dd-trace-java icon indicating copy to clipboard operation
dd-trace-java copied to clipboard

Published 20 hours ago verified publisher icon DataDog

String taint tracking - join methods

Open jandro996 opened this issue 3 years ago • 0 comments

What Does This Do

Adds all the instrumentation needed to perform taint tacking in join operations for String objects

Motivation

IAST requires to track all modifications that happen to strings in the code, this PR implements the join operations for String class

Additional Notes

The instrumentation for the join method with the iterable param is based on the premise of iterating only once since these iterators may not be immutable.

jandro996 avatar Oct 07 '22 11:10 jandro996