hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-19 10:23:15 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
alexet/avoid-path-node-java
codeql/javascript/ql/test/query-tests/Security/CWE-022/ZipSlip/ZipSlipBad2.js
Asger F 64d39da5f8 JS: Accept Sources/Sink tags
2025-02-28 13:29:30 +01:00

9 lines
304 B
JavaScript
Raw Permalink Blame History

var fs = require('fs');
var unzip = require('unzip');
fs.readFile('path/to/archive.zip', function (err, zipContents) {
unzip.Parse(zipContents).on('entry', function (entry) {
var fileName = 'output/path/' + entry.path; // $ Alert
fs.writeFileSync(fileName, entry.contents); // $ Sink
});
});
Reference in New Issue View Git Blame Copy Permalink