hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-22 11:46:32 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
86d032e2ea8021ab7af9867d24bd135cba2d057c
codeql/javascript/ql/test/query-tests/Security
History
Esben Sparre Andreasen 04b5a794f1 Merge pull request #3313 from esbena/js/typical-bad-sanitizer 
New query: Incomplete HTML attribute sanitization
2020-04-27 14:31:13 +02:00
..
CWE-020
JS: Recognize more forms of scheme checks
2020-04-06 12:30:03 +01:00
CWE-022
basic support for util.promisify for NodeJSFileSystemAccess
2020-04-17 09:54:37 +02:00
CWE-078
add support for util.promisify with child_process calls
2020-04-15 19:16:30 +02:00
CWE-079
slightly expand the $().each model
2020-04-23 16:49:47 +02:00
CWE-089
JS: fixup mongoose test
2020-03-16 22:11:22 +01:00
CWE-094
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-116
JS: add query for incomplete HTML attribute sanitization
2020-04-24 09:17:46 +02:00
CWE-134
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-200
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-201
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-209
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-312
JS: Update some queries that used data as source
2020-03-18 11:55:13 +00:00
CWE-313
JS: whitelist some hardcoded dummy-passwords in two queries
2019-09-16 10:11:43 +02:00
CWE-327
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-338
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-346
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-352
JS: Recognize req.user a cookie access
2020-01-24 09:44:20 +00:00
CWE-400
JS: Add explanation for test failure
2020-03-18 11:55:13 +00:00
CWE-451
QL code and tests for C#/C++/JavaScript.
2018-08-02 17:53:23 +01:00
CWE-502
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-506
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-601
JS: Review comments
2019-12-06 11:53:06 +00:00
CWE-611
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-640
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-643
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-730
remove FP from js/regexpinjection where no regexp was constructed
2019-12-19 10:47:03 +01:00
CWE-754
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-770
JavaScript: Add support for rate-limiter-flexible package.
2019-09-18 12:25:33 +01:00
CWE-776
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-798
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-807
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-834
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-843
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-912
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-916
JavaScript: Update expected output.
2019-10-29 15:36:24 +00:00
CWE-918
refactor chrome-remote-interface to use type-tracking promise steps
2020-03-10 12:27:21 +01:00
Summaries
JavaScript: Move flow summaries to experimental.
2020-03-09 12:57:20 +00:00