CodeQL library for JavaScript/TypeScript
codeql/javascript-all 0.8.15-dev (changelog, source)
Index
Search

Module TaintedUrlSuffix

Provides a flow label for reasoning about URLs with a tainted query and fragment part, which we collectively refer to as the “suffix” of the URL.

Import path

import semmle.javascript.security.TaintedUrlSuffix

Predicates

label

Gets the flow label representing a URL with a tainted query and fragment part.

source

Gets a remote flow source that is a tainted URL query or fragment part from window.location.

step

Holds if there is a flow step src -> dst involving the URL suffix taint label.

Classes

TaintedUrlSuffixLabel

The flow label representing a URL with a tainted query and fragment part.