hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00
Code Issues Packages Projects Releases Wiki Activity

Added change note

Browse Source
This commit is contained in:
Napalys Klicius
2025-07-31 12:33:16 +02:00
parent d28a6e6352
commit 3f9061abdb
1 changed files with 4 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
javascript/ql/src/change-notes/2025-07-31-regexp-injection-threat-model.md Normal file
View File

@@ -0,0 +1,4 @@
---
category: minorAnalysis
---
* The `js/regex-injection` query no longer considers environment variables as sources by default. Environment variables can be re-enabled as sources by setting the threat model to include the "environment" category.