hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-30 11:15:13 +02:00
Code Issues Packages Projects Releases Wiki Activity

update consistency comments for CWE-918

Browse Source
This commit is contained in:
Erik Krogh Kristensen
2020-07-08 10:24:55 +02:00
parent c5285f7418
commit ec38df69b3
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
javascript/ql/test/query-tests/Security/CWE-918/tst.js
View File

@@ -20,8 +20,8 @@ var server = http.createServer(function(req, res) {
request.get(tainted); // NOT OK
var options = {};
options.url = tainted;
request(options); // NOT OK
options.url = tainted; // NOT OK
request(options);
request("http://" + tainted); // NOT OK
@@ -44,7 +44,7 @@ var server = http.createServer(function(req, res) {
request('http://example.com/' + base + '/' + tainted); // NOT OK
request('http://example.com/' + base + ('/' + tainted)); // NOT OK - but not flagged
request('http://example.com/' + base + ('/' + tainted)); // NOT OK - but not flagged [INCONSISTENCY]
request(`http://example.com/?${base}/${tainted}`); // OK