hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-28 18:25:24 +02:00
Code Issues Packages Projects Releases Wiki Activity

JS: Rephrase a few sentences

Browse Source
This commit is contained in:
Asger F
2023-03-24 14:54:13 +01:00
parent 2a57b00a13
commit f6900bd807
1 changed files with 4 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
docs/codeql/codeql-language-guides/customizing-library-models-for-javascript.rst
View File

@@ -44,9 +44,7 @@ In this example, we'll show how to add the following argument, passed to **execa
import { shell } from "execa";
shell(cmd); // <-- add 'cmd' as a taint sink
This sink is already recognized by the CodeQL JS analysis, but for the sake of this example we'll show how it could be added as an extension.
This can be achieved with the following data extension:
Note that this sink is already recognized by the CodeQL JS analysis, but for this example, you could use the following data extension:
.. code-block:: yaml
@@ -79,7 +77,7 @@ In this example, we'll show how the **event.data** expression below could be mar
let data = event.data; // <-- add 'event.data' as a taint source
});
This source is already known by the CodeQL JS analysis, but we'll show how it could be added as an extension. This can be achieved with the following extension:
Note that this source is already known by the CodeQL JS analysis, but for this example, you could use the following data extension:
.. code-block:: yaml
@@ -220,7 +218,7 @@ In this example, we'll show how to add flow through calls to `decodeURIComponent
let y = decodeURIComponent(x); // add taint flow from 'x' to 'y'
This flow is already recognized by the CodeQL JS analysis, but this is how it could be added with an extension:
Note that this flow is already recognized by the CodeQL JS analysis, but for this example, you could use the following data extension:
.. code-block:: yaml
@@ -258,7 +256,7 @@ In this example, we'll show how to add flow through calls to **forEach** from th
require('underscore').forEach([x, y], (v) => { ... }); // add value flow from 'x' and 'y' to 'v'
This flow is already recognized by the CodeQL JS analysis, but we'll show how it could be added with an extension.
Note that this flow is already recognized by the CodeQL JS analysis, but for this example, you could use the following data extension:
.. code-block:: yaml