forked from microsoft/TypeScript
-
Notifications
You must be signed in to change notification settings - Fork 0
/
codeql-configuration.yml
34 lines (32 loc) · 1021 Bytes
/
codeql-configuration.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
name : CodeQL Configuration
paths:
- src
- scripts
- Gulpfile.mjs
paths-ignore:
- src/lib
# These queries appear to time out after the module conversion.
# https://github.com/github/codeql/issues/10937
query-filters:
- exclude:
id: js/path-injection # TaintedPath.ql
- exclude:
id: js/command-line-injection # CommandInjection.ql
- exclude:
id: js/code-injection # CodeInjection.ql
- exclude:
id: js/bad-code-sanitization # ImproperCodeSanitization.ql
- exclude:
id: js/unsafe-dynamic-method-access # UnsafeDynamicMethodAccess.ql
- exclude:
id: js/clear-text-logging # CleartextLogging.ql
- exclude:
id: js/regex-injection # RegExpInjection.ql
- exclude:
id: js/unvalidated-dynamic-method-call # UnvalidatedDynamicMethodCall.ql
- exclude:
id: js/insecure-download # InsecureDownload.ql
- exclude:
id: js/prototype-polluting-assignment # PrototypePollutingAssignment.ql
- exclude:
id: js/request-forgery # RequestForgery.ql