CodeQL library for JavaScript/TypeScript
codeql/javascript-all 0.8.12 (changelog, source)
Search

Module ExceptionXssCustomizations

Provides default sources, sinks and sanitizers for reasoning about cross-site scripting vulnerabilities where the taint-flow passes through a thrown exception.

Import path

import semmle.javascript.security.dataflow.ExceptionXssCustomizations

Imports

javascript

Provides classes for working with JavaScript programs, as well as JSON, YAML and HTML.

Modules

ExceptionXss

Provides sources, sinks, and sanitizers for reasoning about cross-site scripting vulnerabilities where the taint-flow passes through a thrown exception.