Skip to content

Add likely XSS case to integration tests

ca14c57
Select commit
Loading
Failed to load commit list.
Closed

C#: Blazor: Add non-local jump node for parameter passing #18930

Add likely XSS case to integration tests
ca14c57
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / CodeQL completed Mar 5, 2025 in 3s

4 configurations not found

Warning: Code scanning may not have found all the alerts introduced by this pull request, because 4 configurations present on refs/heads/main were not found:

Actions workflow (rust-analysis.yml)

  • ❓  .github/workflows/rust-analysis.yml:analyze/language:rust

Actions workflow (csv-coverage-metrics.yml)

  • ❓  .github/workflows/csv-coverage-metrics.yml:publish-csharp
  • ❓  .github/workflows/csv-coverage-metrics.yml:publish-java

Actions workflow (cpp-swift-analysis.yml)

  • ❓  .github/workflows/cpp-swift-analysis.yml:CodeQL-Build

New alerts in code changed by this pull request

  • 4 warnings
  • 1 note

See annotations below for details.

View all branch alerts.

Annotations

Check warning on line 1 in csharp/ql/integration-tests/all-platforms/blazor/XSS.qlref

See this annotation in the file changed.

Code scanning / CodeQL

Query test without inline test expectations Warning

Query test does not use inline test expectations.

Check warning on line 1 in csharp/ql/integration-tests/all-platforms/blazor_build_mode_none/XSS.qlref

See this annotation in the file changed.

Code scanning / CodeQL

Query test without inline test expectations Warning

Query test does not use inline test expectations.

Check warning on line 1 in csharp/ql/integration-tests/all-platforms/blazor_net_8/XSS.qlref

See this annotation in the file changed.

Code scanning / CodeQL

Query test without inline test expectations Warning

Query test does not use inline test expectations.

Check notice on line 174 in csharp/ql/lib/semmle/code/csharp/frameworks/microsoft/aspnetcore/Components.qll

See this annotation in the file changed.

Code scanning / CodeQL

Field only used in CharPred Note

Field is only used in CharPred.

Check warning on line 1 in csharp/ql/test/library-tests/frameworks/microsoft/aspnetcore/blazor/Xss.qlref

See this annotation in the file changed.

Code scanning / CodeQL

Query test without inline test expectations Warning test

Query test does not use inline test expectations.