CodeQL library for JavaScript/TypeScript
codeql/javascript-all 2.2.2-dev (changelog, source)
Index
Search

Module TaintedUrlSuffix

Provides a flow state for reasoning about URLs with a tainted query and fragment part, which we collectively refer to as the “suffix” of the URL.

Import path

import semmle.javascript.security.TaintedUrlSuffixCustomizations

Imports

CommonFlowState

Contains a class with flow states that are used by multiple queries.

Predicates

isAdditionalFlowStep

Holds if there is a flow step node1 -> node2 involving the URL suffix flow state.

isBarrier

DEPRECATED. Use isStateBarrier(node, state) instead.

isStateBarrier

Holds if node should be blocked in state.

label

Gets the flow label representing a URL with a tainted query and fragment part.

source

Gets a remote flow source that is a tainted URL query or fragment part from window.location.

step

DEPRECATED. Use isAdditionalFlowStep instead.

Classes

TaintedUrlSuffixLabel

The flow label representing a URL with a tainted query and fragment part.