* AST-only check: Detects splatting (@variable) which can obscure arguments.
( parsed: ParsedPowerShellCommand, )
| 744 | * AST-only check: Detects splatting (@variable) which can obscure arguments. |
| 745 | */ |
| 746 | function checkSplatting( |
| 747 | parsed: ParsedPowerShellCommand, |
| 748 | ): PowerShellSecurityResult { |
| 749 | if (deriveSecurityFlags(parsed).hasSplatting) { |
| 750 | return { |
| 751 | behavior: 'ask', |
| 752 | message: 'Command uses splatting (@variable)', |
| 753 | } |
| 754 | } |
| 755 | return { behavior: 'passthrough' } |
| 756 | } |
| 757 | |
| 758 | /** |
| 759 | * AST-only check: Detects stop-parsing token (--%) which prevents further parsing. |
nothing calls this directly
no test coverage detected