Predicate ReflectedXss :: nonHtmlContentTypeHeader

DEPRECATED: Holds if h may send a response with a content type other than HTML.

Import path


                                import semmle.javascript.security.dataflow.ReflectedXssCustomizations


                            
                                
                                    HeaderDefinition
                                
                                 
                            
                            
                                
                                    nonHtmlContentTypeHeader
                                
                            
                            
                                (
                                
                                    
                                        RouteHandler
                                    
                                     
                                    h
                                
                                )