Update javascript/ql/lib/change-notes/2025-02-12-express-download.md

Co-authored-by: Asger F <asgerf@github.com>
2026-04-28 10:15:14 +02:00 · 2025-02-12 11:01:29 -08:00
parent f5521ca1b8
commit 253882c3d1
1 changed files with 1 additions and 1 deletions
--- a/javascript/ql/lib/change-notes/2025-02-12-express-download.md
+++ b/javascript/ql/lib/change-notes/2025-02-12-express-download.md
@@ -1,4 +1,4 @@
 ---
 category: minorAnalysis
 ---
-* Added result.download() function to ResponseDownloadAsFileSystemAccess to FileSystemReadAccess
+* The `response.download()` function in `express` is now recognized as a sink for path traversal attacks.