Added basic taint tracking test for Array.prototype.toSpliced()

2025-12-18 01:33:15 +01:00 · 2024-11-13 12:28:14 +01:00
parent 570260b4dc
commit a65f80ef76
1 changed files with 1 additions and 0 deletions
--- a/javascript/ql/test/library-tests/TaintTracking/tst.js
+++ b/javascript/ql/test/library-tests/TaintTracking/tst.js
@@ -59,4 +59,5 @@ function test() {
    tagged`foo ${"safe"} bar ${x} baz`;

    sink(x.reverse()); // NOT OK
+    sink(x.toSpliced()); // NOT OK -- Should be caught, but it is not
 }