Skip to content

Add heuristic model pack #72

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Dec 21, 2023
Merged

Add heuristic model pack #72

merged 1 commit into from
Dec 21, 2023

Conversation

rvermeulen
Copy link

This pack will hold the heuristic models part of the standard library for easy enablement.
Currently, only holds source models for XMLHttpRequest.

@rvermeulen
Add heuristic model pack
ccfce5c 
This pack will hold the heuristic models part of the standard library
for easy enablement.
Currently, only holds source models for XMLHttpRequest.
github-advanced-security[bot]
github-advanced-security bot found potential problems Dec 20, 2023
View reviewed changes
javascript/heuristic-models/tests/Sources/test.js
const req = new XMLHttpRequest();
req.open(url);
req.send("foo");
console.log(req.responseText);

Check warning

Code scanning / CodeQL

Log injection

Log entry depends on a [user-provided value](1).
javascript/heuristic-models/tests/Sources/test.js
const req = new XMLHttpRequest();
req.open(url);
req.send("foo");
console.log(req.responseText);

Check notice

Code scanning / CodeQL

UI5 Client-side cross-site scripting partial paths

Partial XSS path from [source](1) to [node](2)
javascript/heuristic-models/tests/Sources/test.js
const req = new XMLHttpRequest();
req.open(url);
req.send("foo");
console.log(req.responseText);

Check notice

Code scanning / CodeQL

List all remote sources

Remote flow source of type: Remote flow
jeongsoolee09
jeongsoolee09 approved these changes Dec 21, 2023
View reviewed changes
Copy link
Contributor

@jeongsoolee09 jeongsoolee09 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, confirmed that it finds a similar node in our benchmark.

@jeongsoolee09 jeongsoolee09 merged commit bf440a4 into main Dec 21, 2023
@jeongsoolee09 jeongsoolee09 deleted the rvermeulen/heuristic-sources-pack branch December 21, 2023 19:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jeongsoolee09 jeongsoolee09 jeongsoolee09 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@rvermeulen @jeongsoolee09