CodeQL library for JavaScript
codeql/javascript-all 0.4.1 (changelog, source)
Search

Predicate LoopBoundInjection::loopableLodashMethod

Holds if name is a method from lodash vulnerable to a DoS attack if called with a tainted object.

Import path

import semmle.javascript.security.dataflow.LoopBoundInjectionCustomizations
predicate loopableLodashMethod(string name)