Step 6 - Finding jQuery plugin options: property reads

yuuki1967 / codeql-javascript-unsafe-jquery-plugin

https://lab.github.com/githubtraining/codeql-for-javascript:-unsafe-jquery-plugin

0 stars 0 forks source link

Step 6 - Finding jQuery plugin options: property reads #9

Closed github-learning-lab[bot] closed 2 years ago

github-learning-lab[bot] commented 2 years ago

Step 6: Finding jQuery plugin options

jQuery plugins are usually defined by assigning a value to a property of the $.fn object:

  $.fn.copyText = function() { ... } // this function is a jQuery plugin

In the following steps, we'll find such plugins, and their options. We'll find

where the property $.fn is read
the functions that are assigned to properties of $.fn
the option parameters of these functions

github-learning-lab[bot] commented 2 years ago

:book: Learn about data flow nodes

Take a few minutes to read about the data flow nodes for JavaScript and TypeScript.

The data flow nodes
The source nodes are places in the program that introduce a new value, from which the flow of data may be tracked. They are the source of this new value, either because they create a new object, such as object literals or functions, or because they represent a point where data enters the local data flow graph, such as parameters or property reads.
The DataFlow::FunctionNode is a data flow node that corresponds to a function (expression or declaration)

github-learning-lab[bot] commented 2 years ago

:keyboard: Finding jQuery property reads

You have already seen how to find references to the jQuery $ function. Now find all places in the code that read the property $.fn. These results of your query will be of type DataFlow::Node.

Notice that jquery() returns a value of type DataFlow::SourceNode, from which the flow of data may be tracked. Use the auto-completion feature after jquery(). to browse the predicates of this DataFlow::SourceNode type, and their documentation. Look for a predicate that gets you all reads of a property named fn.

Write your query in the file property-read.ql and submit it.

github-learning-lab[bot] commented 2 years ago

Ooops! The query you submitted in 84551659086350acd6f5f669c3dd68989f804186 didn't find the right results. Have a look at the comment.

To submit a new iteration of your query, you just have to push a new commit to the same branch (the default branch or the PR branch).

github-learning-lab[bot] commented 2 years ago

Congratulations, looks like the query you introduced in 4adb4f74be16a533f6a221592db2fe7c453797f7 finds the correct results!

Take a look at the instructions for the next step to continue.