diff options
Diffstat (limited to 'pkg/tool/path.go')
| -rw-r--r-- | pkg/tool/path.go | 23 |
1 files changed, 0 insertions, 23 deletions
diff --git a/pkg/tool/path.go b/pkg/tool/path.go deleted file mode 100644 index e95bba8b..00000000 --- a/pkg/tool/path.go +++ /dev/null @@ -1,23 +0,0 @@ -// Copyright 2018 The Gogs Authors. All rights reserved. -// Use of this source code is governed by a MIT-style -// license that can be found in the LICENSE file. - -package tool - -import ( - "path/filepath" - "strings" -) - -// IsSameSiteURLPath returns true if the URL path belongs to the same site, false otherwise. -// False: //url, http://url, /\url -// True: /url -func IsSameSiteURLPath(url string) bool { - return len(url) >= 2 && url[0] == '/' && url[1] != '/' && url[1] != '\\' -} - -// IsMaliciousPath returns true if given path is an absolute path or contains malicious content -// which has potential to traverse upper level directories. -func IsMaliciousPath(path string) bool { - return filepath.IsAbs(path) || strings.Contains(path, "..") -} |