hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
3e074b2425c1af762bbad177d2bc11bb4c2855db
codeql/javascript/ql/lib/change-notes/released/2.6.6.md
github-actions[bot] 3e074b2425 Release preparation for version 2.22.1
2025-06-24 08:55:31 +00:00

738 B
Raw Blame History

2.6.6

Minor Analysis Improvements

  • Calls to sinon.match() are no longer incorrectly identified as regular expression operations.
  • Improved data flow tracking through middleware to handle default value and similar patterns.
  • Added req._parsedUrl as a remote input source.
  • Improved taint tracking through calls to serialize-javascript.
  • Removed encodeURI and escape functions from the sanitizer list for request forgery.
  • The JavaScript extractor now skips generated JavaScript files if the original TypeScript files are already present. It also skips any files in the output directory specified in the compilerOptions part of the tsconfig.json file.
  • Added support for Axios instances in the axios module.