feature: custom tag config.

‘niuerzhuang’ · ‘niuerzhuang’ · commit 1b9634b78474 · 2023-09-04T10:23:35.000+08:00
diff --git a/dongtai-core/src/main/java/io/dongtai/iast/core/handler/hookpoint/models/taint/tag/TaintTag.java b/dongtai-core/src/main/java/io/dongtai/iast/core/handler/hookpoint/models/taint/tag/TaintTag.java
@@ -63,7 +63,7 @@ public enum TaintTag {
 
     private final String key;
 
-    private static final Map<String, TaintTag> LOOKUP = new HashMap<String, TaintTag>();
+    private static final Map<String, TaintTag> LOOKUP = new HashMap<>();
 
     static {
         for (TaintTag t : TaintTag.values()) {
diff --git a/dongtai-core/src/main/java/io/dongtai/iast/core/handler/hookpoint/vulscan/VulnType.java b/dongtai-core/src/main/java/io/dongtai/iast/core/handler/hookpoint/vulscan/VulnType.java
@@ -7,7 +7,7 @@
 public enum VulnType {
 
     /**
-     * 漏洞
+     * 漏洞类型
      */
     SQL_OVER_POWER("sql-over-power", "info", false),
     CRYPTO_WEAK_RANDOMNESS("crypto-weak-randomness", "low", false),
@@ -40,9 +40,9 @@ public String getName() {
     /**
      * 漏洞类型 值
      */
-    String name;
-    String weight;
-    boolean tracked;
+    final String name;
+    final String weight;
+    final boolean tracked;
 
     VulnType(String name, String weight, boolean tracked) {
         this.name = name;
@@ -54,13 +54,4 @@ public String getName() {
     public boolean equals(String name) {
         return this.name.equals(name);
     }
-
-    public static VulnType getTypeByName(String name) {
-        for (VulnType vType : VulnType.values()) {
-            if (vType.equals(name)) {
-                return vType;
-            }
-        }
-        return null;
-    }
 }
diff --git a/dongtai-core/src/main/java/io/dongtai/iast/core/handler/hookpoint/vulscan/dynamic/DynamicPropagatorScanner.java b/dongtai-core/src/main/java/io/dongtai/iast/core/handler/hookpoint/vulscan/dynamic/DynamicPropagatorScanner.java
@@ -23,18 +23,18 @@
  * @author dongzhiyong@huoxian.cn
  */
 public class DynamicPropagatorScanner implements IVulScan {
-    private final static Set<SinkSafeChecker> SAFE_CHECKERS = new HashSet<SinkSafeChecker>(Arrays.asList(
+    private final static Set<SinkSafeChecker> SAFE_CHECKERS = new HashSet<>(Arrays.asList(
             new FastjsonCheck(),
             new XXECheck()
     ));
 
-    private final static Set<SinkSourceChecker> SOURCE_CHECKERS = new HashSet<SinkSourceChecker>(Arrays.asList(
+    private final static Set<SinkSourceChecker> SOURCE_CHECKERS = new HashSet<>(Arrays.asList(
             new PathTraversalCheck(),
             new SSRFSourceCheck(),
             new UnvalidatedRedirectCheck()
     ));
 
-    private static final Set<ServiceTrace> SERVICE_TRACES = new HashSet<ServiceTrace>(Collections.singletonList(
+    private static final Set<ServiceTrace> SERVICE_TRACES = new HashSet<>(Collections.singletonList(
             new HttpService()
     ));
 
@@ -170,7 +170,7 @@ private boolean sinkSourceHitTaintPool(MethodEvent event, SinkNode sinkNode) {
             }
         }
 
-        List<Object> sourceInstances = new ArrayList<Object>();
+        List<Object> sourceInstances = new ArrayList<>();
         boolean hasTaint = false;
         boolean objHasTaint = false;
         Set<TaintPosition> sources = sinkNode.getSources();
