mirror of
https://github.com/github/codeql.git
synced 2025-12-16 16:53:25 +01:00
149 lines
8.7 KiB
Plaintext
149 lines
8.7 KiB
Plaintext
ql/javascript/ql/src/AlertSuppression.ql
|
|
ql/javascript/ql/src/AngularJS/DeadAngularJSEventListener.ql
|
|
ql/javascript/ql/src/AngularJS/UnusedAngularDependency.ql
|
|
ql/javascript/ql/src/Comments/CommentedOutCode.ql
|
|
ql/javascript/ql/src/Comments/FCommentedOutCode.ql
|
|
ql/javascript/ql/src/Comments/TodoComments.ql
|
|
ql/javascript/ql/src/DOM/Alert.ql
|
|
ql/javascript/ql/src/DOM/AmbiguousIdAttribute.ql
|
|
ql/javascript/ql/src/DOM/ConflictingAttributes.ql
|
|
ql/javascript/ql/src/DOM/TargetBlank.ql
|
|
ql/javascript/ql/src/Declarations/DeadStoreOfGlobal.ql
|
|
ql/javascript/ql/src/Declarations/RedeclaredVariable.ql
|
|
ql/javascript/ql/src/Declarations/TooManyParameters.ql
|
|
ql/javascript/ql/src/Declarations/UnstableCyclicImport.ql
|
|
ql/javascript/ql/src/Declarations/UnusedParameter.ql
|
|
ql/javascript/ql/src/Declarations/UnusedProperty.ql
|
|
ql/javascript/ql/src/Electron/EnablingNodeIntegration.ql
|
|
ql/javascript/ql/src/Expressions/BitwiseSignCheck.ql
|
|
ql/javascript/ql/src/Expressions/CompareIdenticalValues.ql
|
|
ql/javascript/ql/src/Expressions/MisspelledIdentifier.ql
|
|
ql/javascript/ql/src/JSDoc/BadParamTag.ql
|
|
ql/javascript/ql/src/JSDoc/JSDocForNonExistentParameter.ql
|
|
ql/javascript/ql/src/JSDoc/UndocumentedParameter.ql
|
|
ql/javascript/ql/src/LanguageFeatures/ArgumentsCallerCallee.ql
|
|
ql/javascript/ql/src/LanguageFeatures/DebuggerStatement.ql
|
|
ql/javascript/ql/src/LanguageFeatures/EmptyArrayInit.ql
|
|
ql/javascript/ql/src/LanguageFeatures/Eval.ql
|
|
ql/javascript/ql/src/LanguageFeatures/JumpFromFinally.ql
|
|
ql/javascript/ql/src/LanguageFeatures/SetterIgnoresParameter.ql
|
|
ql/javascript/ql/src/LanguageFeatures/WrongExtensionJSON.ql
|
|
ql/javascript/ql/src/Metrics/Dependencies/ExternalDependencies.ql
|
|
ql/javascript/ql/src/Metrics/Dependencies/ExternalDependenciesSourceLinks.ql
|
|
ql/javascript/ql/src/Metrics/FCommentRatio.ql
|
|
ql/javascript/ql/src/Metrics/FCyclomaticComplexity.ql
|
|
ql/javascript/ql/src/Metrics/FFunctions.ql
|
|
ql/javascript/ql/src/Metrics/FLines.ql
|
|
ql/javascript/ql/src/Metrics/FLinesOfCode.ql
|
|
ql/javascript/ql/src/Metrics/FLinesOfComment.ql
|
|
ql/javascript/ql/src/Metrics/FLinesOfDuplicatedCode.ql
|
|
ql/javascript/ql/src/Metrics/FLinesOfSimilarCode.ql
|
|
ql/javascript/ql/src/Metrics/FNumberOfStatements.ql
|
|
ql/javascript/ql/src/Metrics/FNumberOfTests.ql
|
|
ql/javascript/ql/src/Metrics/FUseOfES6.ql
|
|
ql/javascript/ql/src/Metrics/FunCyclomaticComplexity.ql
|
|
ql/javascript/ql/src/Metrics/FunLinesOfCode.ql
|
|
ql/javascript/ql/src/NodeJS/CyclicImport.ql
|
|
ql/javascript/ql/src/NodeJS/DubiousImport.ql
|
|
ql/javascript/ql/src/NodeJS/UnresolvableImport.ql
|
|
ql/javascript/ql/src/NodeJS/UnusedDependency.ql
|
|
ql/javascript/ql/src/Performance/NonLocalForIn.ql
|
|
ql/javascript/ql/src/Performance/ReassignParameterAndUseArguments.ql
|
|
ql/javascript/ql/src/RegExp/BackspaceEscape.ql
|
|
ql/javascript/ql/src/RegExp/MalformedRegExp.ql
|
|
ql/javascript/ql/src/Security/CWE-020/ExternalAPIsUsedWithUntrustedData.ql
|
|
ql/javascript/ql/src/Security/CWE-020/UntrustedDataToExternalAPI.ql
