/** * @fileoverview CWE-78: Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) * @module @nahisaho/musubix-security/rules/cwe/cwe-78-command-injection * @trace TSK-RULE-005 * * Detects: * - exec/execSync with user input * - spawn/spawnSync with shell:true * - Template literals in commands * - Child process with unsanitized arguments * * CWE-78 is #5 in CWE Top 25 2023. */ import type { SecurityRule } from '../types.js'; /** * CWE-78 - OS Command Injection */ export declare const cwe78CommandInjection: SecurityRule; export default cwe78CommandInjection; //# sourceMappingURL=cwe-78-command-injection.d.ts.map