This website requires JavaScript.
Explore
Help
Register
Sign In
hohn
/
codeql
Watch
1
Star
0
Fork
0
You've already forked codeql
mirror of
https://github.com/github/codeql.git
synced
2026-04-30 11:15:13 +02:00
Code
Issues
Packages
Projects
Releases
Wiki
Activity
Files
40032f295ae1625c51eba9075b905bdb6f3ce1df
codeql
/
javascript
/
ql
/
test
/
query-tests
/
Security
/
CWE-078
History
erik-krogh
40032f295a
treat arrays that gets executed with shell:true as a sink for
js/shell-command-constructed-from-input
2022-11-07 09:19:05 +01:00
..
CommandInjection
update expected outputs after reordering tests
2022-10-28 10:16:21 +02:00
IndirectCommandInjection
reorder the CWE-078 tests into subdirectories
2022-10-28 10:16:21 +02:00
SecondOrderCommandInjection
expand the explanation to include with arguments make the commands vulnerable
2022-11-01 14:24:23 +01:00
ShellCommandInjectionFromEnvironment
reorder the CWE-078 tests into subdirectories
2022-10-28 10:16:21 +02:00
UnsafeShellCommandConstruction
treat arrays that gets executed with shell:true as a sink for
js/shell-command-constructed-from-input
2022-11-07 09:19:05 +01:00
UselessUseOfCat
update expected outputs after reordering tests
2022-10-28 10:16:21 +02:00
Consistency.expected
JS: fixup for execa.shell and execa.shellSync models
2020-12-22 09:06:18 +01:00
Consistency.ql
add second-order-command-injection query
2022-10-30 21:20:47 +01:00