|
|
ql/javascript/ql/src/Security/CWE-313/PasswordInConfigurationFile.ql
|
|
ql/javascript/ql/src/Security/CWE-451/MissingXFrameOptions.ql
|
|
ql/javascript/ql/src/Security/CWE-798/HardcodedCredentials.ql
|
|
ql/javascript/ql/src/Security/CWE-807/DifferentKindsComparisonBypass.ql
|
|
ql/javascript/ql/src/Security/trest/test.ql
|
|
ql/javascript/ql/src/Statements/EphemeralLoop.ql
|
|
ql/javascript/ql/src/Statements/ImplicitReturn.ql
|
|
ql/javascript/ql/src/Statements/InconsistentReturn.ql
|
|
ql/javascript/ql/src/Statements/NestedLoopsSameVariable.ql
|
|
ql/javascript/ql/src/Statements/ReturnOutsideFunction.ql
|
|
ql/javascript/ql/src/Summary/TaintSinks.ql
|
|
ql/javascript/ql/src/Summary/TaintSources.ql
|
|
ql/javascript/ql/src/definitions.ql
|
|
ql/javascript/ql/src/experimental/Security/CWE-094-dataURL/CodeInjection.ql
|
|
ql/javascript/ql/src/experimental/Security/CWE-099/EnvValueAndKeyInjection.ql
|
|
ql/javascript/ql/src/experimental/Security/CWE-099/EnvValueInjection.ql
|
|
ql/javascript/ql/src/experimental/Security/CWE-340/TokenBuiltFromUUID.ql
|
|
ql/javascript/ql/src/experimental/Security/CWE-347/decodeJwtWithoutVerification.ql
|
|
ql/javascript/ql/src/experimental/Security/CWE-347/decodeJwtWithoutVerificationLocalSource.ql
|
|
ql/javascript/ql/src/experimental/Security/CWE-444/InsecureHttpParser.ql
|
|
ql/javascript/ql/src/experimental/Security/CWE-522-DecompressionBombs/DecompressionBombs.ql
|
|
ql/javascript/ql/src/experimental/Security/CWE-918/SSRF.ql
|
|
ql/javascript/ql/src/experimental/Security/CWE-942/CorsPermissiveConfiguration.ql
|
|
ql/javascript/ql/src/experimental/StandardLibrary/MultipleArgumentsToSetConstructor.ql
|
|
ql/javascript/ql/src/experimental/heuristics/ql/src/Security/CWE-020/UntrustedDataToExternalAPI.ql
|
|
ql/javascript/ql/src/experimental/heuristics/ql/src/Security/CWE-078/CommandInjection.ql
|
|
ql/javascript/ql/src/experimental/heuristics/ql/src/Security/CWE-079/Xss.ql
|
|
ql/javascript/ql/src/experimental/heuristics/ql/src/Security/CWE-089/SqlInjection.ql
|
|
ql/javascript/ql/src/experimental/heuristics/ql/src/Security/CWE-094/CodeInjection.ql
|
|
ql/javascript/ql/src/experimental/heuristics/ql/src/Security/CWE-117/LogInjection.ql
|
|
ql/javascript/ql/src/experimental/heuristics/ql/src/Security/CWE-134/TaintedFormatString.ql
|
|
ql/javascript/ql/src/experimental/heuristics/ql/src/Security/CWE-346/CorsMisconfigurationForCredentials.ql
|
|
ql/javascript/ql/src/experimental/heuristics/ql/src/Security/CWE-400/RemotePropertyInjection.ql
|
|
ql/javascript/ql/src/experimental/heuristics/ql/src/Security/CWE-502/UnsafeDeserialization.ql
|
|
ql/javascript/ql/src/experimental/heuristics/ql/src/Security/CWE-611/Xxe.ql
|
|
ql/javascript/ql/src/experimental/heuristics/ql/src/Security/CWE-643/XpathInjection.ql
|
|
ql/javascript/ql/src/experimental/heuristics/ql/src/Security/CWE-730/RegExpInjection.ql
|
|
ql/javascript/ql/src/experimental/heuristics/ql/src/Security/CWE-770/ResourceExhaustion.ql
|
|
ql/javascript/ql/src/experimental/heuristics/ql/src/Security/CWE-776/XmlBomb.ql
|
|
ql/javascript/ql/src/experimental/heuristics/ql/src/Security/CWE-807/ConditionalBypass.ql
|
|
ql/javascript/ql/src/experimental/heuristics/ql/src/Security/CWE-915/PrototypePollutingAssignment.ql
