codeql/java/change-notes/2020-08-11-printwriter-format-xss-sink.md

mirror of https://github.com/github/codeql.git synced 2025-12-19 10:23:15 +01:00
lgtm,codescanning
* The query "Cross-site scripting" (`java/xss`) has been improved to recognize
  `PrintWriter.format` as an XSS sink.
	`lgtm,codescanning`
	* The query "Cross-site scripting" (`java/xss`) has been improved to recognize
	`PrintWriter.format` as an XSS sink.