Skip to content

Javascript: Improve Restify support and add new Spife support #10663

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
erik-krogh merged 28 commits into from
Dec 15, 2022
Merged

Javascript: Improve Restify support and add new Spife support #10663

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
28 commits
Select commit Hold shift + click to select a range
6ab62da
Add Restify/Spife support
Oct 3, 2022
b79f7f3
Address code review comments
Oct 18, 2022
31d271b
Fix format errors
Oct 19, 2022
976dd7f
Fix format errors
Oct 19, 2022
2ad5a70
Merge branch 'main' into restify_improvements
Oct 19, 2022
009403b
Add QLDoc for FormatterSetup.getAFormatterHandler
Oct 19, 2022
c10087b
Merge branch 'restify_improvements' of https://github.com/pwntester/c…
Oct 19, 2022
c7ac237
Update test results after merging new XSS improvements
Oct 19, 2022
742e4aa
Apply suggestions from code review
Oct 24, 2022
37ea3f2
Refactored `ReplySource` to `ReplyCall`. Got rid of unnecessary `ref()`
Oct 25, 2022
a80b691
Remove unnecessary TaggedTemplateEntryPoint
Oct 25, 2022
9830d2b
Format Restify.qll
Oct 25, 2022
3e92b4c
Apply suggestions from code review
Dec 7, 2022
407df37
Add feedback from Code review
Dec 7, 2022
af015d3
restoring previous casts to avoid super type ambiguity
Dec 7, 2022
38b2f53
Use ReplyCall.super syntax instead of this.(ReplyCall)
Dec 7, 2022
1410d28
Update javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
Dec 12, 2022
469d7f5
Use fluent API instead of hasPropertyWrite
Dec 12, 2022
4ba3190
Replace API::Node with DataFlow::Node for Spife's RouteSetup
Dec 13, 2022
270a435
format Restify.qll
Dec 13, 2022
701676e
Update javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
Dec 14, 2022
a71fc93
add tests
Dec 14, 2022
e1f05e9
Merge branch 'restify_improvements' of https://github.com/pwntester/c…
Dec 14, 2022
14faff4
fix restify tests
Dec 14, 2022
4cf7299
restore Spife.qll to working status
Dec 14, 2022
818c2da
fix Spife tests (without heuristics)
Dec 14, 2022
f46a8fa
port RouteSetup API-based implementation to DataFlow one
Dec 14, 2022
5555812
add explicit this
erik-krogh Dec 14, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 5 additions & 0 deletions ...script/ql/lib/change-notes/2022-10-13-restify-framework-support-improvements.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,5 @@
---
category: feature
---

- Improved support for [Restify](http://restify.com/) framework, leading to more results when scanning applications developed with this framework.
5 changes: 5 additions & 0 deletions javascript/ql/lib/change-notes/2022-10-13-spife-framework-support.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,5 @@
---
category: feature
---

- Added support for the [Spife](https://github.com/npm/spife) framework.
1 change: 1 addition & 0 deletions javascript/ql/lib/semmle/javascript/frameworks/HttpFrameworks.qll
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,3 +7,4 @@ import semmle.javascript.frameworks.Micro
import semmle.javascript.frameworks.Restify
import semmle.javascript.frameworks.Connect
import semmle.javascript.frameworks.Fastify
import semmle.javascript.frameworks.Spife
Loading