codeql/libxml.sax.js at bafe22c50c9eaa5b6f31ddb6946e2ead66651627 - codeql - Gitea: Git with a cup of tea

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00

Files

Napalys Klicius 1851deb929 Removed libxmljs from being marked as sink for xml-bomb.

2025-07-15 09:33:11 +02:00

8 lines

211 B

JavaScript

Raw Blame History

 const express = require('express');
 const libxmljs = require('libxmljs');
 express().get('/some/path', function(req) {
   const parser = new libxmljs.SaxParser();
   parser.parseString(req.param("some-xml"));
 });