Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Commit 5d4192c

Browse files
asger-semmleasger-semmle
committed
JS: change note
1 parent 3245142 commit 5d4192c

1 file changed

Lines changed: 1 addition & 0 deletions

File tree

change-notes/1.20/analysis-javascript.md

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -27,6 +27,7 @@
2727
| **Query** | **Expected impact** | **Change** |
2828
|--------------------------------------------|------------------------------|------------------------------------------------------------------------------|
2929
| Client-side cross-site scripting | More true-positive results, fewer false-positive results. | This rule now recognizes WinJS functions that are vulnerable to HTML injection, and no longer flags certain safe uses of jQuery. |
30+
| Hard-coded credentials | Fewer false-positive results | This rule no longer flag the empty string as a hardcoded username. |
3031
| Insecure randomness | More results | This rule now flags insecure uses of `crypto.pseudoRandomBytes`. |
3132
| Uncontrolled data used in network request | More results | This rule now recognizes host values that are vulnerable to injection. |
3233
| Unused parameter | Fewer false-positive results | This rule no longer flags parameters with leading underscore. |

0 commit comments

Comments
 (0)