hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-30 19:26:02 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #2235 from max-schaefer/js/issue-2233

Browse Source 
Approved by esbena
This commit is contained in:
semmle-qlci
2019-10-31 14:17:58 +00:00
committed by GitHub
parent 2a3980222b 311cbd824c
commit d03aecaa98
3 changed files with 7 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
javascript/ql/src/Expressions/UnknownDirective.ql
View File

@@ -13,6 +13,8 @@ import javascript
from Directive d
where
not d instanceof KnownDirective and
// ignore ":" pseudo-directive sometimes seen in dual-use shell/node.js scripts
not d.getExpr().getStringValue() = ":" and
// but exclude attribute top-levels: `<a href="javascript:'some-attribute-string'">`
not d.getParent() instanceof CodeInAttribute
select d, "Unknown directive: '" + truncate(d.getDirectiveText(), 20, " ... (truncated)") + "'."

4
javascript/ql/test/query-tests/Expressions/UnknownDirective/dual-use.js Normal file
View File

@@ -0,0 +1,4 @@
#!/bin/sh
":" //# ; exec /usr/bin/env node "$0" "$@"
console.log('javascript');