hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-05 05:35:13 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
d97eaba070cb0cbc7c74a257f6838d7f8a75b0fa
codeql/javascript/ql/src/meta/analysis-quality/SinksReachableFromSanitizer.ql
Asger Feldthaus fbca06f4e1 JS: Move TaintMetrics.qll into internal folder
2021-03-10 11:53:44 +00:00

23 lines
713 B
Plaintext
Raw Blame History

/**
* @name Sinks reachable from sanitizer
* @description The number of sinks reachable from a recognized sanitizer call.
* @kind metric
* @metricType project
* @metricAggregate sum
* @tags meta
* @id js/meta/sinks-reachable-from-sanitizer
*/
import javascript
import meta.internal.TaintMetrics
class BasicTaintConfiguration extends TaintTracking::Configuration {
BasicTaintConfiguration() { this = "BasicTaintConfiguration" }
override predicate isSource(DataFlow::Node node) { node = relevantSanitizerOutput() }
override predicate isSink(DataFlow::Node node) { node = relevantTaintSink() }
}
select projectRoot(), count(DataFlow::Node node | any(BasicTaintConfiguration cfg).hasFlow(_, node))
Reference in New Issue View Git Blame Copy Permalink