JS: Mark alert as MISSING

asgerf · asgerf · commit f3956518072e · 2025-02-28T13:27:47.000+01:00
See github/codeql-javascript-team#447
diff --git a/javascript/ql/test/query-tests/Security/CWE-079/ReflectedXss/ReflectedXss.js b/javascript/ql/test/query-tests/Security/CWE-079/ReflectedXss/ReflectedXss.js
@@ -30,7 +30,7 @@ app.get('/user/:id', function(req, res) {
     ['Name', 'Content'],
     ['body', req.body]
   ]);
-  res.send(mytable); // $ Alert - FIXME: only works in OLD dataflow, add implicit reads before library-contributed taint steps
+  res.send(mytable); // $ MISSING: Alert - the 'markdown-table' model needs to be converted to a flow summary
 });
 
 var showdown  = require('showdown');
