CodeQL library for JavaScript
Search

Predicate TaintTracking::deserializeStep

Holds if predsucc should be considered a taint-propagating data flow edge through data deserialization, such as JSON.parse.

Import path

import javascript
predicate deserializeStep(Node pred, Node succ)