Viewing file:  MassAssignmentBuilderInstanceRule.php (1.78 KB) -rw-r--r--
Select action/file-type:
 (+) |  (+) |  (+) | Code (+) | Session (+) |  (+) | SDB (+) |  (+) |  (+) |  (+) |  (+) |  (+) |
<?php
namespace Enlightn\Enlightn\PHPStan;
use PhpParser\Node;
use PhpParser\Node\Expr\MethodCall;
use PHPStan\Analyser\Scope;
use PHPStan\Rules\Rule;
class MassAssignmentBuilderInstanceRule implements Rule
{
use AnalyzesNodes;
/**
* @return string
*/
public function getNodeType(): string
{
return MethodCall::class;
}
/**
* @param Node $node
* @param Scope $scope
* @return string[]
*/
public function processNode(Node $node, Scope $scope): array
{
if (! $node->name instanceof Node\Identifier
|| ! in_array($methodName = $node->name->toString(), [
'update', 'insert', 'upsert', 'insertOrIgnore', 'insertUsing', 'insertGetId', 'updateOrInsert',
])) {
// Method name must match blacklisted names.
return [];
}
if (! $this->isCalledOnBuilder($node->var, $scope)) {
// Method was not called on a Builder, so no errors.
return [];
}
if (isset($node->args[0]) && $this->retrievesRequestInput($node->args[0], $scope)) {
return [
sprintf(
"Call to %s method on an Eloquent/query builder instance with request data may result in a "
."mass assignment vulnerability.",
$methodName
),
];
}
return [];
}
/**
* Determine whether the Arg was a request->all() method call.
*
* @param \PhpParser\Node\Arg $arg
* @param \PHPStan\Analyser\Scope $scope
* @return bool
*/
protected function retrievesRequestInput(Node\Arg $arg, Scope $scope)
{
return $arg->value instanceof Node\Expr && $this->isRequestArrayData($arg->value, $scope);
}
}
|