hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-24 08:15:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

JS: Add tests showing missing taint flow

Browse Source 
When the spread argument itself is tained and not
inside any content, the read steps currently fail
to propagate the data.
This commit is contained in:
Asger F
2024-08-14 12:02:58 +02:00
parent 6a083136d7
commit 079a622cf9
1 changed files with 26 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

26
javascript/ql/test/library-tests/TripleDot/tst.js
View File

@@ -112,3 +112,29 @@ function t10() {
}
target(source('t10.1'), source('t10.2'), source('t10.3'));
}
function t11() {
function target(x, y) {
sink(x); // $ MISSING: hasTaintFlow=t11.1
sink(y); // $ MISSING: hasTaintFlow=t11.1
}
target(...source('t11.1'));
}
function t12() {
function target(x, y) {
sink(x);
sink(y); // $ MISSING: hasTaintFlow=t12.1
}
target("safe", ...source('t12.1'));
}
function t13() {
function target(x, y, ...rest) {
sink(x);
sink(y); // $ MISSING: hasTaintFlow=t13.1
sink(rest); // $ MISSING: hasTaintFlow=t13.1
sink(rest[0]); // $ MISSING: hasTaintFlow=t13.1
}
target("safe", ...source('t13.1'));
}