hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 01:03:14 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
c3fe3e468c0b2d522284bb2eceda66a04d8914af
codeql/javascript/ql/test/query-tests/Security/CWE-918/Consistency.ql

18 lines
653 B
Plaintext
Raw Blame History

import javascript
import semmle.javascript.security.dataflow.RequestForgeryQuery as RequestForgery
import semmle.javascript.security.dataflow.ClientSideRequestForgeryQuery as ClientSideRequestForgery
import utils.test.ConsistencyChecking
query predicate resultInWrongFile(DataFlow::Node node) {
exists(DataFlow::Configuration cfg, string filePattern |
cfg instanceof RequestForgery::Configuration and
filePattern = ".*serverSide.*"
or
cfg instanceof ClientSideRequestForgery::Configuration and
filePattern = ".*clientSide.*"
|
cfg.hasFlow(_, node) and
not node.getFile().getRelativePath().regexpMatch(filePattern)
)
}
Reference in New Issue View Git Blame Copy Permalink