CodeQL library for JavaScript/TypeScript
codeql/javascript-all 2.0.1-dev (changelog, source)
Search

Module RequestForgery

Import path

import semmle.javascript.security.dataflow.RequestForgeryCustomizations

Predicates

isAdditionalRequestForgeryStep

Holds if there is a taint step from pred to succ for request forgery.

Classes

Sanitizer

A sanitizer for request forgery.

Sink

A data flow sink for request forgery.

Source

A data flow source for request forgery.

UriEncodingSanitizer

A call to encodeURI or encodeURIComponent, viewed as a sanitizer for request forgery. These calls will escape “/” to “%2F”, which is not a problem for request forgery. The result from calling encodeURI or encodeURIComponent is not a valid URL, and only makes sense as a part of a URL.