Skip to content

JavaScript: Add model of JSON parsers #10

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Aug 6, 2018
Merged

JavaScript: Add model of JSON parsers #10

merged 3 commits into from
Aug 6, 2018

Conversation

asger-semmle
Copy link
Contributor

Adds JsonParserCall which models a call to a JSON parser.

  • I've deprecated the AST-based JsonParseCall to avoid confusion.
  • The default taint step through JSON.parse has been updated to include JsonParserCall.
  • The NosqlInjection query used two-pass taint tracking to identify user-controlled JSON.parse calls, and then use those as sources. This was redundant with the taint step through JSON.parse, however. This has been removed, instead relying on the standard taint step. I've added a test to make sure it still works. In theory, some results may disappear since the two-step solution technically allowed for mismatched call/returns.

The evaluation indicates no changes; maybe a slight speed-up even due to NosqlInjection. The speed-up could be covering up a slow-down elsewhere, but looking over the per-query results there doesn't seem to be any glaring slow-downs. No new results were flagged.

@ghost
Copy link

ghost commented Aug 3, 2018
edited by ghost
Loading

CLA assistant check
All committers have signed the CLA.

@asger-semmle
Copy link
Contributor Author

@xiemaisi to answer your question from before, I've run a full evaluation. I've included the links this time.

@xiemaisi xiemaisi self-requested a review August 3, 2018 15:45
xiemaisi
xiemaisi approved these changes Aug 3, 2018
View reviewed changes
Copy link

@xiemaisi xiemaisi left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM.

@xiemaisi xiemaisi merged commit d91218e into github:master Aug 6, 2018
nickrolfe pushed a commit to nickrolfe/codeql that referenced this pull request Aug 6, 2018
Merge pull request github#10 from esben/js/support-arrow-routehandler…
2399c7d 
…-candidates

JavaScript: support optimistic tracking of arrow route handlers
aibaars added a commit that referenced this pull request Oct 14, 2021
@aibaars
Merge pull request #10 from github/github/aibaars/escape-uppercase
4b46a75 
DB scheme: convert uppercase to lowercase + underscore
smowton added a commit to smowton/codeql that referenced this pull request Oct 28, 2021
@smowton
Merge pull request github#10 from github/kotlin-gitignore
e94fac9 
Add gitignore
erik-krogh referenced this pull request in erik-krogh/ql Dec 15, 2021
@shati-patel
Merge pull request #10 from github/more-expressions
14ee979 
Add more expressions
erik-krogh referenced this pull request in erik-krogh/ql Dec 15, 2021
@shati-patel
QL: Merge pull request #10 from github/more-expressions
1aecd57 
Add more expressions
dbartol pushed a commit that referenced this pull request Dec 18, 2024
Merge pull request #10 from GitHubSecurityLab/job_outputs
7008827 
feat(field-flow): Refactor flow through job outputs
nicolaswill added a commit that referenced this pull request May 12, 2025
@nicolaswill
Merge pull request #10 from nicolaswill/brodes/key_agreement
dd2f53f 
Initial progress on key agreement.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@xiemaisi xiemaisi

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@asger-semmle @xiemaisi