Erik Krogh Kristensen
|
1b81526691
|
Merge remote-tracking branch 'upstream/master' into exceptionXss
|
2019-11-17 09:29:54 +01:00 |
|
Erik Krogh Kristensen
|
3b9847e075
|
apply suggestions from max
Co-Authored-By: Max Schaefer <54907921+max-schaefer@users.noreply.github.com>
|
2019-11-17 09:01:48 +01:00 |
|
Erik Krogh Kristensen
|
e95cceef1d
|
import all the shared XSS sources and sinks
|
2019-11-15 15:41:53 +01:00 |
|
Erik Krogh Kristensen
|
65a018ceed
|
use flow labels to avoid dual configurations
|
2019-11-15 14:37:46 +01:00 |
|
Asger F
|
66db38266b
|
JS: Add qldoc to HostnameRegexpShared
|
2019-11-15 09:27:21 +00:00 |
|
Asger F
|
77e5305b9b
|
Update javascript/ql/src/Security/CWE-020/IncompleteHostnameRegExp.ql
Co-Authored-By: Max Schaefer <54907921+max-schaefer@users.noreply.github.com>
|
2019-11-15 09:27:21 +00:00 |
|
Asger F
|
4d1f7836f2
|
JS: Check for [^.]
|
2019-11-15 09:27:21 +00:00 |
|
Asger F
|
a7a90b4b7e
|
JS: Disregard capture groups in lookaround assertions
|
2019-11-15 09:27:20 +00:00 |
|
Asger F
|
153d34638b
|
JS: Fix a FP
|
2019-11-15 09:27:20 +00:00 |
|
Asger F
|
8c5b9b9195
|
JS: Add missing post-anchor case to MissingRegExpAnchor
|
2019-11-15 09:27:20 +00:00 |
|
Asger F
|
17ad97812e
|
JS: Fix FPs from TLDs without a domain name
|
2019-11-15 09:27:20 +00:00 |
|
Asger F
|
e45c361d64
|
JS: Port IncompleteHostnameRegExp
|
2019-11-15 09:27:20 +00:00 |
|
Asger F
|
9ecab1b5d5
|
JS: Port unanchored RegExp query but for hostnames only
|
2019-11-15 09:27:20 +00:00 |
|
Asger F
|
e5f2f9e43e
|
JS: Do not flag semi-anchored regexps in .replace()
|
2019-11-15 09:27:20 +00:00 |
|
Asger F
|
3e37950170
|
JS: Whitelist one more FP case
|
2019-11-15 09:27:20 +00:00 |
|
Asger F
|
2b151cd587
|
JS: Include anchor direction in message
|
2019-11-15 09:27:20 +00:00 |
|
Asger F
|
3e952cf564
|
JS: Restrict semi-anchored regex query more
|
2019-11-15 09:27:19 +00:00 |
|
Asger F
|
8bc89ee254
|
JS: Update semi-anchored regex query
|
2019-11-15 09:27:19 +00:00 |
|
Esben Sparre Andreasen
|
2ea7d141c8
|
Merge pull request #2310 from max-schaefer/js/insufficient-url-scheme-check
JavaScript: Add query `IncompleteUrlSchemeCheck`
|
2019-11-14 22:13:02 +01:00 |
|
Max Schaefer
|
3b1e6c362c
|
JavaScript: Address review comments.
|
2019-11-14 17:11:59 +00:00 |
|
Erik Krogh Kristensen
|
e49b5e4afc
|
up precision from low to medium, and fix tab/spaces
|
2019-11-14 17:42:16 +01:00 |
|
Erik Krogh Kristensen
|
7137a64b7d
|
Added query for detecting XSS that happens through an exception
|
2019-11-14 17:04:00 +01:00 |
|
Max Schaefer
|
f804d316d7
|
Update javascript/ql/src/Security/CWE-020/IncompleteUrlSchemeCheck.ql
Co-Authored-By: Esben Sparre Andreasen <esbena@github.com>
|
2019-11-13 12:24:19 +00:00 |
|
Max Schaefer
|
ab583b7994
|
JavaScript: Add query IncompleteUrlSchemeCheck.ql.
