hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-26 17:25:19 +02:00
Code Issues Packages Projects Releases Wiki Activity

JS: handle .after and .before

Browse Source
This commit is contained in:
Asger F
2019-01-31 15:58:27 +00:00
parent 0401b26b48
commit ad592d7cd1
1 changed files with 7 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
javascript/ql/src/semmle/javascript/frameworks/Firebase.qll
View File

@@ -238,7 +238,8 @@ module Firebase {
}
/**
* Gets a node that refers to a `DataSnapshot` value or a promise thereof.
* Gets a node that refers to a `DataSnapshot` value or a promise or `Change`
* object containing `DataSnapshot`s.
*/
DataFlow::SourceNode snapshot(DataFlow::TypeTracker t) {
t.start() and
@@ -250,6 +251,11 @@ module Firebase {
result = snapshot(_).getAMethodCall("child")
or
result = snapshot(_).getAMethodCall("forEach").getCallback(0).getParameter(0)
or
exists (string prop | result = snapshot(_).getAPropertyRead(prop) |
prop = "before" or // only defined on Change objects
prop = "after"
)
)
or
promiseTaintStep(snapshot(t), result)