nextcloud/lib/private/Files
Lukas Reschke 3d2600b039
Add Phan plugin to check for SQL injections
This adds a phan plugin which checks for SQL injections on code using our QueryBuilder, while it isn't perfect it should already catch most potential issues.

As always, static analysis will sometimes have false positives and this is also here the case. So in some cases the analyzer just doesn't know if something is potential user input or not, thus I had to add some `@suppress SqlInjectionChecker` in front of those potential injections.

The Phan plugin hasn't the most awesome code but it works and I also added a file with test cases.

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
2017-07-20 22:48:13 +02:00
..
AppData Add Tests 2016-10-05 11:00:16 +02:00
Cache Add Phan plugin to check for SQL injections 2017-07-20 22:48:13 +02:00
Config Add Phan plugin to check for SQL injections 2017-07-20 22:48:13 +02:00
Mount allow apps to set custom mount types 2017-04-28 09:38:21 +02:00
Node Remove unused use statements 2017-04-22 19:23:31 -05:00
Notify Add a more powerful notify mechanism 2017-01-27 10:44:33 +01:00
ObjectStore improved logging of objectore errors 2017-06-21 17:33:26 -05:00
Search Allow searching for favorites 2017-03-08 16:30:55 +01:00
SimpleFS avatar to appdata 2016-10-05 11:00:16 +02:00
Storage Fix scan permissions with nested permissions masks 2017-07-13 14:29:04 +02:00
Stream only collect detailed access list if it is really needed 2017-07-06 11:33:08 +02:00
Type Fix variable names 2017-05-15 12:38:30 +02:00
Utils Fix scanner after review 2017-04-26 13:26:47 +02:00
FileInfo.php changed direct cast to integer to numerical value 2017-07-17 15:19:04 +02:00
Filesystem.php Remove unused functions 2017-07-19 10:28:12 +02:00
View.php Remove unused functions 2017-07-19 10:28:12 +02:00