CodeQL library for JavaScript/TypeScript
codeql/javascript-all 2.2.1-dev (changelog, source)
Search

Predicate ReflectedXss::xssSafeContentTypeHeader

Holds if h may send a response with a content type that is safe for XSS.

Import path

import semmle.javascript.security.dataflow.ReflectedXssCustomizations
HeaderDefinition xssSafeContentTypeHeader(RouteHandler h)