CodeQL library for JavaScript
Search

Module ImproperCodeSanitization

Classes and predicates for reasoning about improper code sanitization.

Import path

import semmle.javascript.security.dataflow.ImproperCodeSanitizationCustomizations

Classes

FunctionStringConstruction

A leaf in a string-concatenation, where the string-concatenation constructs code that looks like a function.

HtmlSanitizerCallAsSource

A call to a HTML sanitizer seen as a source for improper code sanitization

JSONStringifyAsSource

A call to JSON.stringify() seen as a source for improper code sanitization

Sanitizer

A sanitizer for improper code sanitization.

Sink

A data flow sink for improper code sanitization.

Source

A data flow source for improper code sanitization.

StringReplaceCallAsSanitizer

A call to String.prototype.replace seen as a sanitizer for improper code sanitization. All calls to replace that happens after the initial improper sanitization is seen as a sanitizer.