41 lines
1.1 KiB
Plaintext
41 lines
1.1 KiB
Plaintext
|
include::../description.adoc[]
|
||
|
|
|
||
|
|
include::../ask-yourself.adoc[]
|
||
|
|
|
||
|
|
include::../recommended.adoc[]
|
||
|
|
|
||
|
|
== Sensitive Code Example
|
||
|
|
|
||
|
|
----
|
||
|
|
System.Net.Http.HttpClient client;
|
||
|
|
// All the following are Sensitive
|
||
|
|
client.GetAsync(...);
|
||
|
|
client.GetByteArrayAsync(...);
|
||
|
|
client.GetStreamAsync(...);
|
||
|
|
client.GetStringAsync(...);
|
||
|
|
client.SendAsync(...);
|
||
|
|
client.PostAsync(...);
|
||
|
|
client.PutAsync(...);
|
||
|
|
client.DeleteAsync(...);
|
||
|
|
|
||
|
|
|
||
|
|
System.Net.WebClient webclient;
|
||
|
|
// All the following are Sensitive, although they may be false positives if the URI scheme is "ftp" or "file"
|
||
|
|
webclient.Download*(...); // Any method starting with "Download"
|
||
|
|
webclient.Open*(...); // Any method starting with "Open"
|
||
|
|
webclient.Upload*(...); // Any method starting with "Upload"
|
||
|
|
|
||
|
|
// All the following are Sensitive, although they may be false positives if the URI scheme is "ftp" or "file"
|
||
|
|
System.Net.WebRequest.Create(...);
|
||
|
|
System.Net.WebRequest.CreateDefault(...);
|
||
|
|
|
||
|
|
// The following is always Sensitive
|
||
|
|
System.Net.WebRequest.CreateHttp(...);
|
||
|
|
|
||
|
|
// === RestSharp ===
|
||
|
|
// Sensitive, as well as any other instantiation of the RestSharp.IRestRequest interface.
|
||
|
|
new RestSharp.RestRequest(...);
|
||
|
|
----
|
||
|
|
|
||
|
|
include::../see.adoc[]
|