Mercurial > hg > isophonics-drupal-site
comparison vendor/psy/psysh/src/CodeCleaner/AssignThisVariablePass.php @ 13:5fb285c0d0e3
Update Drupal core to 8.4.7 via Composer. Security update; I *think* we've
been lucky to get away with this so far, as we don't support self-registration
which seems to be used by the so-called "drupalgeddon 2" attack that 8.4.5
was vulnerable to.
| author | Chris Cannam |
|---|---|
| date | Mon, 23 Apr 2018 09:33:26 +0100 |
| parents | |
| children |
comparison
equal
deleted
inserted
replaced
| 12:7a779792577d | 13:5fb285c0d0e3 |
|---|---|
| 1 <?php | |
| 2 | |
| 3 /* | |
| 4 * This file is part of Psy Shell. | |
| 5 * | |
| 6 * (c) 2012-2018 Justin Hileman | |
| 7 * | |
| 8 * For the full copyright and license information, please view the LICENSE | |
| 9 * file that was distributed with this source code. | |
| 10 */ | |
| 11 | |
| 12 namespace Psy\CodeCleaner; | |
| 13 | |
| 14 use PhpParser\Node; | |
| 15 use PhpParser\Node\Expr\Assign; | |
| 16 use PhpParser\Node\Expr\Variable; | |
| 17 use Psy\Exception\FatalErrorException; | |
| 18 | |
| 19 /** | |
| 20 * Validate that the user input does not assign the `$this` variable. | |
| 21 * | |
| 22 * @author Martin HasoĊ <martin.hason@gmail.com> | |
| 23 */ | |
| 24 class AssignThisVariablePass extends CodeCleanerPass | |
| 25 { | |
| 26 /** | |
| 27 * Validate that the user input does not assign the `$this` variable. | |
| 28 * | |
| 29 * @throws RuntimeException if the user assign the `$this` variable | |
| 30 * | |
| 31 * @param Node $node | |
| 32 */ | |
| 33 public function enterNode(Node $node) | |
| 34 { | |
| 35 if ($node instanceof Assign && $node->var instanceof Variable && $node->var->name === 'this') { | |
| 36 throw new FatalErrorException('Cannot re-assign $this', 0, E_ERROR, null, $node->getLine()); | |
| 37 } | |
| 38 } | |
| 39 } |