hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-25 08:45:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

better comments

Browse Source
This commit is contained in:
amammad
2023-10-11 17:44:12 +02:00
parent b24c6fd579
commit 261cabde67
1 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
javascript/ql/lib/semmle/javascript/frameworks/Execa.qll
View File

@@ -133,7 +133,12 @@ module Execa {
}
override DataFlow::Node getArgumentList() {
result = this.getParameter(any(int i | i > 2)).asSink() and
// here I should check if the first parameter of Template literal is the rightmost string of this Template literal then the arguments of this command execution will be the second and third and .. parameters
not exists(string s | this.getACall().getArgument(0).mayHaveStringValue(s) | s.matches(""))
or
result = this.getParameter(any(int i | i > 1)).asSink() and
// here I should check if the first parameter of Template literal is a constant which is the command, then the arguments of this command execution will be the first, second and third and .. parameters
not exists(string s | this.getACall().getArgument(0).mayHaveStringValue(s) | s.matches(""))
}