hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 09:13:20 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
sauyon/java-spring-stringutils
codeql/javascript/change-notes/2021-02-08-xml-parser-taint.md
Erik Krogh Kristensen 3ee0029cd8 Update javascript/change-notes/2021-02-08-xml-parser-taint.md 
Co-authored-by: Asger F <asgerf@github.com>
2021-02-11 13:33:42 +01:00

9 lines
378 B
Markdown
Raw Permalink Blame History

lgtm,codescanning
* The security queries now track taint through XML parsers.
Affected packages are
[xml2js](https://www.npmjs.com/package/xml2js),
[sax](https://www.npmjs.com/package/sax),
[xml-js](https://www.npmjs.com/package/xml-js),
[htmlparser2](https://www.npmjs.com/package/htmlparser2), and
[node-expat](https://www.npmjs.com/package/node-expat)
Reference in New Issue View Git Blame Copy Permalink