CodeQL library for JavaScript
Search

Module PrototypePollutingAssignment

Provides sources, sinks, and sanitizers for reasoning about assignments that my cause prototype pollution.

Import path

import semmle.javascript.security.dataflow.PrototypePollutingAssignmentCustomizations

Classes

ObjectPrototype

Flow label representing the Object.prototype value.

Sanitizer

A sanitizer for untrusted property names.

Sink

A data flow sink for prototype-polluting assignments or untrusted property names.

Source

A data flow source for untrusted data from which the special __proto__ property name may be arise.