Merge pull request #4753 from max-schaefer/js/more-nosql-query-args

Approved by asgerf, mchammer01
2026-04-29 18:55:14 +02:00 · 2020-12-03 08:46:47 +00:00
parent 04bacf4347 978d2db252
commit edbbc846d0
6 changed files with 134 additions and 2 deletions
--- a/javascript/change-notes/2020-11-30-nosql.md
+++ b/javascript/change-notes/2020-11-30-nosql.md
@@ -0,0 +1,2 @@
+lgtm,codescanning
+* The query "Database query built from user-controlled sources" (`js/sql-injection`) has been improved to recognize more Mongoose APIs that may interpret untrusted user input as a query.