hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-26 01:05:15 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge branch 'main' into js/move-cors-query-from-experimental

Browse Source
This commit is contained in:
Napalys Klicius
2025-09-05 12:11:09 +02:00
committed by GitHub
parent d8c4d6deb4 e719dd912d
commit b2feaaceea
106 changed files with 14432 additions and 8745 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
javascript/ql/src/Declarations/UnreachableMethodOverloads.ql
View File

@@ -46,9 +46,7 @@ string getKind(MemberDeclaration m) {
* A call-signature that originates from a MethodSignature in the AST.
*/
private class MethodCallSig extends Function {
private MethodSignature signature;
MethodCallSig() { this = signature.getBody() }
MethodCallSig() { this = any(MethodSignature signature).getBody() }
int getNumOptionalParameter() {
result = count(Parameter p | p = this.getParameter(_) and p.isDeclaredOptional())

4
javascript/ql/src/change-notes/2025-08-27-remote-property-injection-update.md Normal file
View File

@@ -0,0 +1,4 @@
---
category: minorAnalysis
---
* The query `js/remote-property-injection` now detects property injection vulnerabilities through object enumeration patterns such as `Object.keys()`.