Skip to content

Commit 0b2914f

Browse files
committed
JS: A few more deprecation updates
1 parent db00dad commit 0b2914f

File tree

5 files changed

+10
-7
lines changed

5 files changed

+10
-7
lines changed

javascript/ql/lib/semmle/javascript/security/dataflow/BuildArtifactLeakCustomizations.qll

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -14,9 +14,11 @@ module BuildArtifactLeak {
1414
*/
1515
abstract class Sink extends DataFlow::Node {
1616
/**
17+
* DEPRECATED. This query no longer uses flow state.
18+
*
1719
* Gets a data-flow label that leaks information for this sink.
1820
*/
19-
DataFlow::FlowLabel getLabel() { result.isTaint() }
21+
deprecated DataFlow::FlowLabel getLabel() { result.isTaint() }
2022
}
2123

2224
/**

javascript/ql/lib/semmle/javascript/security/dataflow/InsecureDownloadCustomizations.qll

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -88,7 +88,7 @@ module InsecureDownload {
8888
/**
8989
* Flow-labels for reasoning about download of sensitive file through insecure connection.
9090
*/
91-
module Label {
91+
deprecated module Label {
9292
/**
9393
* A flow-label for file URLs that are both sensitive and downloaded over an insecure connection.
9494
*/

javascript/ql/lib/semmle/javascript/security/dataflow/PostMessageStarCustomizations.qll

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -24,16 +24,20 @@ module PostMessageStar {
2424
abstract class Sanitizer extends DataFlow::Node { }
2525

2626
/**
27+
* DEPRECATED. This query no longer uses flow state.
28+
*
2729
* A flow label representing an object with at least one tainted property.
2830
*/
29-
abstract class PartiallyTaintedObject extends DataFlow::FlowLabel {
31+
abstract deprecated class PartiallyTaintedObject extends DataFlow::FlowLabel {
3032
PartiallyTaintedObject() { this = "partially tainted object" }
3133
}
3234

3335
/**
36+
* DEPRECATED. This query no longer uses flow state.
37+
*
3438
* Gets either a standard flow label or the partial-taint label.
3539
*/
36-
DataFlow::FlowLabel anyLabel() {
40+
deprecated DataFlow::FlowLabel anyLabel() {
3741
result.isDataOrTaint() or result instanceof PartiallyTaintedObject
3842
}
3943

javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDynamicMethodAccessQuery.qll

Lines changed: 0 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -9,7 +9,6 @@
99

1010
import javascript
1111
import PropertyInjectionShared
12-
private import DataFlow::FlowLabel
1312
import UnsafeDynamicMethodAccessCustomizations::UnsafeDynamicMethodAccess
1413
private import UnsafeDynamicMethodAccessCustomizations::UnsafeDynamicMethodAccess as UnsafeDynamicMethodAccess
1514

javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeJQueryPluginCustomizations.qll

Lines changed: 0 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -9,8 +9,6 @@ private import semmle.javascript.dataflow.InferredTypes
99
import semmle.javascript.security.dataflow.DomBasedXssCustomizations
1010

1111
module UnsafeJQueryPlugin {
12-
private import DataFlow::FlowLabel
13-
1412
/**
1513
* A data flow source for unsafe jQuery plugins.
1614
*/

0 commit comments

Comments
 (0)