@@ -58,10 +58,10 @@ func test2(obj : MyManagedObject, password : String, password_file : String) {
58
58
obj. setValue ( password, forKey: " myKey " ) // BAD
59
59
obj. setValue ( password_file, forKey: " myKey " ) // GOOD (not sensitive)
60
60
61
- obj. setIndirect ( value: password) // BAD
61
+ obj. setIndirect ( value: password) // BAD [reported on line 19]
62
62
obj. setIndirect ( value: password_file) // GOOD (not sensitive)
63
63
64
- obj. myValue = password // BAD
64
+ obj. myValue = password // BAD [reported on line 32]
65
65
obj. myValue = password_file // GOOD (not sensitive)
66
66
}
67
67
@@ -73,7 +73,7 @@ class MyClass {
73
73
func test3( obj : NSManagedObject , x : String ) {
74
74
// alternative evidence of sensitivity...
75
75
76
- obj. setValue ( x, forKey: " myKey " ) // BAD
76
+ obj. setValue ( x, forKey: " myKey " ) // BAD [NOT REPORTED]
77
77
doSomething ( password: x) ;
78
78
obj. setValue ( x, forKey: " myKey " ) // BAD
79
79
@@ -100,7 +100,7 @@ func test4(obj : NSManagedObject, passwd : String) {
100
100
hash ( data: & y) ;
101
101
z = " " ;
102
102
103
- obj. setValue ( x, forKey: " myKey " ) // GOOD (not sensitive)
104
- obj. setValue ( y, forKey: " myKey " ) // GOOD (not sensitive)
103
+ obj. setValue ( x, forKey: " myKey " ) // GOOD (not sensitive) [FALSE POSITIVE]
104
+ obj. setValue ( y, forKey: " myKey " ) // GOOD (not sensitive) [FALSE POSITIVE]
105
105
obj. setValue ( z, forKey: " myKey " ) // GOOD (not sensitive)
106
106
}
0 commit comments