Restricted taint to array elements.

2026-04-23 07:45:17 +02:00 · 2025-03-20 12:24:49 +01:00
parent 752f02f04d
commit f4ca2dc1f3
2 changed files with 6 additions and 5 deletions
--- a/javascript/ql/test/library-tests/TripleDot/underscore.string.js
+++ b/javascript/ql/test/library-tests/TripleDot/underscore.string.js
@@ -39,10 +39,11 @@ function strToStr() {
 }

 function strToArray() {
-  sink(s.chop(source("s1"), 3)[0]); // $ hasTaintFlow=s1
-  sink(s.chars(source("s2")[0])); // $ hasTaintFlow=s2
-  sink(s.words(source("s3")[0])); // $ hasTaintFlow=s3
-  sink(s.lines(source("s7")[0])); // $ hasTaintFlow=s7
+  sink(s.chop(source("s1"), 3)); // $ MISSING: hasTaintFlow=s1
+  sink(s.chars(source("s2")[0])); // $ MISSING: hasTaintFlow=s2
+  sink(s.words(source("s3")[0])); // $ MISSING: hasTaintFlow=s3
+  sink(s.lines(source("s7")[0])); // $ MISSING: hasTaintFlow=s7
+  sink(s.chop(source("s1"), 3).length);
 }

 function arrayToStr() {