1352 Commits

Author	SHA1	Message	Date
erik-krogh	68656274f4	dont recognize regexps that match dot as sanitizers	2023-02-13 17:36:51 +01:00
erik-krogh	b85bfc8ba6	add HtmlSanitizer as a sanitizer for DOMBasedXss	2023-02-13 11:57:29 +01:00
Rasmus Wriedt Larsen	5235964b07	sync files	2023-02-13 10:44:12 +01:00
erik-krogh	6474cfd4c8	add support for express-ws	2023-02-12 23:25:27 +01:00
erik-krogh	ecafce8191	improve the CryptoJS model by using API::Node	2023-02-03 21:44:23 +01:00
Alex Ford	7768026e70	Merge branch 'main' into js-use-shared-cryptography	2023-02-03 15:18:30 +00:00
Alex Ford	6c35feaa98	ConceptsShared: add a default implementation of BlockMode CryptographicOperation#getBlockMode() for compatibility with external code	2023-02-03 14:39:32 +00:00
Alex Ford	b968b59afc	CryptoAlgorithms: make CryptographicAlgorithm#matchesName hold only if that algorithm is the most specific match	2023-02-03 14:15:32 +00:00
Alex Ford	e17b3d975d	JS: pick up CryptographicKeys used in asmCrypto encrypt/decrypt calls	2023-02-03 12:16:25 +00:00
Alex Ford	1435ef1862	CryptoAlgorithms: make CryptographicAlgorithm#matchesName split on underscores	2023-02-02 20:30:30 +00:00
Alex Ford	983055b8f9	JS: Use shared CryptographicOperation concept and implement BlockMode getBlockMode()	2023-02-02 20:30:30 +00:00
Alex Ford	e5dfbe2c8d	ConceptsShared: Add BlockMode#matchesString(string) predicate	2023-02-02 20:27:52 +00:00
Alex Ford	61095b3c58	ConceptsShared: Add deprecated DataFlow::Node CryptographicOperation#getInput() predicate	2023-02-02 20:27:05 +00:00
yoff	7ae389bb28	Merge pull request #12026 from erik-krogh/nodePty ... JS: add code-injection sink for node-pty	2023-01-31 13:27:32 +01:00
erik-krogh	e5e8496084	fix QL-for-QL warnings	2023-01-31 10:55:27 +01:00
erik-krogh	02da718786	add code-injection sink for node-pty	2023-01-30 15:14:25 +01:00
erik-krogh	e3455a9b21	add support for axios used as a global variable	2023-01-29 22:55:20 +01:00
Erik Krogh Kristensen	99bad77972	Merge pull request #11906 from erik-krogh/moreStem ... JS: expand what is parsed as the stem of a pathexpr	2023-01-25 08:44:44 +01:00
Erik Krogh Kristensen	fc66c905ff	Merge pull request #11859 from erik-krogh/moreShell ... JS: slightly broaden the regular expression that recognizes bad string-concats used as shell commands	2023-01-23 22:26:17 +01:00
erik-krogh	11894144aa	remove regular expression that did nothing	2023-01-23 16:38:09 +01:00
erik-krogh	3cece50f78	add encodeURIComponent as a sanitizer for request-forgery	2023-01-23 13:53:53 +01:00
Michael Nebel	dc223cb82e	Sync files and make corresponding changes for other languages.	2023-01-19 15:14:06 +01:00
erik-krogh	4b74dec18f	expand what is parsed as the stem of a pathexpr	2023-01-17 21:28:21 +01:00
Erik Krogh Kristensen	8ccc384043	Merge pull request #11858 from erik-krogh/moreSpawn ... JS: track shell:true more in js/shell-command-constructed-from-input	2023-01-16 13:24:50 +01:00
erik-krogh	71af8ab022	simplifications inspired by review	2023-01-13 13:18:52 +01:00
erik-krogh	7ae27bcc34	fix errors in JS printAst	2023-01-12 15:37:52 +01:00
Erik Krogh Kristensen	54c780bdf9	Merge pull request #11853 from erik-krogh/assignMore ... JS: add local flow when recognizing Object.assign calls for library-inputs	2023-01-10 17:04:29 +01:00
Tony Torralba	72a11e737d	Merge pull request #11775 from atorralba/atorralba/all/omittable-exists ... All: Remove omittable exists variables	2023-01-10 16:07:06 +01:00
erik-krogh	62b69bbd3e	autoformat	2023-01-10 15:38:13 +01:00
Erik Krogh Kristensen	ce8836fb65	Update javascript/ql/lib/semmle/javascript/PackageExports.qll ... Co-authored-by: Esben Sparre Andreasen <esbena@github.com>	2023-01-10 15:30:44 +01:00
erik-krogh	43696f5e27	add explicit this	2023-01-10 15:27:37 +01:00
erik-krogh	23a847b1cf	track shell:true more in js/shell-command-constructed-from-input	2023-01-10 15:27:37 +01:00
erik-krogh	5c388c554c	fix that the TypeTracker was unrestricted for the base-case of nonFirstLocationType	2023-01-10 13:39:50 +01:00
Tony Torralba	3b6dae41cd	JavaScript: Remove omittable exists variables	2023-01-10 13:37:21 +01:00
erik-krogh	79e161e046	slightly broaden the regular expression that recognizes bad string-concats used as shell commands	2023-01-10 12:49:37 +01:00
erik-krogh	9f100ef2c6	add local flow when recognizing Object.assign calls for library-inputs	2023-01-09 17:44:11 +01:00
erik-krogh	90f9e3f825	recognize an infinite repetition of a char-class like regex as a char-class like regex	2023-01-09 17:25:08 +01:00
Erik Krogh Kristensen	cedc9c0bff	Merge pull request #11582 from erik-krogh/heuristics ... JS: Add experimental variants of common security queries with more sources	2023-01-04 10:46:19 +01:00
erik-krogh	66be8cda06	remove more of the implementation into ConditionalBypassQuery.qll	2022-12-19 14:37:19 +01:00
erik-krogh	26c5480ee6	share {js,rb}/regex/missing-regexp-anchor	2022-12-18 17:23:41 +01:00
erik-krogh	355499ea52	move getACommonTld to the shared pack	2022-12-17 17:26:18 +01:00
erik-krogh	f67d0bc8c0	put the shared HostnameRegexp code in the shared regex pack	2022-12-17 17:26:18 +01:00
Erik Krogh Kristensen	1500fa5f67	Merge pull request #10663 from pwntester/restify_improvements ... Javascript: Improve Restify support and add new Spife support	2022-12-15 11:08:22 +01:00
Erik Krogh Kristensen	55558120d9	add explicit this	2022-12-14 20:59:28 +01:00
Alvaro Muñoz	f46a8faf00	port RouteSetup API-based implementation to DataFlow one	2022-12-14 17:37:32 +01:00
Alvaro Muñoz	4cf7299d79	restore Spife.qll to working status	2022-12-14 15:41:53 +01:00
Alvaro Muñoz	701676eea1	Update javascript/ql/lib/semmle/javascript/frameworks/Spife.qll ... Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>	2022-12-14 10:18:47 +01:00
Erik Krogh Kristensen	8a89849476	Merge pull request #11660 from erik-krogh/dynamic-useInstanceOf ... Py/JS/RB: Use instanceof in more places	2022-12-13 21:50:13 +01:00
Asger F	ba1364a4cb	JS: Add sinks mentioned in doc ... Note that 'sql-injection' was already added	2022-12-13 11:33:12 +01:00
Alvaro Muñoz	270a4355df	format Restify.qll	2022-12-13 11:22:24 +01:00