Module ImproperCodeSanitization
Classes and predicates for reasoning about improper code sanitization.
Import path
import semmle.javascript.security.dataflow.ImproperCodeSanitizationCustomizations
Classes
FunctionStringConstruction | A leaf in a string-concatenation, where the string-concatenation constructs code that looks like a function. |
HtmlSanitizerCallAsSource | A call to an HTML sanitizer seen as a source for improper code sanitization |
JsonStringifyAsSource | A call to |
Sanitizer | A sanitizer for improper code sanitization. |
Sink | A data flow sink for improper code sanitization. |
Source | A data flow source for improper code sanitization. |
StringReplaceCallAsSanitizer | A call to |