CodeQL library for JavaScript/TypeScript
codeql/javascript-all 2.1.1 (changelog, source)
Search

Module Http

Import path

import javascript

Predicates

routeHandlerStep

Holds if there exists a step from pred to succ for a RouteHandler - beyond the usual steps defined by TypeTracking.

Classes

CookieCryptographicKey

A key used for signed cookies, viewed as a CryptographicKey.

CookieDefinition

An expression that sets a cookie in an HTTP response.

CookieMiddlewareInstance

An expression that creates a route handler that parses cookies

ExplicitHeaderDefinition

An expression that sets HTTP response headers explicitly.

HeaderDefinition

An expression that sets HTTP response headers.

ImplicitHeaderDefinition

An expression that sets HTTP response headers implicitly.

RedirectInvocation

A function invocation that causes a redirect response to be sent.

RequestHeaderAccess

An access to a header on an incoming HTTP request.

RequestInputAccess

An access to a user-controlled HTTP request input.

RequestMethodName

The name of an HTTP request method, in all-uppercase.

RequestNode

A dataflow node that may contain a request object.

ResponseBody

An expression whose value is sent as (part of) the body of an HTTP response.

ResponseNode

An dataflow node that may contain a response object.

ResponseSendArgument

An expression whose value is included directly (and not, say, via a template) in the body of an HTTP response.

RouteHandler

A callback for handling a request on some route on a server.

RouteHandlerCandidate

A function that looks like a route handler.

RouteHandlerCandidateContainer

An object that contains one or more potential route handlers.

RouteSetup

An expression that sets up a route on a server.

RouteSetupCandidate

A node that looks like a route setup on a server.

ServerDefinition

An expression that creates a new server.

SetCookieHeader

An expression that sets the Set-Cookie header of an HTTP response.

Modules

RouteHandlerCandidateContainer

Provides classes for working with objects that may contain one or more route handlers.

Servers

Boiler-plate implementation of a Server and its associated classes. Made for easily defining new HTTP servers