Merge pull request #6 from aws-samples/minor-fix

grl-wang · web-flow · commit de0005563d7b · 2023-12-15T14:33:27.000-08:00
Fix the rule ids of some code examples.
diff --git a/src/ruby/detectors/tainted-format/tainted-format-compliant.rb b/src/ruby/detectors/tainted-format/tainted-format-compliant.rb
@@ -3,7 +3,7 @@
  SPDX-License-Identifier: Apache-2.0
 =end
 
-# {fact rule=untrusted-format-strings@v1.0 defects=0}
+# {fact rule=tainted-format@v1.0 defects=0}
 class TaintedFormat < ActionController::Base
   def sanitized_input
     # Compliant: User-input is not used to format output.
diff --git a/src/ruby/detectors/tainted-format/tainted-format-noncompliant.rb b/src/ruby/detectors/tainted-format/tainted-format-noncompliant.rb
@@ -3,7 +3,7 @@
  SPDX-License-Identifier: Apache-2.0
 =end
 
-# {fact rule=untrusted-format-strings@v1.0 defects=1}
+# {fact rule=tainted-format@v1.0 defects=1}
 class TaintedFormat < ActionController::Base
   def unsanitized_input
     # Noncompliant: untrusted user input is being used directly in format sting.
diff --git a/src/ruby/detectors/untrusted-file-open/untrusted-file-open.rb b/src/ruby/detectors/untrusted-file-open/untrusted-file-open.rb
@@ -3,15 +3,15 @@
 SPDX-License-Identifier: Apache-2.0
 =end
 
-# {fact rule=autoescape-disabled@v1.0 defects=0}
+# {fact rule=untrusted-file-open@v1.0 defects=0}
 filename = "testfile"
 # Compliant: File being opened is static.
 open(filename) do |f|
   print f.gets
 end
 # {/fact}
 
-# {fact rule=autoescape-disabled@v1.0 defects=1}
+# {fact rule=untrusted-file-open@v1.0 defects=1}
 
 # Noncompliant: User-input directly controls which file is opened.
 cmd = open("|%s" % params[:file)
