codeql/2021-03-17-puppeteer.md at sauyon/java-spring-stringutils - codeql - Gitea: Git with a cup of tea

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 09:13:20 +01:00

Files

Erik Krogh Kristensen d1602d538e add change note

2021-03-17 10:06:41 +01:00

189 B

Raw Permalink Blame History

lgtm,codescanning

URIs used in the puppeteer library are now recognized as sinks for js/request-forgery. Affected packages are puppeteer