|
2019-11-13 10:27:18 +00:00 |
|
Max Schaefer
|
155cea7b5b
|
Revert "JavaScript: Improve double-escaping query"
|
2019-11-12 22:54:12 +00:00 |
|
Sauyon Lee
|
0040c9fb4c
|
Update links to OWASP cheat sheet
|
2019-11-06 20:21:47 -08:00 |
|
semmle-qlci
|
eb6e8866fa
|
Merge pull request #2247 from max-schaefer/odasa-8149
Approved by asger-semmle, esbena
|
2019-11-05 09:40:54 +00:00 |
|
Max Schaefer
|
016808b92e
|
JavaScript: Address review comments.
|
2019-11-04 17:00:12 +00:00 |
|
Max Schaefer
|
3bbded57d3
|
JavaScript: Autoformat.
|
2019-10-30 14:49:18 +00:00 |
|
Max Schaefer
|
bb0771b36c
|
JavaScript: Deal with escape-unescape-escape (and similar) chains.
|
2019-10-30 14:49:01 +00:00 |
|
Max Schaefer
|
8c133ff61d
|
JavaScript: Deal with (un-)escaping on captured variables.
|
2019-10-30 14:46:50 +00:00 |
|
Max Schaefer
|
a8214ce7ee
|
JavaScript: Fix regexes for escaping schemes.
|
2019-10-30 14:15:59 +00:00 |
|
Max Schaefer
|
5349e0f881
|
JavaScript: Recognise wrapped chains of replacements.
|
2019-10-30 13:14:38 +00:00 |
|
Max Schaefer
|
02d16b1dc9
|
JavaScript: Recognise wrapped string replacement functions.
|
2019-10-30 13:01:17 +00:00 |
|
Max Schaefer
|
aaeca32519
|
JavaScript: Recognize string escaping using .replace with a callback.
|
2019-10-30 12:45:32 +00:00 |
|
Max Schaefer
|
bd1c99d8a4
|
JavaScript: Recognise JSON.stringify and JSON.parse as escaper/unescaper.
|
2019-10-30 12:38:05 +00:00 |
|
Max Schaefer
|
63f24476e9
|
JavaScript: Refactor DoubleEscaping.ql.
|
2019-10-30 10:59:14 +00:00 |
|
Max Schaefer
|
278ea90049
|
JavaScript: Collapse flow labels at start/end nodes to avoid duplication.
|
2019-10-29 15:24:40 +00:00 |
|
Max Schaefer
|
316962233c
|
JavaScript: Factor out MidPathNode into its own class.
|
2019-10-29 15:24:40 +00:00 |
|
semmle-qlci
|
d2f3574427
|
Merge pull request #2165 from erik-krogh/dosHigh
Approved by asger-semmle
|
2019-10-25 16:28:07 +01:00 |
|
Erik Krogh Kristensen
|
1ae8e25603
|
change precision of js/loop-bound-injection and fix a false positive
|
2019-10-22 09:21:19 +02:00 |
|
Esben Sparre Andreasen
|
5a983cb535
|
JS: add query js/shell-command-injection-from-environment
|
2019-10-21 23:31:55 +02:00 |
|
Esben Sparre Andreasen
|
e1d7434be4
|
JS: add query js/useless-regexp-character-escape
|
2019-10-16 00:15:54 +02:00 |
|
semmle-qlci
|
e2c941c577
|
Merge pull request #1916 from erik-krogh/taintedLength
Approved by asger-semmle, xiemaisi
|
2019-09-23 11:47:48 +01:00 |
|
Erik Krogh Kristensen
|
7671b6759b
|
import DataFlow::PathGraph from the ql file instead of the qll file
|
2019-09-19 11:59:45 +02:00 |
|
semmle-qlci
|
57a6c0c20d
|
Merge pull request #1918 from esben-semmle/js/improve-getAResponseDataNode
Approved by asger-semmle
|
2019-09-18 14:03:45 +01:00 |
|
semmle-qlci
|
b4b7314757
|
Merge pull request #1941 from xiemaisi/js/fix-incorrect-suffix-check-performance
Approved by asger-semmle
|
2019-09-18 12:31:46 +01:00 |
|
Esben Sparre Andreasen
|
ac6554b7da
|
Merge branch 'master' into js/improve-getAResponseDataNode
|
2019-09-17 13:18:41 +02:00 |
|
Max Schaefer
|
df739e0fca
|
JavaScript: Fix performance regression in IncorrectSuffixCheck.
|
2019-09-16 15:25:17 +01:00 |
|
Esben Sparre Andreasen
|
a5645e168a
|
JS: exclude keys from whitelist
|
2019-09-16 10:13:18 +02:00 |
|