CodeQL library for JavaScript/TypeScript
codeql/javascript-all 2.0.3-dev (changelog, source)
Search

Predicate DomBasedXss::isOptionallySanitizedNode

Holds if node should be considered optionally sanitized as it occurs in a branch that controls whether sanitization is enabled.

For example, in sanitized = sanitize ? sanitizer(source) : source, the right-hand source expression is considered an optionally sanitized node.

Import path

import semmle.javascript.security.dataflow.DomBasedXssCustomizations
predicate isOptionallySanitizedNode(Node node)