hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 17:23:36 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
66737402c20fc83b3d3a654dcccf4b26c901b100
codeql/javascript/ql/test/query-tests/Security/CWE-834/LoopBoundInjectionLodash.js
Asger F 64d39da5f8 JS: Accept Sources/Sink tags
2025-02-28 13:29:30 +01:00

15 lines
286 B
JavaScript
Raw Blame History

'use strict';
var _ = require('lodash');
var express = require('express');
var router = new express.Router();
var rootRoute = router.route('foobar');
rootRoute.post(function(req, res) {
problem(req.body); // $ Source
});
function problem(val) {
_.chunk(val, 2); // $ Alert
}
Reference in New Issue View Git Blame Copy Permalink