CodeQL library for JavaScript
Search

Module PrototypePollutingAssignment

Provides sources, sinks, and sanitizers for reasoning about assignments that my cause prototype pollution.

Import path

import semmle.javascript.security.dataflow.PrototypePollutingAssignmentCustomizations

Classes

ExternalInputSource

A parameter of an exported function, seen as a source prototype-polluting assignment.

ObjectPrototype

Flow label representing the Object.prototype value.

Sanitizer

A sanitizer for untrusted property names.

Sink

A data flow sink for prototype-polluting assignments or untrusted property names.

Source

A data flow source for untrusted data from which the special __proto__ property name may be arise.

Aliases

Exports

EXPERIMENTAL. This API may change in the future.