hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-12 05:01:06 +01:00
Code Issues Packages Projects Releases Wiki Activity

JS: Change note

Browse Source
This commit is contained in:
Asger F
2025-11-26 13:34:16 +01:00
parent cc7bf4e880
commit 818f4815dd
1 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
javascript/ql/src/change-notes/2025-11-26-response-default-content-type.md Normal file
View File

@@ -0,0 +1,5 @@
---
category: minorAnalysis
---
* `new Response(x)` is not longer seen as a reflected XSS sink when no`content-type` header
is set, since the content type defaults to `text/plain`.