mirror of
https://github.com/github/codeql.git
synced 2025-12-18 01:33:15 +01:00
15 lines
366 B
JavaScript
15 lines
366 B
JavaScript
export function unsafeDeserialize(data) {
|
|
return eval("(" + data + ")"); // NOT OK
|
|
}
|
|
|
|
export function unsafeGetter(obj, name) {
|
|
return eval("obj." + name); // NOT OK
|
|
}
|
|
|
|
export function safeAssignment(obj, value) {
|
|
eval("obj.foo = " + JSON.stringify(value)); // OK
|
|
}
|
|
|
|
global.unsafeDeserialize = function (data) {
|
|
return eval("(" + data + ")"); // NOT OK
|
|
} |