mirror of
https://github.com/github/codeql.git
synced 2025-12-18 01:33:15 +01:00
28 lines
560 B
JavaScript
28 lines
560 B
JavaScript
export function unsafeDeserialize(data) {
|
|
return eval("(" + data + ")"); // NOT OK
|
|
}
|
|
|
|
export function unsafeGetter(obj, name) {
|
|
return eval("obj." + name); // NOT OK
|
|
}
|
|
|
|
export function safeAssignment(obj, value) {
|
|
eval("obj.foo = " + JSON.stringify(value)); // OK
|
|
}
|
|
|
|
global.unsafeDeserialize = function (data) {
|
|
return eval("(" + data + ")"); // NOT OK
|
|
}
|
|
|
|
const matter = require("gray-matter");
|
|
|
|
export function greySink(data) {
|
|
const str = `
|
|
---js
|
|
${data}
|
|
---
|
|
`
|
|
const { content } = matter(str);
|
|
console.log(content);
|
|
}
|