codeql

mirror of https://github.com/github/codeql.git synced 2025-12-20 18:56:32 +01:00

Author	SHA1	Message	Date
tyage	ddc8f72ef7	accept test result Xss.qlref	2022-10-06 18:23:10 +09:00
tyage	192c1f3d89	make test json.stringify	2022-10-04 17:40:52 +09:00
tyage	726cd2ca8a	refactor test	2022-10-04 17:11:37 +09:00
tyage	2006ae8332	rename file	2022-10-04 17:05:15 +09:00
tyage	33d204913c	add test for json stringify xss	2022-10-04 14:45:09 +09:00
erik-krogh	87fb01d55b	apply another suggestion from doc review	2022-09-12 15:36:02 +02:00
erik-krogh	afcb767f8d	Merge branch 'main' into js-followMsg	2022-09-12 13:21:16 +02:00
Erik Krogh Kristensen	cb95e8f263	Merge pull request #10351 from erik-krogh/moreMains JS: find a main module in more cases	2022-09-12 11:01:17 +02:00
Erik Krogh Kristensen	9893650f7c	Merge pull request #8604 from erik-krogh/httpNode JS: refactor most library models away from AST nodes	2022-09-09 10:04:17 +02:00
erik-krogh	aee72357b8	find a main module in more cases	2022-09-08 20:21:31 +02:00
erik-krogh	a35fe1ffab	Merge branch 'main' into js-followMsg	2022-09-08 13:09:15 +02:00
erik-krogh	0407198dd2	add a markdown step through the `mermaid` library	2022-09-08 09:23:45 +02:00
Erik Krogh Kristensen	e387ebaedd	add `domNode.innerHTML += sink` as a DOM sink	2022-09-05 16:11:55 +02:00
erik-krogh	aa56ca37ae	make the alert messages of taint-tracking queries more consistent	2022-09-05 14:04:52 +02:00
Erik Krogh Kristensen	fd10947ca0	use small steps in TypeBackTracker correctly	2022-07-13 10:29:57 +02:00
Erik Krogh Kristensen	0e4954a68c	add navigation.navigate as an XSS / URL sink	2022-06-29 14:56:20 +02:00
Erik Krogh Kristensen	34e7589844	sanitize non-strings from unsafe-html-construction	2022-06-27 13:53:44 +02:00
Erik Krogh Kristensen	e1c34c11ed	add all jquery plugin parameters as source to js/html-constructed-from-input	2022-06-21 13:22:56 +02:00
Erik Krogh Kristensen	dde7e9e2e8	add test for jquery plugin parameters in js/html-constructed-from-input	2022-06-21 13:21:57 +02:00
Erik Krogh Kristensen	e80ee46fe4	add model for the cash library	2022-05-09 21:01:07 +02:00
Erik Krogh Kristensen	53b26eba17	Merge pull request #8724 from erik-krogh/postMessage JS: promote the `js/missing-origin-verification` query	2022-05-09 12:28:58 +02:00
Erik Krogh Kristensen	fe1e47bc17	Merge pull request #8710 from bananabr/dragAndDrop JS: drag and drop API Xss sources	2022-05-09 12:22:28 +02:00
bananabr	2e2d4c6e1f	updated tests to consider document.getSelection()	2022-05-03 21:03:35 -05:00
bananabr	57ae07017f	adds the Selection API as a new DOM text source	2022-04-30 18:27:31 -05:00
Erik Krogh Kristensen	10130eef6d	Merge pull request #8678 from erik-krogh/fileSource JS: Add files as a source for `js/xss-through-dom`	2022-04-20 09:18:38 +02:00
Erik Krogh Kristensen	7f592a6c64	merge `Clipboard.qll` and `DragAndDrop.qll`, and support `InputEvent`	2022-04-18 22:17:31 +02:00
Erik Krogh Kristensen	2d6d304d7c	add `InclusionTest` to `PostMessageEventSanitizer`	2022-04-12 14:12:36 +02:00
Erik Krogh Kristensen	34abef8a6c	Merge branch 'main' into dragAndDrop	2022-04-11 23:59:46 +02:00
bananabr	57fac949fd	included ClipboardEvent and DragEvent as XSS sources	2022-04-11 16:37:00 -05:00
Erik Krogh Kristensen	aafa8ddc9f	add support for domNode.onpaste for copy-paste events	2022-04-11 20:10:56 +02:00
Erik Krogh Kristensen	6713b2c671	add support for domNode.ondrop for drag-and-drop events	2022-04-11 20:06:12 +02:00
bananabr	0f1582f3f6	included JavaScript drag and drop API Xss sources	2022-04-09 22:33:30 -05:00
Asger Feldthaus	b85739cb7e	JS: Update test output	2022-04-07 13:23:26 +02:00
Asger Feldthaus	4eda6f643f	JS: Recognize subclasses of HTMLElement in domValueRef	2022-04-07 09:57:31 +02:00
Erik Krogh Kristensen	0435cee57f	add a taint-step through URL.createObjectURL for js/xss-through-dom	2022-04-06 12:18:47 +02:00
Erik Krogh Kristensen	b11d48e749	add files in the DOM as a source for js/xss-through-dom	2022-04-06 12:09:07 +02:00
Erik Krogh Kristensen	c8385a1e80	js/xss-through-dom: filter away reads of .src that end in a URL sink	2022-03-21 16:48:59 +01:00
Erik Krogh Kristensen	6cdc38748c	update expected output	2022-03-16 22:32:09 +01:00
Erik Krogh Kristensen	d8a5947a08	simplify TaintedUrlSuffix::source() to only consider window.location based sources	2022-03-16 22:32:09 +01:00
Erik Krogh Kristensen	f083e87fa1	refactor the `js/xss` query to use three flowlabels and one configuration	2022-03-16 22:32:08 +01:00
Erik Krogh Kristensen	87842bb8b7	add client-side-url sinks that may execute JavaScript as XSS sinks	2022-03-16 22:32:08 +01:00
Erik Krogh Kristensen	b471fec149	split `interpretsArgumentsAsURL` out of `interpretsArgumentsAsHTML`, and use it to generalize AttributeUrlSink	2022-03-16 22:32:08 +01:00
Erik Krogh Kristensen	fc79242674	add tests	2022-03-16 22:32:08 +01:00
Esben Sparre Andreasen	2c527f7b35	model hapi handler returns as reflected-xss sinks	2022-02-22 14:12:01 +01:00
Asger Feldthaus	7e947b2a65	JS: Use return value of trusted type policy callback as a sink	2021-12-14 13:28:46 +01:00
Erik Krogh Kristensen	12c24c07df	improve the got model	2021-11-15 21:52:12 +01:00
Erik Krogh Kristensen	5d901ef728	move extend aliasing to `getAnAliasedSourceNode`	2021-11-10 18:08:50 +01:00
Erik Krogh Kristensen	2d907f825e	have the aliasPropertyPresenceStep step over extend calls	2021-11-10 16:26:00 +01:00
Erik Krogh Kristensen	8569d261f7	add test	2021-09-13 20:43:31 +02:00
CodeQL CI	cd26d97dd7	Merge pull request #6549 from erik-krogh/moreDom Approved by asgerf	2021-09-08 05:10:47 -07:00

... 2 3 4 5 6 ...

442 Commits