def file_upload_compliant()

in src/python/detectors/unrestricted_file_upload/unrestricted_file_upload.py [0:0]

• 9 lines of code
• 3 McCabe index (conditional complexity)

def file_upload_compliant():
    import os
    from flask import request
    extensions = {'txt', 'pdf', 'png', 'jpg', 'jpeg', 'gif'}
    upload_file = request.files['file']
    # Compliant: the uploaded file must have one of the allowed extensions.
    if '.' in upload_file.filename and \
            upload_file.filename.split('.')[-1] in extensions:
        upload_file.save(os.path.join('/path/to/the/uploads',
                                      upload_file.filename))