We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
There was an error while loading. Please reload this page.
mayHaveBooleanValue
1 parent 13d9159 commit 19c5889Copy full SHA for 19c5889
javascript/ql/src/semmle/javascript/frameworks/Markdown.qll
@@ -126,8 +126,7 @@ private class MarkdownItStep extends TaintTracking::SharedTaintStep {
126
override predicate step(DataFlow::Node pred, DataFlow::Node succ) {
127
exists(API::CallNode renderer, API::CallNode call |
128
renderer = API::moduleImport("markdown-it").getACall() and
129
- renderer.getParameter(0).getMember("html").getARhs().asExpr().(BooleanLiteral).getValue() =
130
- "true" and
+ renderer.getParameter(0).getMember("html").getARhs().mayHaveBooleanValue(true) and
131
call = renderer.getReturn().getMember(["render", "renderInline"]).getACall()
132
|
133
succ = call and
0 commit comments