follow up issue from #1017 to check that the CWE, pyscg text and code examples match together. Expectation is that our pyscg0036 matches the CWE in this case
CWE-252 says:
If an attacker can force the function to fail or otherwise return a value that is not expected, then the subsequent program logic could lead to a vulnerability, because the product is not in a state that the programmer assumes.
follow up issue from #1017 to check that the CWE, pyscg text and code examples match together. Expectation is that our pyscg0036 matches the CWE in this case
CWE-252 says:
If an attacker can force the function to fail or otherwise return a value that is not expected, then the subsequent program logic could lead to a vulnerability, because the product is not in a state that the programmer assumes.