Erik Krogh Kristensen f67219965e Merge pull request #11082 from erik-krogh/shellArr ...

JS: treat arrays that gets executed with shell:true as a sink for `js/shell-command-constructed-from-input`

2022-11-22 13:03:50 +01:00

..

CommandInjection

update expected outputs after reordering tests

2022-10-28 10:16:21 +02:00

IndirectCommandInjection

reorder the CWE-078 tests into subdirectories

2022-10-28 10:16:21 +02:00

SecondOrderCommandInjection

expand the explanation to include with arguments make the commands vulnerable

2022-11-01 14:24:23 +01:00

ShellCommandInjectionFromEnvironment

reorder the CWE-078 tests into subdirectories

2022-10-28 10:16:21 +02:00

UnsafeShellCommandConstruction

Merge pull request #11082 from erik-krogh/shellArr

2022-11-22 13:03:50 +01:00

UselessUseOfCat

update expected outputs after reordering tests

2022-10-28 10:16:21 +02:00

Consistency.expected

JS: fixup for execa.shell and execa.shellSync models

2020-12-22 09:06:18 +01:00

Consistency.ql

JS: don't use deprecated files in tests

2022-11-17 22:12:50 +01:00