Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
chore(rule): yank dangerous_insert_html (#745)
* chore(rule): yank dangerous_insert_html * fix: update snapshots
- Loading branch information
1 parent
97e8e40
commit 8308b5c
Showing
4 changed files
with
4 additions
and
33 deletions.
There are no files selected for viewing
1 change: 1 addition & 0 deletions
1
pkg/commands/process/settings/rules/javascript/lang/dangerous_insert_html.yml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,3 +1,4 @@ | ||
disabled: true | ||
patterns: | ||
- pattern: | | ||
document.$<METHOD>($<...>$<DATA>$<...>) | ||
|
12 changes: 1 addition & 11 deletions
12
...ous_insert_html/.snapshots/TestJavascriptDangeoursInsertHTML--unsecure-document_write.yml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,13 +1,3 @@ | ||
high: | ||
- rule: | ||
cwe_ids: | ||
- "79" | ||
id: javascript_dangerous_insert_html | ||
description: Dangerous dynamic HTML insert detected. | ||
documentation_url: https://docs.bearer.com/reference/rules/javascript_dangerous_insert_html | ||
line_number: 2 | ||
filename: unsecure-document_write.js | ||
parent_line_number: 2 | ||
parent_content: document.write(`<li>${input}</li>`) | ||
{} | ||
|
||
|
12 changes: 1 addition & 11 deletions
12
...gerous_insert_html/.snapshots/TestJavascriptDangeoursInsertHTML--unsecure-element_ref.yml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,13 +1,3 @@ | ||
high: | ||
- rule: | ||
cwe_ids: | ||
- "79" | ||
id: javascript_dangerous_insert_html | ||
description: Dangerous dynamic HTML insert detected. | ||
documentation_url: https://docs.bearer.com/reference/rules/javascript_dangerous_insert_html | ||
line_number: 2 | ||
filename: unsecure-element_ref.js | ||
parent_line_number: 2 | ||
parent_content: this.ref.replaceChildren(`<li>${input}</li>`) | ||
{} | ||
|
||
|
12 changes: 1 addition & 11 deletions
12
...insert_html/.snapshots/TestJavascriptDangeoursInsertHTML--unsecure-property_assigment.yml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,13 +1,3 @@ | ||
high: | ||
- rule: | ||
cwe_ids: | ||
- "79" | ||
id: javascript_dangerous_insert_html | ||
description: Dangerous dynamic HTML insert detected. | ||
documentation_url: https://docs.bearer.com/reference/rules/javascript_dangerous_insert_html | ||
line_number: 2 | ||
filename: unsecure-property_assigment.js | ||
parent_line_number: 2 | ||
parent_content: this.ref.innerHTML = `<li>${input}</li>` | ||
{} | ||
|
||
|