From fef894289c5b85e3a637bbf5659c4c9f77e4eb30 Mon Sep 17 00:00:00 2001
From: m-1-k-3 <m1k3@s3cur1ty.de>
Date: Tue, 3 Jan 2023 15:59:05 +0100
Subject: [PATCH] checker for spaces after comment sign

---
 modules/S99_grepit.sh | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/modules/S99_grepit.sh b/modules/S99_grepit.sh
index 686f9e9a7..ba71f6ea5 100755
--- a/modules/S99_grepit.sh
+++ b/modules/S99_grepit.sh
@@ -632,21 +632,21 @@ grepit_module_java() {
   "javax.validation" \
   "5_java_javax-validation.txt"
 
-  #Take care with the following regex, @ has a special meaning in double quoted strings, but not in single quoted strings
+  # Take care with the following regex, @ has a special meaning in double quoted strings, but not in single quoted strings
   grepit_search 'Setting values in Java objects from HTTP/JSON requests directly can be very dangerous. This is usually a fasterxml.jackson binding. These properties might be secret inputs the server accepts, but are unlinked in the client side JavaScript code. For example imagine such an annotation on the username attribute of a User Java class. This would allow to fake the username by sending a username attribute in the JSON payload.' \
   '@JsonProperty("version")' \
   'FALSE_POSITIVES_EXAMPLE_PLACEHOLDER' \
   '@JsonProperty\(' \
   "4_java_jsonproperty_annotation.txt"
 
-  #Take care with the following regex, @ has a special meaning in double quoted strings, but not in single quoted strings
+  # Take care with the following regex, @ has a special meaning in double quoted strings, but not in single quoted strings
   grepit_search 'Validation in Java can be done via certain @constraint' \
   '@constraint' \
   'FALSE_POSITIVES_EXAMPLE_PLACEHOLDER' \
   '@constraint' \
   "5_java_constraint_annotation.txt"
 
-  #Take care with the following regex, @ has a special meaning in double quoted strings, but not in single quoted strings
+  # Take care with the following regex, @ has a special meaning in double quoted strings, but not in single quoted strings
   grepit_search 'Lint will sometimes complain about security related stuff, this annotation deactivates the warning' \
   '@SuppressLint' \
   'FALSE_POSITIVES_EXAMPLE_PLACEHOLDER' \
@@ -954,7 +954,7 @@ grepit_module_java_spring() {
   "\.getHeader\(" \
   "5_java_spring_http_getHeader.txt"
 
-  #Take care with the following regex, @ has a special meaning in double quoted strings, but not in single quoted strings
+  # Take care with the following regex, @ has a special meaning in double quoted strings, but not in single quoted strings
   grepit_search "Check for Spring View Manipulation https://github.com/veracode-research/spring-view-manipulation/" \
   '@GetMapping("/safe/redirect")' \
   'FALSE_POSITIVES_EXAMPLE_PLACEHOLDER' \