CodeQL library for JavaScript/TypeScript
codeql/javascript-all 0.8.12 (changelog, source)
Search

Module IncompleteHtmlAttributeSanitizationCustomizations

Provides default sources, sinks and sanitizers for reasoning about incomplete HTML sanitization vulnerabilities, as well as extension points for adding your own.

Import path

import semmle.javascript.security.dataflow.IncompleteHtmlAttributeSanitizationCustomizations

Imports

IncompleteBlacklistSanitizer

Provides classes and predicates for working with incomplete blacklist sanitizers.

javascript

Provides classes for working with JavaScript programs, as well as JSON, YAML and HTML.

Modules