Add support for log injection in MaD

2026-04-25 16:55:19 +02:00 · 2023-07-28 22:37:56 +00:00
parent 40eab180cc
commit 4529d8b75a
2 changed files with 8 additions and 0 deletions
--- a/javascript/ql/lib/change-notes/2023-07-28-mad-log-injection.md
+++ b/javascript/ql/lib/change-notes/2023-07-28-mad-log-injection.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Added support for Model as Data for Log-injection query
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/LogInjectionQuery.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/LogInjectionQuery.qll
@@ -66,3 +66,7 @@ class HtmlSanitizer extends Sanitizer instanceof HtmlSanitizerCall { }
 class JsonStringifySanitizer extends Sanitizer {
  JsonStringifySanitizer() { this = any(JsonStringifyCall c).getOutput() }
 }
+
+private class SinkFromModel extends Sink {
+  SinkFromModel() { this = ModelOutput::getASinkNode("log-injection").asSink() }
+}