hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-22 07:15:15 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
9ef5a97b4e3a4073a2c2fe1008e4761ef36c9874
codeql/javascript/ql/test/query-tests/Security
History
Asger F 9ef5a97b4e JS: Accept alerts in HardcodedCredentials and add Sink tags 
This query now uses the source as the primary alert location, and some old comments appeared at the sink.

To make the change easier to verify, this commit migrates the test to include Sink tags. (Source/Sink tags in general are added later)
2025-02-28 13:28:51 +01:00
..
CWE-020
JS: Accept trivial test changes
2025-02-28 13:27:43 +01:00
CWE-022
JS: Accept trivial test changes
2025-02-28 13:27:43 +01:00
CWE-073
JS: Accept raw test output
2025-02-28 13:27:38 +01:00
CWE-078
JS: Stop overriding entire module.exports object in test
2025-02-28 13:28:09 +01:00
CWE-079
JS: Mark regressions due to lack of local field steps
2025-02-28 13:27:52 +01:00
CWE-089
JS: Fix the spurious flow
2025-02-28 13:28:02 +01:00
CWE-094
JS: Mark regressions due to lack of local field steps
2025-02-28 13:27:52 +01:00
CWE-116
JS: Accept a double-flagged line
2025-02-28 13:27:51 +01:00
CWE-117
JS: Move some alerts to their correct location
2025-02-28 13:27:40 +01:00
CWE-134
JS: Enable post-processing for all .qlref files
2025-02-28 13:27:33 +01:00
CWE-178
JS: Accept trivial test changes
2025-02-28 13:27:43 +01:00
CWE-200
JS: Remove alert expectation from step
2025-02-28 13:28:06 +01:00
CWE-201
JS: Accept trivial test changes
2025-02-28 13:27:43 +01:00
CWE-209
JS: Accept raw test output
2025-02-28 13:27:38 +01:00
CWE-295
JS: Accept trivial test changes
2025-02-28 13:27:43 +01:00
CWE-300
JS: Accept raw test output
2025-02-28 13:27:38 +01:00
CWE-312
JS: Accept some more alerts from CleartextStorage
2025-02-28 13:28:14 +01:00
CWE-313
JS: Accept raw test output
2025-02-28 13:27:38 +01:00
CWE-326
JS: Accept alerts for InsufficientKeySize
2025-02-28 13:28:15 +01:00
CWE-327
JS: Add query ID to some alerts
2025-02-28 13:27:41 +01:00
CWE-338
JS: Accept InsecureRandomness alerts
2025-02-28 13:28:17 +01:00
CWE-346
JS: Accept raw test output
2025-02-28 13:27:38 +01:00
CWE-347
JS: Enable post-processing for all .qlref files
2025-02-28 13:27:33 +01:00
CWE-352
JS: Accept raw test output
2025-02-28 13:27:38 +01:00
CWE-367
JS: Move some alerts to their correct location
2025-02-28 13:27:40 +01:00
CWE-377
JS: Accept raw test output
2025-02-28 13:27:38 +01:00
CWE-384
JS: Move some alerts to their correct location
2025-02-28 13:27:40 +01:00
CWE-400
JS: Add a query ID
2025-02-28 13:28:28 +01:00
CWE-451
JS: Mark a spurious alert in missing-x-frame-options
2025-02-28 13:28:30 +01:00
CWE-502
JS: Enable post-processing for all .qlref files
2025-02-28 13:27:33 +01:00
CWE-506
JS: Accept alerts for HardcodedDataInterpretedAsCode
2025-02-28 13:28:32 +01:00
CWE-522-DecompressionBombs
JS: Mark what seems to be missing alerts for fflate
2025-02-28 13:28:35 +01:00
CWE-598
JS: Fix a comment
2025-02-28 13:28:36 +01:00
CWE-601
JS: Accept a spurious alert
2025-02-28 13:28:46 +01:00
CWE-611
JS: Update output after line number change
2025-02-28 13:27:31 +01:00
CWE-614
JS: Accept some suboptimal alert locations
2025-02-28 13:28:47 +01:00
CWE-640
JS: Enable post-processing for all .qlref files
2025-02-28 13:27:33 +01:00
CWE-643
JS: Accept raw test output
2025-02-28 13:27:38 +01:00
CWE-693
JS: Move an alert and add RelatedLocations
2025-02-28 13:28:48 +01:00
CWE-730
JS: Add query ID to some alerts
2025-02-28 13:27:41 +01:00
CWE-754
JS: Accept trivial test changes
2025-02-28 13:27:43 +01:00
CWE-770
JS: Accept trivial test changes
2025-02-28 13:27:43 +01:00
CWE-776
JS: Accept raw test output
2025-02-28 13:27:38 +01:00
CWE-798
JS: Accept alerts in HardcodedCredentials and add Sink tags
2025-02-28 13:28:51 +01:00
CWE-807
JS: Accept raw test output
2025-02-28 13:27:38 +01:00
CWE-829
JS: Move some alerts to their correct location
2025-02-28 13:27:40 +01:00
CWE-830
JS: Accept raw test output
2025-02-28 13:27:38 +01:00
CWE-834
JS: Accept raw test output
2025-02-28 13:27:38 +01:00
CWE-843
JS: Accept raw test output
2025-02-28 13:27:38 +01:00
CWE-862
JS: Accept raw test output
2025-02-28 13:27:38 +01:00
CWE-912
JS: Accept trivial test changes
2025-02-28 13:27:43 +01:00
CWE-915
JS: Mark regressions due to lack of local field steps
2025-02-28 13:27:52 +01:00
CWE-916
JS: Enable post-processing for all .qlref files
2025-02-28 13:27:33 +01:00
CWE-918
JS: Accept raw test output
2025-02-28 13:27:38 +01:00
CWE-1004
JS: Move some alerts to their correct location
2025-02-28 13:27:40 +01:00
CWE-1275
JS: Move some alerts to their correct location
2025-02-28 13:27:40 +01:00