codeql/0.0.7.md at 9440a450153fdff99f539ade1c1928e22abd8dcc - codeql - Gitea: Git with a cup of tea

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2026-01-27 05:13:00 +01:00

Files

github-actions[bot] 1dfcf427aa Release preparation for version 2.7.5

2022-01-04 14:44:56 +00:00

500 B

Raw Blame History

0.0.7

Minor Analysis Improvements

Support for handlebars templates has improved. Raw interpolation tags of the form {{& ... }} are now recognized, as well as whitespace-trimming tags like {{~ ... }}.
Data flow is now tracked across middleware functions in more cases, leading to more security results in general. Affected packages are express and fastify.
js/missing-token-validation has been made more precise, yielding both fewer false positives and more true positives.