CodeQL library for JavaScript/TypeScript
codeql/javascript-all 2.6.21-dev (changelog, source)
Index
Search

Module DeepObjectResourceExhaustionQuery

Provides a taint tracking configuration for reasoning about DoS attacks due to inefficient handling of user-controlled objects.

Import path

import semmle.javascript.security.dataflow.DeepObjectResourceExhaustionQuery

Imports

DeepObjectResourceExhaustion

Provides sources, sinks and sanitizers for reasoning about DoS attacks due to inefficient handling of user-controlled objects.

TaintedObject

Provides methods for reasoning about the flow of deeply tainted objects, such as JSON objects parsed from user-controlled data.

javascript

Provides classes for working with JavaScript programs, as well as JSON, YAML and HTML.

Classes

Configuration

DEPRECATED. Use the DeepObjectResourceExhaustionFlow module instead.

Modules

DeepObjectResourceExhaustionConfig

A taint tracking configuration for reasoning about DoS attacks due to inefficient handling of user-controlled objects.

Aliases

DeepObjectResourceExhaustionFlow

Taint tracking for reasoning about DoS attacks due to inefficient handling of user-controlled objects.