|
|
ql/javascript/ql/src/external/DuplicateFunction.ql
|
|
ql/javascript/ql/src/external/DuplicateToplevel.ql
|
|
ql/javascript/ql/src/external/SimilarFunction.ql
|
|
ql/javascript/ql/src/external/SimilarToplevel.ql
|
|
ql/javascript/ql/src/filters/ClassifyFiles.ql
|
|
ql/javascript/ql/src/meta/ApiGraphs/ApiGraphEdges.ql
|
|
ql/javascript/ql/src/meta/ApiGraphs/ApiGraphNodes.ql
|
|
ql/javascript/ql/src/meta/ApiGraphs/ApiGraphPointsToEdges.ql
|
|
ql/javascript/ql/src/meta/ApiGraphs/ApiGraphRhsNodes.ql
|
|
ql/javascript/ql/src/meta/ApiGraphs/ApiGraphUseNodes.ql
|
|
ql/javascript/ql/src/meta/Consistency.ql
|
|
ql/javascript/ql/src/meta/SSA/DeadDef.ql
|
|
ql/javascript/ql/src/meta/SSA/Dominance.ql
|
|
ql/javascript/ql/src/meta/SSA/MultipleDefs.ql
|
|
ql/javascript/ql/src/meta/SSA/MultipleRefinementInputs.ql
|
|
ql/javascript/ql/src/meta/SSA/NoDefs.ql
|
|
ql/javascript/ql/src/meta/SSA/NoPhiInputs.ql
|
|
ql/javascript/ql/src/meta/SSA/NoRefinementInputs.ql
|
|
ql/javascript/ql/src/meta/SSA/SinglePhiInput.ql
|
|
ql/javascript/ql/src/meta/alerts/CallGraph.ql
|
|
ql/javascript/ql/src/meta/alerts/ImportGraph.ql
|
|
ql/javascript/ql/src/meta/alerts/LibraryInputs.ql
|
|
ql/javascript/ql/src/meta/alerts/TaintSinks.ql
|
|
ql/javascript/ql/src/meta/alerts/TaintSources.ql
|
|
ql/javascript/ql/src/meta/alerts/TaintedNodes.ql
|
|
ql/javascript/ql/src/meta/alerts/ThreatModelSources.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/CalledFunctionCandidates.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/CalledFunctionRatio.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/CalledFunctions.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/DomValueRefs.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/NumModules.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/ResolvableCallCandidates.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/ResolvableCallRatio.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/ResolvableCalls.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/ResolvableImports.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/RouteHandlers.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/SanitizersReachableFromSource.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/SinksReachableFromSanitizer.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/TaintSinks.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/TaintSources.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/TaintSteps.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/TaintedNodes.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/UncalledFunctions.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/UnmodelledSteps.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/UnpromotedRouteHandlerCandidate.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/UnpromotedRouteSetupCandidate.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/UnresolvableCalls.ql
|
|
ql/javascript/ql/src/meta/analysis-quality/UnresolvableImports.ql
|
|
ql/javascript/ql/src/meta/extraction-metrics/FileData.ql
|
|
ql/javascript/ql/src/meta/extraction-metrics/MissingMetrics.ql
|
|
ql/javascript/ql/src/meta/extraction-metrics/PhaseTimings.ql
|
|
ql/javascript/ql/src/meta/types/TypedExprs.ql
|