better code injection handling for python

2026-05-16 00:21:19 +00:00 · 2016-06-28 17:07:50 +08:00
parent 8dc22d2bda
commit 3a41da42f0
74 changed files with 3617 additions and 54 deletions
--- a/modules/swagger-codegen/src/main/java/io/swagger/codegen/languages/PythonClientCodegen.java
+++ b/modules/swagger-codegen/src/main/java/io/swagger/codegen/languages/PythonClientCodegen.java
@@ -590,5 +590,16 @@ public class PythonClientCodegen extends DefaultCodegen implements CodegenConfig
        p.example = example;
    }

+    @Override
+    public String escapeQuotationMark(String input) {
+        // remove ' to avoid code injection
+        return input.replace("'", "");
+    }
+
+    @Override
+    public String escapeUnsafeCharacters(String input) {
+        // remove multiline comment
+        return input.replace("'''", "");
+    }

 }