Skip to content

C#: Blazor: Add non-local jump node for parameter passing #18930

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
egregius313 wants to merge 11 commits into from

Add likely XSS case to integration tests

ca14c57
Select commit
Loading
Failed to load commit list.
Closed

C#: Blazor: Add non-local jump node for parameter passing #18930

Add likely XSS case to integration tests
ca14c57
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / CodeQL completed Mar 5, 2025 in 3s

4 configurations not found

Warning: Code scanning may not have found all the alerts introduced by this pull request, because 4 configurations present on refs/heads/main were not found:

Actions workflow (rust-analysis.yml)

  • ❓  .github/workflows/rust-analysis.yml:analyze/language:rust

Actions workflow (csv-coverage-metrics.yml)

  • ❓  .github/workflows/csv-coverage-metrics.yml:publish-csharp
  • ❓  .github/workflows/csv-coverage-metrics.yml:publish-java

Actions workflow (cpp-swift-analysis.yml)

  • ❓  .github/workflows/cpp-swift-analysis.yml:CodeQL-Build

New alerts in code changed by this pull request

  • 4 warnings
  • 1 note

See annotations below for details.

View all branch alerts.

Annotations

Check warning on line 1 in csharp/ql/integration-tests/all-platforms/blazor/XSS.qlref

See this annotation in the file changed.

Code scanning / CodeQL

Query test without inline test expectations Warning

Query test does not use inline test expectations.

Check warning on line 1 in csharp/ql/integration-tests/all-platforms/blazor_build_mode_none/XSS.qlref

See this annotation in the file changed.

Code scanning / CodeQL

Query test without inline test expectations Warning

Query test does not use inline test expectations.

Check warning on line 1 in csharp/ql/integration-tests/all-platforms/blazor_net_8/XSS.qlref

See this annotation in the file changed.

Code scanning / CodeQL

Query test without inline test expectations Warning

Query test does not use inline test expectations.

Check notice on line 174 in csharp/ql/lib/semmle/code/csharp/frameworks/microsoft/aspnetcore/Components.qll

See this annotation in the file changed.

Code scanning / CodeQL

Field only used in CharPred Note

Field is only used in CharPred.

Check warning on line 1 in csharp/ql/test/library-tests/frameworks/microsoft/aspnetcore/blazor/Xss.qlref

See this annotation in the file changed.

Code scanning / CodeQL

Query test without inline test expectations Warning test

Query test does not use inline test expectations.