hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 01:03:14 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
8583257574311191dc8d293aa0132024c95a7613
codeql/javascript/ql/test/query-tests/Security/CWE-730/Threat-models-disabled/RegExpInjectionGood.js
Napalys Klicius 8583257574 Created new folder for test with threat models disabled
2025-07-31 13:20:30 +02:00

12 lines
340 B
JavaScript
Raw Blame History

var express = require('express');
var _ = require('lodash');
var app = express();
app.get('/findKey', function(req, res) {
var key = req.param("key"), input = req.param("input");
// OK - User input is sanitized before constructing the regex
var safeKey = _.escapeRegExp(key);
var re = new RegExp("\\b" + safeKey + "=(.*)\n");
});
Reference in New Issue View Git Blame Copy Permalink