CodeQL library for JavaScript
codeql/javascript-all 0.3.4 (changelog, source)
Search

Member predicate UnsafeHtmlConstruction::Sink::getVulnerabilityKind

Gets the kind of vulnerability to report in the alert message.

Defaults to Cross-site scripting, but may be overridden for sinks that do not allow script injection, but injection of other undesirable HTML elements.

string getVulnerabilityKind()