hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-30 19:26:02 +02:00
Code Issues Packages Projects Releases Wiki Activity

Using implicit this

Browse Source
This commit is contained in:
tyage
2022-10-04 18:06:30 +09:00
parent f47c02431a
commit 7205903a36
1 changed files with 5 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
javascript/ql/lib/semmle/javascript/dataflow/TaintTracking.qll
View File

@@ -718,7 +718,7 @@ module TaintTracking {
override predicate serializeStep(DataFlow::Node pred, DataFlow::Node succ) {
exists(JsonStringifyCall call, DataFlow::Node arg |
arg = call.getArgument(0) and
findInObject(arg.asExpr(), pred.asExpr()) and
this.findInObject(arg.asExpr(), pred.asExpr()) and
succ = call
)
}
@@ -733,18 +733,18 @@ module TaintTracking {
root instanceof ObjectExpr and
property = root.(ObjectExpr).getAProperty() and
(
findInObject(property.getNameExpr(), target) or
findInObject(property.getInit(), target)
this.findInObject(property.getNameExpr(), target) or
this.findInObject(property.getInit(), target)
)
)
or
// when root is Array
root instanceof ArrayExpr and
findInObject(root.(ArrayExpr).getAChildExpr(), target)
this.findInObject(root.(ArrayExpr).getAChildExpr(), target)
or
// when root is VarRef
root instanceof VarRef and
findInObject(root.(VarRef).getAVariable().getAnAssignedExpr(), target)
this.findInObject(root.(VarRef).getAVariable().getAnAssignedExpr(), target)
}
}