From cefc2cc6f2c84b6bf82aaf191473d4550d7b4b1f Mon Sep 17 00:00:00 2001 From: Karl Hepworth Date: Mon, 8 Apr 2019 10:35:43 +1000 Subject: [PATCH 1/2] Remove safe patterns from the theme security patterns --- Profiles/d7-gitlab.profile.yml | 7 ------- Profiles/d8-gitlab.profile.yml | 7 ------- 2 files changed, 14 deletions(-) diff --git a/Profiles/d7-gitlab.profile.yml b/Profiles/d7-gitlab.profile.yml index fe6ee5d..3abf99a 100644 --- a/Profiles/d7-gitlab.profile.yml +++ b/Profiles/d7-gitlab.profile.yml @@ -18,7 +18,6 @@ policies: - "_POST" - "exec\\(" - "db_query" - - "db_select" - "db_merge" - "db_update" - "db_write_record" @@ -33,16 +32,10 @@ policies: - "mysqli" - "sqlite" - "db_query" - - "db_fetch" - "db_result" - "pager_query" - "db_set_active" - - "db_select" - "db_insert" - "db_update" - "db_delete" - - "fetchAll" - - "fetchField" - - "fetchObject" - - "fetchAssoc" - "countQuery" diff --git a/Profiles/d8-gitlab.profile.yml b/Profiles/d8-gitlab.profile.yml index 8e1e300..8ef4b1f 100644 --- a/Profiles/d8-gitlab.profile.yml +++ b/Profiles/d8-gitlab.profile.yml @@ -20,7 +20,6 @@ policies: - "_POST" - "exec\\(" - "db_query" - - "db_select" - "db_merge" - "db_update" - "db_write_record" @@ -35,16 +34,10 @@ policies: - "mysqli" - "sqlite" - "db_query" - - "db_fetch" - "db_result" - "pager_query" - "db_set_active" - - "db_select" - "db_insert" - "db_update" - "db_delete" - - "fetchAll" - - "fetchField" - - "fetchObject" - - "fetchAssoc" - "countQuery" From 286c851b4cf2de7a1420c3f2ec3ea1bd491a8b9c Mon Sep 17 00:00:00 2001 From: Karl Hepworth Date: Mon, 8 Apr 2019 11:47:28 +1000 Subject: [PATCH 2/2] Removes fetch and select queries from blacklist in full profiles. --- Profiles/d7-full.profile.yml | 7 ------- Profiles/d8-full.profile.yml | 7 ------- 2 files changed, 14 deletions(-) diff --git a/Profiles/d7-full.profile.yml b/Profiles/d7-full.profile.yml index 9b845b4..e205b4f 100644 --- a/Profiles/d7-full.profile.yml +++ b/Profiles/d7-full.profile.yml @@ -176,7 +176,6 @@ policies: - "_POST" - "exec\\(" - "db_query" - - "db_select" - "db_merge" - "db_update" - "db_write_record" @@ -191,16 +190,10 @@ policies: - "mysqli" - "sqlite" - "db_query" - - "db_fetch" - "db_result" - "pager_query" - "db_set_active" - - "db_select" - "db_insert" - "db_update" - "db_delete" - - "fetchAll" - - "fetchField" - - "fetchObject" - - "fetchAssoc" - "countQuery" diff --git a/Profiles/d8-full.profile.yml b/Profiles/d8-full.profile.yml index a778630..907bbe3 100644 --- a/Profiles/d8-full.profile.yml +++ b/Profiles/d8-full.profile.yml @@ -181,7 +181,6 @@ policies: - "_POST" - "exec\\(" - "db_query" - - "db_select" - "db_merge" - "db_update" - "db_write_record" @@ -196,16 +195,10 @@ policies: - "mysqli" - "sqlite" - "db_query" - - "db_fetch" - "db_result" - "pager_query" - "db_set_active" - - "db_select" - "db_insert" - "db_update" - "db_delete" - - "fetchAll" - - "fetchField" - - "fetchObject" - - "fetchAssoc" - "countQuery"