hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-26 01:05:15 +02:00
Code Issues Packages Projects Releases Wiki Activity

JS: Accept InsecureRandomness alerts

Browse Source
This commit is contained in:
Asger F
2025-02-18 13:19:37 +01:00
parent 0f8e85fa2f
commit 92c3939457
1 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
javascript/ql/test/query-tests/Security/CWE-338/tst.js
View File

@@ -87,12 +87,12 @@ function f17() {
}
function f18() {
var secret = (o.password = Math.random());
var secret = (o.password = Math.random()); // $ Alert
}
(function(){
var crypto = require('crypto');
crypto.createHmac('sha256', Math.random());
crypto.createHmac('sha256', Math.random()); // $ Alert
})();
(function () {
@@ -118,7 +118,7 @@ function uid() {
var my_nice_uid = Math.floor(Math.random() * 4_000_000_000); // $ Alert
var liquid = Math.random();
var UUID = Math.random(); // $ Alert
var MY_UID = Math.random(); // NOK OK
var MY_UID = Math.random(); // $ Alert
}
function buildPass(opts, length) {
@@ -136,4 +136,4 @@ function buildPass(opts, length) {
password += chars[Math.floor(Math.random() * chars.length)]; // $ Alert
}
return password;
}
}