hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-26 09:15:12 +02:00
Code Issues Packages Projects Releases Wiki Activity

JS: Restrict AP length in prototype-polluting function

Browse Source
This commit is contained in:
Asger F
2025-01-06 14:33:41 +01:00
parent 7ccb476b1b
commit 0cdda87161
1 changed files with 6 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
javascript/ql/src/Security/CWE-915/PrototypePollutingFunction.ql
View File

@@ -277,6 +277,12 @@ module PropNameTrackingConfig implements DataFlow::StateConfigSig {
node instanceof DataFlow::VarAccessBarrier or
node = DataFlow::MakeBarrierGuard<BarrierGuard>::getABarrierNode()
}
int accessPathLimit() {
// Speed up the query. For the pattern we're looking for the value rarely
// flows through any contents, apart from a capture content.
result = 1
}
}
class FlowState = PropNameTrackingConfig::FlowState;