CodeQL library for JavaScript
Search

Predicate LoopBoundInjection::loopableLodashMethod

Holds if name is a method from lodash vulnerable to a DoS attack if called with a tainted object.

Import path

import semmle.javascript.security.dataflow.LoopBoundInjectionCustomizations
predicate loopableLodashMethod(string name)