File tree Expand file tree Collapse file tree 1 file changed +2
-6
lines changed
javascript/ql/lib/semmle/javascript/security/dataflow Expand file tree Collapse file tree 1 file changed +2
-6
lines changed Original file line number Diff line number Diff line change @@ -446,9 +446,7 @@ module TaintedPath {
446446 * An expression of form `x.includes("..")` or similar.
447447 */
448448 class ContainsDotDotSanitizer extends BarrierGuardNode instanceof StringOps:: Includes {
449- ContainsDotDotSanitizer ( ) {
450- isDotDotSlashPrefix ( super .getSubstring ( ) )
451- }
449+ ContainsDotDotSanitizer ( ) { isDotDotSlashPrefix ( super .getSubstring ( ) ) }
452450
453451 override predicate blocks ( boolean outcome , Expr e , DataFlow:: FlowLabel label ) {
454452 e = super .getBaseString ( ) .asExpr ( ) and
@@ -461,9 +459,7 @@ module TaintedPath {
461459 * An expression of form `x.matches(/\.\./)` or similar.
462460 */
463461 class ContainsDotDotRegExpSanitizer extends BarrierGuardNode instanceof StringOps:: RegExpTest {
464- ContainsDotDotRegExpSanitizer ( ) {
465- super .getRegExp ( ) .getConstantValue ( ) = [ "." , ".." , "../" ]
466- }
462+ ContainsDotDotRegExpSanitizer ( ) { super .getRegExp ( ) .getConstantValue ( ) = [ "." , ".." , "../" ] }
467463
468464 override predicate blocks ( boolean outcome , Expr e , DataFlow:: FlowLabel label ) {
469465 e = super .getStringOperand ( ) .asExpr ( ) and
You can’t perform that action at this time.
0 commit comments