JS: Fix some Ql4Ql violations.

2026-04-25 08:45:14 +02:00 · 2025-09-01 15:17:53 +02:00
parent b4d6cb6e5f
commit 8b10ad49d7
17 changed files with 49 additions and 49 deletions
--- a/javascript/ql/lib/semmle/javascript/security/TaintedUrlSuffixCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/TaintedUrlSuffixCustomizations.qll
@@ -76,7 +76,7 @@ module TaintedUrlSuffix {
    //
    //   x [tainted-url-suffix] --> x.split('#') [array element 1] [taint]
    //
-    // Technically we should also preverse tainted-url-suffix when entering the first array element of such
+    // Technically we should also preserve tainted-url-suffix when entering the first array element of such
    // a split, but this mostly leads to FPs since we currently don't track if the taint has been through URI-decoding.
    // (The query/fragment parts are often URI-decoded in practice, but not the other URL parts are not)
    state1.isTaintedUrlSuffix() and