hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-30 03:05:15 +02:00
Code Issues Packages Projects Releases Wiki Activity

JS: Add a few more tests

Browse Source
This commit is contained in:
Asger F
2024-08-22 11:43:29 +02:00
parent 371f7ef551
commit aa8bd332bf
3 changed files with 30 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
javascript/ql/test/library-tests/TaintTracking/spread.js
View File

@@ -1,9 +1,26 @@
import 'dummy';
function test() {
let taint = source();
sink({ ...taint }); // NOT OK
sink({ f: 'hello', ...taint, g: 'world' }); // NOT OK
sink([ ...taint ]); // NOT OK
sink([ 1, 2, ...taint, 3 ]); // NOT OK
fn1(...['x', taint, 'z']);
fn2.apply(undefined, ['x', taint, 'z']);
}
function fn1(x, y, z) {
sink(x);
sink(y); // NOT OK
sink(z);
}
function fn2(x, y, z) {
sink(x);
sink(y); // NOT OK
sink(z);
}