hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-28 10:15:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

JS: Add reproduction test case

Browse Source
This commit is contained in:
Asger F
2022-12-05 15:11:03 +01:00
parent 6cb69c907d
commit 025cfe4064
2 changed files with 35 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
javascript/ql/test/library-tests/TaintTracking/BasicTaintTracking.expected
View File

@@ -171,6 +171,7 @@ typeInferenceMismatch
| promise.js:5:25:5:32 | source() | promise.js:5:8:5:33 | bluebir ... urce()) |
| promise.js:10:24:10:31 | source() | promise.js:10:8:10:32 | Promise ... urce()) |
| promise.js:12:20:12:27 | source() | promise.js:13:8:13:23 | resolver.promise |
| refinement-sanitizer.js:19:17:19:24 | source() | refinement-sanitizer.js:33:10:33:21 | array.join() |
| rxjs.js:3:1:3:8 | source() | rxjs.js:10:14:10:17 | data |
| rxjs.js:13:1:13:8 | source() | rxjs.js:17:23:17:23 | x |
| rxjs.js:13:1:13:8 | source() | rxjs.js:18:23:18:23 | x |

34
javascript/ql/test/library-tests/TaintTracking/refinement-sanitizer.js Normal file
View File

@@ -0,0 +1,34 @@
import * as dummy from 'dummy';
function oneUse() {
let taint = source();
if (!isSafe(taint)) {
return;
}
let array = [];
if (taint) {
array.push(taint);
}
sink(array.join()); // OK
}
function secondUse() {
let taint = source();
if (!isSafe(taint)) {
return;
}
let array = [];
if (taint) {
array.push(taint);
}
if (taint) {
array.push(taint);
}
sink(array.join()); // OK
}