CodeQL library for JavaScript/TypeScript
codeql/javascript-all 2.0.2 (changelog, source)
Search

Module Express

Import path

import javascript

Predicates

appCreation

Gets a data flow node that corresponds to an expression that creates a new Express application.

getAParamsObjectReference

Gets a reference to the “params” object from a request-object originating from route-handler rh.

getAQueryObjectReference

Gets a reference to the “query” object from a request-object originating from route-handler rh.

isRequest

Holds if e is an HTTP request object.

isResponse

Holds if e is an HTTP response object.

routeSetupMethodName

Gets the name of an Express router method that sets up a route.

routerCreation

Gets a data flow node that corresponds to an expression that creates a new Express router (possibly an application).

Classes

Credentials

An expression that is passed as expressBasicAuth({ users: { <user>: <password> }}).

RequestBodyAccess

An access to the HTTP request body.

RequestInputAccess

An access to a user-controlled Express request input.

RequestNode

An Express request expression.

RequestSource

An Express request source.

ResponseNode

An Express response expression.

ResponseSource

An Express response source.

RouteHandler

A function used as an Express route handler.

RouteHandlerNode

An expression used as an Express route handler, such as submitHandler below: app.post('/submit', submitHandler)

RouteSetup

A call to an Express router method that sets up a route.

RouteSetupCandidate

A call that looks like a route setup on an Express server.

RouterDefinition

An Express router.

SetCookie

An invocation of the cookie method on an HTTP response object.

SetMultipleHeaders

An invocation of the set or header method on an HTTP response object that sets multiple headers.

StandardRouteHandler

An Express route handler installed by a route setup.

TemplateObjectInput

An object passed to the render method of an HTTP response object.