use some Sanitizer classes that were unused in the query code

2026-04-30 19:26:02 +02:00 · 2022-03-13 23:25:33 +01:00
parent 5c04516179
commit 9cf0a94e4d
6 changed files with 27 additions and 1 deletions
--- a/javascript/ql/src/experimental/semmle/javascript/security/dataflow/ResourceExhaustion.qll
+++ b/javascript/ql/src/experimental/semmle/javascript/security/dataflow/ResourceExhaustion.qll
@@ -23,6 +23,11 @@ module ResourceExhaustion {

    override predicate isSink(DataFlow::Node sink) { sink instanceof Sink }

+    override predicate isSanitizer(DataFlow::Node node) {
+      super.isSanitizer(node) or
+      node instanceof Sanitizer
+    }
+
    override predicate isAdditionalTaintStep(DataFlow::Node src, DataFlow::Node dst) {
      isNumericFlowStep(src, dst)
      or