JS: Add meta query for measuring library inputs

2026-04-28 10:15:14 +02:00 · 2022-06-16 11:57:33 +02:00
parent cdf343c5ee
commit 3b4b56be28
1 changed files with 14 additions and 0 deletions
--- a/javascript/ql/src/meta/alerts/LibraryInputs.ql
+++ b/javascript/ql/src/meta/alerts/LibraryInputs.ql
@@ -0,0 +1,14 @@
+/**
+ * @name Library inputs
+ * @description An input coming from the client of a library
+ * @kind problem
+ * @problem.severity recommendation
+ * @id js/meta/alerts/library-inputs
+ * @tags meta
+ * @precision very-low
+ */
+
+import javascript
+import semmle.javascript.PackageExports
+
+select getALibraryInputParameter(), "Library input"