hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-24 08:15:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

Moved from experimental into default queries

Browse Source
This commit is contained in:
aegilops
2024-07-11 11:44:01 +01:00
parent 01ec7c22df
commit d71be8aeaf
11 changed files with 6 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

0
javascript/ql/src/experimental/Security/CWE-830/FunctionalityFromUntrustedDomain.qhelp → javascript/ql/src/Security/CWE-830/FunctionalityFromUntrustedDomain.qhelp
View File

0
javascript/ql/src/experimental/Security/CWE-830/FunctionalityFromUntrustedDomain.ql → javascript/ql/src/Security/CWE-830/FunctionalityFromUntrustedDomain.ql
View File

0
javascript/ql/src/experimental/Security/CWE-830/polyfill-compromised.html → javascript/ql/src/Security/CWE-830/polyfill-compromised.html
View File

0
javascript/ql/src/experimental/Security/CWE-830/polyfill-sri.html → javascript/ql/src/Security/CWE-830/polyfill-sri.html
View File

0
javascript/ql/src/experimental/Security/CWE-830/polyfill-trusted.html → javascript/ql/src/Security/CWE-830/polyfill-trusted.html
View File

8
javascript/ql/src/change-notes/2024-07-08-functionality-from-untrusted-domain.md
View File

@@ -1,6 +1,8 @@
---
category: minorAnalysis
---
* Added a new query, `js/functionality-from-untrusted-domain`, which detects uses in HTML and JavaScript scripts from untrusted domains, including the compromised `polyfill.io` content delivery network, and can be extended to detect other compromised scripts using data extensions.
* Modified existing query, `js/functionality-from-untrusted-source`, to allow adding this new query, but reusing the same logic.
* Created a shared library, `semmle.javascript.security.FunctionalityFromUntrustedSource`, to separate the logic from that existing query and allow having a separate "untrusted domain" query.
* Added a new query, `js/functionality-from-untrusted-domain`, which detects uses in HTML and JavaScript scripts from untrusted domains, including the `polyfill.io` content delivery network
* it can be extended to detect other compromised scripts using user-provided data extensions of the `untrustedDomain` predicate, which takes one string argument with the domain to warn on (and will warn on any subdomains too).
* Modified existing query, `js/functionality-from-untrusted-source`, to allow adding this new query, but reusing the same logic
* Added the ability to use data extensions to require SRI on CDN hostnames using the `isCdnDomainWithCheckingRequired` predicate, which takes one string argument of the full hostname to require SRI for.
* Created a new library, `semmle.javascript.security.FunctionalityFromUntrustedSource`, to support both queries.

1
javascript/ql/test/experimental/Security/CWE-830/FunctionalityFromUntrustedDomain.qlref
View File

@@ -1 +0,0 @@
experimental/Security/CWE-830/FunctionalityFromUntrustedDomain.ql

0
javascript/ql/test/experimental/Security/CWE-830/FunctionalityFromUntrustedDomain.expected → javascript/ql/test/query-tests/Security/CWE-830/FunctionalityFromUntrustedDomain.expected
View File

1
javascript/ql/test/query-tests/Security/CWE-830/FunctionalityFromUntrustedDomain.qlref Normal file
View File

@@ -0,0 +1 @@
Security/CWE-830/FunctionalityFromUntrustedDomain.ql

0
javascript/ql/test/experimental/Security/CWE-830/polyfill-check.html → javascript/ql/test/query-tests/Security/CWE-830/polyfill-check.html
View File

0
javascript/ql/test/experimental/Security/CWE-830/polyfill-nocheck.html → javascript/ql/test/query-tests/Security/CWE-830/polyfill-nocheck.html
View File