Merge pull request #6162 from smowton/smowton/feature/jax-rs-content-type-sensitivity-fixes

Jax-RS: implement content-type tracking
2025-12-24 04:36:35 +01:00 · 2021-08-03 14:53:31 +01:00
parent 23ba7dcf9c 3bf41491b3
commit eaf3d3cc03
8 changed files with 228 additions and 37 deletions
--- a/java/ql/src/Security/CWE/CWE-079/XSS.ql
+++ b/java/ql/src/Security/CWE/CWE-079/XSS.ql
@@ -25,6 +25,8 @@ class XSSConfig extends TaintTracking::Configuration {

  override predicate isSanitizer(DataFlow::Node node) { node instanceof XssSanitizer }

+  override predicate isSanitizerOut(DataFlow::Node node) { node instanceof XssSinkBarrier }
+
  override predicate isAdditionalTaintStep(DataFlow::Node node1, DataFlow::Node node2) {
    any(XssAdditionalTaintStep s).step(node1, node2)
  }