codeql/javascript/change-notes/2021-03-09-template-object-injection.md

mirror of https://github.com/github/codeql.git synced 2025-12-17 17:23:36 +01:00
lgtm,codescanning
* The `js/template-object-injection` query has been added. It highlights places where an attacker can pass special parameters to a template engine.
	`lgtm,codescanning`
	* The `js/template-object-injection` query has been added. It highlights places where an attacker can pass special parameters to a template engine.