hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-25 00:35:20 +02:00
Code Issues Packages Projects Releases Wiki Activity

JS: A few more deprecation updates

Browse Source
This commit is contained in:
Asger F
2024-12-13 16:21:55 +01:00
parent db00dad033
commit 0b2914ff13
5 changed files with 10 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
javascript/ql/lib/semmle/javascript/security/dataflow/BuildArtifactLeakCustomizations.qll
View File

@@ -14,9 +14,11 @@ module BuildArtifactLeak {
*/
abstract class Sink extends DataFlow::Node {
/**
* DEPRECATED. This query no longer uses flow state.
*
* Gets a data-flow label that leaks information for this sink.
*/
DataFlow::FlowLabel getLabel() { result.isTaint() }
deprecated DataFlow::FlowLabel getLabel() { result.isTaint() }
}
/**

2
javascript/ql/lib/semmle/javascript/security/dataflow/InsecureDownloadCustomizations.qll
View File

@@ -88,7 +88,7 @@ module InsecureDownload {
/**
* Flow-labels for reasoning about download of sensitive file through insecure connection.
*/
module Label {
deprecated module Label {
/**
* A flow-label for file URLs that are both sensitive and downloaded over an insecure connection.
*/

8
javascript/ql/lib/semmle/javascript/security/dataflow/PostMessageStarCustomizations.qll
View File

@@ -24,16 +24,20 @@ module PostMessageStar {
abstract class Sanitizer extends DataFlow::Node { }
/**
* DEPRECATED. This query no longer uses flow state.
*
* A flow label representing an object with at least one tainted property.
*/
abstract class PartiallyTaintedObject extends DataFlow::FlowLabel {
abstract deprecated class PartiallyTaintedObject extends DataFlow::FlowLabel {
PartiallyTaintedObject() { this = "partially tainted object" }
}
/**
* DEPRECATED. This query no longer uses flow state.
*
* Gets either a standard flow label or the partial-taint label.
*/
DataFlow::FlowLabel anyLabel() {
deprecated DataFlow::FlowLabel anyLabel() {
result.isDataOrTaint() or result instanceof PartiallyTaintedObject
}

1
javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDynamicMethodAccessQuery.qll
View File

@@ -9,7 +9,6 @@
import javascript
import PropertyInjectionShared
private import DataFlow::FlowLabel
import UnsafeDynamicMethodAccessCustomizations::UnsafeDynamicMethodAccess
private import UnsafeDynamicMethodAccessCustomizations::UnsafeDynamicMethodAccess as UnsafeDynamicMethodAccess

2
javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeJQueryPluginCustomizations.qll
View File

@@ -9,8 +9,6 @@ private import semmle.javascript.dataflow.InferredTypes
import semmle.javascript.security.dataflow.DomBasedXssCustomizations
module UnsafeJQueryPlugin {
private import DataFlow::FlowLabel
/**
* A data flow source for unsafe jQuery plugins.
*/