {

0 commit comments

Comments
 (0)