CodeQL library for JavaScript/TypeScript
codeql/javascript-all 0.9.1 (changelog, source)
Search

Predicate UnsafeDynamicMethodAccess::unsafeFunction

Gets the flow label describing values that may refer to an unsafe function as a result of an attacker-controlled property name.

Import path

import semmle.javascript.security.dataflow.UnsafeDynamicMethodAccessCustomizations
UnsafeFunction unsafeFunction()