hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-18 01:33:15 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
codeql-cli-2.20.7
codeql/javascript/ql/test/query-tests/Security/CWE-352
History
Asger F cd2c4d5e3a JS: Use post-processed inline test in MissingCsrfMiddleware 
This query flags the cookie-parsing middleware in order to consolidate huge numbers of alerts into a single alert, which is more manageable. But simply annotating the cookie-parsing middleware with 'Alert' isn't a very useful, we want to annotate which middlewares are vulnerable.
2025-02-21 14:44:46 +01:00
..
csurf_api_example.js
JS: Use post-processed inline test in MissingCsrfMiddleware
2025-02-21 14:44:46 +01:00
csurf_example.js
JS: Use post-processed inline test in MissingCsrfMiddleware
2025-02-21 14:44:46 +01:00
fastify2.js
JS: Use post-processed inline test in MissingCsrfMiddleware
2025-02-21 14:44:46 +01:00
fastify.js
JS: Use post-processed inline test in MissingCsrfMiddleware
2025-02-21 14:44:46 +01:00
LICENSE
QL code and tests for C#/C++/JavaScript.
2018-08-02 17:53:23 +01:00
lusca_example.js
JS: Use post-processed inline test in MissingCsrfMiddleware
2025-02-21 14:44:46 +01:00
MissingCsrfMiddleware.expected
fix some more style-guide violations in the alert-messages
2022-10-07 11:22:22 +02:00
MissingCsrfMiddleware.qlref
JS: Use post-processed inline test in MissingCsrfMiddleware
2025-02-21 14:44:46 +01:00
MissingCsrfMiddlewareBad.js
JS: Use post-processed inline test in MissingCsrfMiddleware
2025-02-21 14:44:46 +01:00
MissingCsrfMiddlewareGood2.js
JS: Port CSRF query
2021-12-07 10:43:06 +01:00
MissingCsrfMiddlewareGood.js
JS: Add test and dont check predecessors
2020-01-23 14:59:03 +00:00
tst.js
JS: Use post-processed inline test in MissingCsrfMiddleware
2025-02-21 14:44:46 +01:00
unused_cookies.js
JS: Use post-processed inline test in MissingCsrfMiddleware
2025-02-21 14:44:46 +01:00