Javascript Dataflow - disallow return flow #18404
Labels
question
Further information is requested
Comments
|
JavaScript currently has its own dataflow library, the team is working on replacing it with the same library used by the other languages. I'm not sure whether there is a way to achieve the same functionality with JavaScript's current dataflow library. I'll ask the team. |
|
There is no such feature in the old data flow library. We are expecting to merge the switch to the new data flow library this month, after which you'll be able to use |
|
Thank you for the update! |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I noticed that the CodeQL dataflow libraries for Javascript lack builtin functionality similar to https://codeql.github.com/codeql-standard-libraries/go/codeql/dataflow/internal/DataFlowImplCommon.qll/type.DataFlowImplCommon$MakeImplCommon$DataFlowImplCommonPublic$FeatureHasSourceCallContext.html
When using the taint tracking module, how can queries be written to ensure that data flows are limited to paths reachable from the source, that is achieve a restriction similar to
FeatureHasSourceCallContext(#6932)?The text was updated successfully, but these errors were encountered: