codeql/2021-06-04-whatwg-fetch.md at z80coder/query-pack-release-candidate-2 - codeql - Gitea: Git with a cup of tea

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 17:23:36 +01:00

Files

Erik Krogh Kristensen 46f90006c2 add model for whatwg-fetch

2021-06-04 13:13:13 +02:00

244 B

Raw Permalink Blame History

lgtm,codescanning

URIs used in the whatwg-fetch library are now recognized as sinks for js/request-forgery. Affected packages are whatwg-fetch