hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
54493eb99086c43c75d80ded8fa6b8ada24bf6b4
codeql/change-notes/1.19/analysis-javascript.md
Asger F 4797924bea JS: review comments
2018-09-21 14:46:21 +01:00

2.5 KiB
Raw Blame History

Improvements to JavaScript analysis

General improvements

  • Modelling of taint flow through array operations has been improved. This may give additional results for the security queries.

  • Support for popular libraries has been improved. Consequently, queries may produce more results on code bases that use the following features:

New queries

Query Tags Purpose
Enabling Node.js integration for Electron web content renderers (js/enabling-electron-renderer-node-integration) security, frameworks/electron, external/cwe/cwe-094 Highlights Electron web content renderer preferences with Node.js integration enabled, indicating a violation of CWE-94. Results are not shown on LGTM by default.
Stored cross-site scripting (js/stored-xss) security, external/cwe/cwe-079, external/cwe/cwe-116 Highlights uncontrolled stored values flowing into HTML content, indicating a violation of CWE-079. Results shown on LGTM by default.

Changes to existing queries

Query Expected impact Change
Regular expression injection Fewer false-positive results This rule now identifies calls to String.prototype.search with more precision.
Unbound event handler receiver Fewer false-positive results This rule now recognizes additional ways class methods can be bound.
Remote property injection Fewer results The precision of this rule has been revised to "medium". Results are no longer shown on LGTM by default.
Missing CSRF middleware Fewer false-positive results This rule now recognizes additional CSRF protection middlewares.

Changes to QL libraries