hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-01 03:35:13 +02:00
Code Issues Packages Projects Releases Wiki Activity

autoformat

Browse Source
This commit is contained in:
Erik Krogh Kristensen
2020-05-05 15:35:18 +02:00
parent a4eee7e88e
commit 52392f2a6d
2 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
javascript/ql/src/semmle/javascript/StandardLibrary.qll
View File

@@ -156,7 +156,7 @@ class StringReplaceCall extends DataFlow::MethodCallNode {
class StringSplitCall extends DataFlow::MethodCallNode {
StringSplitCall() {
this.getMethodName() = "split" and
(getNumArgument() = [1,2] or getReceiver().mayHaveStringValue(_))
(getNumArgument() = [1, 2] or getReceiver().mayHaveStringValue(_))
}
/**

3
javascript/ql/src/semmle/javascript/security/dataflow/Xss.qll
View File

@@ -287,7 +287,8 @@ module DomBasedXss {
QueryPrefixSanitizer() {
this = splitCall.getASubstringRead(0) and
splitCall.getSeparator() = "?" and
splitCall.getBaseString().getALocalSource() = [DOM::locationRef(), DOM::locationRef().getAPropertyRead("href")]
splitCall.getBaseString().getALocalSource() =
[DOM::locationRef(), DOM::locationRef().getAPropertyRead("href")]
}
}