hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 09:13:20 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
66737402c20fc83b3d3a654dcccf4b26c901b100
codeql/javascript/ql/test/query-tests/Security/CWE-834/LoopBoundInjectionObviousNullPointer.js
Asger F 9be041e27d JS: Update OK-style comments to $-style
2025-02-28 13:27:28 +01:00

58 lines
1007 B
JavaScript
Raw Blame History

'use strict';
var express = require('express');
var router = new express.Router();
var rootRoute = router.route('foobar');
var _ = require("lodash");
rootRoute.post(function(req, res) {
nullPointer(req.body);
nullPointer2(req.body);
nullPointer3(req.body);
lodashPointer(req.body);
lodashArrowFunc(req.body);
});
function nullPointer(val) {
var ret = [];
for (var i = 0; i < val.length; i++) {
ret.push(val[i].foo + 42);
}
}
function nullPointer2(val) {
var ret = [];
for (var i = 0; i < val.length; i++) {
var element = val[i];
ret.push(element.foo + 42);
}
}
function nullPointer3(val) {
let arr = val.messaging
for (let i = 0; i < arr.length; i++) {
let event = val.messaging[i]
let sender = event.sender.id
}
}
function lodashPointer(val) {
return _.map(val, function(e) {
return e.foo;
})
}
function lodashArrowFunc(val) {
return _.map(val, (e) => {
return e.foo;
});
}
Reference in New Issue View Git Blame Copy Permalink