hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-29 10:45:15 +02:00
Code Issues Packages Projects Releases Wiki Activity

Update javascript/ql/src/experimental/Security/CWE-614/InsecureCookie.qll

Browse Source 
Co-authored-by: Esben Sparre Andreasen <esbena@github.com>
This commit is contained in:
Alessio Della Libera
2020-08-16 14:21:56 +02:00
committed by GitHub
parent 5cae3005f3
commit e463014759
1 changed files with 4 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
javascript/ql/src/experimental/Security/CWE-614/InsecureCookie.qll
View File

@@ -48,8 +48,10 @@ module InsecureCookie {
result = this.getCookieOptionsArgument().getAPropertyWrite(flag).getRhs()
}
// A cookie is insecure if the `secure` flag is explicitly set to `false`.
override predicate isInsecure() { getCookieFlagValue(flag()).mayHaveBooleanValue(false) }
override predicate isInsecure() {
// A cookie is insecure if the `secure` flag is explicitly set to `false`.
getCookieFlagValue(flag()).mayHaveBooleanValue(false)
}
}
/**