CodeQL library for JavaScript/TypeScript
codeql/javascript-all 2.2.1-dev (changelog, source)
Search

Module ServerSideUrlRedirect

Import path

import semmle.javascript.security.dataflow.ServerSideUrlRedirectCustomizations

Classes

LocationHeaderSink

A definition of the HTTP “Location” header, considered as a sink for Configuration.

RedirectSink

An HTTP redirect, considered as a sink for Configuration.

Sanitizer

A sanitizer for unvalidated URL redirect vulnerabilities.

Sink

A data flow sink for unvalidated URL redirect vulnerabilities.

Source

A data flow source for unvalidated URL redirect vulnerabilities.

ThirdPartyRequestInputAccessAsSource

A source of third-party user input, considered as a flow source for URL redirects.

WebViewUrlSink

A URL attribute for a React Native WebView.