hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-02 20:25:13 +02:00
Code Issues Packages Projects Releases Wiki Activity

JS: Deny -> block

Browse Source
This commit is contained in:
Asger Feldthaus
2020-12-07 10:50:01 +00:00
parent 254ac7f963
commit f96c425a72
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
javascript/ql/src/Security/CWE-915/PrototypePollutingFunction.qhelp
View File

@@ -29,7 +29,7 @@
<p>
Only merge or assign a property recursively when it is an own property of the <em>destination</em> object.
Alternatively, deny the property names <code>__proto__</code> and <code>constructor</code>
Alternatively, block the property names <code>__proto__</code> and <code>constructor</code>
from being merged or assigned to.
</p>
</recommendation>
@@ -54,7 +54,7 @@
<sample src="examples/PrototypePollutingFunction_fixed.js"/>
<p>
Alternatively, deny the <code>__proto__</code> and <code>constructor</code> properties:
Alternatively, block the <code>__proto__</code> and <code>constructor</code> properties:
</p>
<sample src="examples/PrototypePollutingFunction_fixed2.js"/>