JS: fixup documentation

2026-04-25 00:35:20 +02:00 · 2020-04-24 10:56:53 +02:00
parent f0a05f6a6c
commit 58b5bd5cfd
4 changed files with 11 additions and 7 deletions
--- a/javascript/ql/src/Security/CWE-116/IncompleteHtmlAttributeSanitization.qhelp
+++ b/javascript/ql/src/Security/CWE-116/IncompleteHtmlAttributeSanitization.qhelp
@@ -30,8 +30,13 @@

 	<recommendation>

-		Sanitize all relevant HTML meta-characters when constructing
-		HTML dynamically, pay special attention to where the sanitized value is used.
+		<p>
+
+			Sanitize all relevant HTML meta-characters when
+			constructing HTML dynamically, and pay special attention to where the
+			sanitized value is used.
+
+		</p>

 	</recommendation>

@@ -75,8 +80,7 @@
 		</li>
 		<li>
 			OWASP
-			<a href="https://www.owasp.org/index.php/Types_of_Cross-Site_Scripting">Types of Cross-Site
-			Scripting</a>.
+			<a href="https://owasp.org/www-community/Types_of_Cross-Site_Scripting">Types of Cross-Site</a>.
 		</li>
 		<li>
 			Wikipedia: <a href="http://en.wikipedia.org/wiki/Cross-site_scripting">Cross-site scripting</a>.
--- a/javascript/ql/src/Security/CWE-116/IncompleteHtmlAttributeSanitization.ql
+++ b/javascript/ql/src/Security/CWE-116/IncompleteHtmlAttributeSanitization.ql
@@ -1,7 +1,7 @@
 /**
 * @name Incomplete HTML attribute sanitization
 * @description Writing incompletely sanitized values to HTML
- *              attribute strings  can lead to a cross-site
+ *              attribute strings can lead to a cross-site
 *              scripting vulnerability.
 * @kind path-problem
 * @problem.severity warning
--- a/javascript/ql/src/Security/CWE-116/examples/IncompleteHtmlAttributeSanitization.js
+++ b/javascript/ql/src/Security/CWE-116/examples/IncompleteHtmlAttributeSanitization.js
@@ -3,7 +3,7 @@ var app = require('express')();
 app.get('/user/:id', function(req, res) {
 	let id = req.params.id;
 	id = id.replace(/<|>/g, ""); // BAD
-	let userHtml = `<div data-id="${id}">${getUserName(id)} || Unknown name</div>`;
+	let userHtml = `<div data-id="${id}">${getUserName(id) || "Unknown name"}</div>`;
 	// ...
 	res.send(prefix + userHtml + suffix);
 });
--- a/javascript/ql/src/Security/CWE-116/examples/IncompleteHtmlAttributeSanitizationGood.js
+++ b/javascript/ql/src/Security/CWE-116/examples/IncompleteHtmlAttributeSanitizationGood.js
@@ -3,7 +3,7 @@ var app = require('express')();
 app.get('/user/:id', function(req, res) {
 	let id = req.params.id;
 	id = id.replace(/<|>|&|"/g, ""); // GOOD
-	let userHtml = `<div data-id="${id}">${getUserName(id)} || Unknown name</div>`;
+	let userHtml = `<div data-id="${id}">${getUserName(id) || "Unknown name"}</div>`;
 	// ...
 	res.send(prefix + userHtml + suffix);
 });