hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-30 11:15:13 +02:00
Code Issues Packages Projects Releases Wiki Activity

JS: Update our own queries

Browse Source
This commit is contained in:
Asger F
2019-05-22 13:13:08 +01:00
parent 61ef73b0f7
commit deb217326d
2 changed files with 6 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
javascript/ql/src/semmle/javascript/security/TaintedObject.qll
View File

@@ -84,7 +84,6 @@ module TaintedObject {
* Sanitizer guard that blocks deep object taint.
*/
abstract class SanitizerGuard extends TaintTracking::LabeledSanitizerGuardNode {
override FlowLabel getALabel() { result = label() }
}
/**
@@ -110,9 +109,10 @@ module TaintedObject {
)
}
override predicate sanitizes(boolean outcome, Expr e) {
override predicate sanitizes(boolean outcome, Expr e, FlowLabel label) {
polarity = outcome and
e = typeof.getOperand()
e = typeof.getOperand() and
label = label()
}
}
}

7
javascript/ql/src/semmle/javascript/security/dataflow/UnvalidatedDynamicMethodCall.qll
View File

@@ -142,11 +142,10 @@ module UnvalidatedDynamicMethodCall {
astNode.getAnOperand().getUnderlyingValue() = t
}
override predicate sanitizes(boolean outcome, Expr e) {
override predicate sanitizes(boolean outcome, Expr e, DataFlow::FlowLabel label) {
outcome = astNode.getPolarity() and
e = t.getOperand().getUnderlyingValue()
e = t.getOperand().getUnderlyingValue() and
label instanceof MaybeNonFunction
}
override DataFlow::FlowLabel getALabel() { result instanceof MaybeNonFunction }
}
}