More possible tainted strings
diff --git a/lib/whimsy/asf/svn.rb b/lib/whimsy/asf/svn.rb
index a56b55f..d3dfa3e 100644
--- a/lib/whimsy/asf/svn.rb
+++ b/lib/whimsy/asf/svn.rb
@@ -21,7 +21,7 @@
else
svn_base = 'https://svn.apache.org/repos/'
end
- @base = URI.parse(svn_base)
+ @base = URI.parse(svn_base).untaint
@mock = 'file:///var/tools/svnrep/'
@semaphore = Mutex.new
@testdata = {}
@@ -132,7 +132,7 @@
# Includes aliases
def self.svnurl(name)
entry = self._all_repo_entries[name] or return nil
- url = entry['url']
+ url = entry['url'].untaint
unless url # bad entry
raise Exception.new("Unable to find url attribute for SVN entry #{name}")
end