github/codeql-action
1
0
Fork 0
mirror of https://github.com/github/codeql-action.git synced 2025-12-22 15:20:19 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
eff6331393e7af4069328735bb70808d22f98589
codeql-action/node_modules/eslint-plugin-github/lib/rules/no-inner-html.js
github-actions[bot] 40a500c743 Update checked-in dependencies
2023-07-13 09:09:17 +00:00

22 lines
545 B
JavaScript
Raw Blame History

module.exports = {
meta: {
type: 'problem',
docs: {
description: 'disallow `Element.prototype.innerHTML` in favor of `Element.prototype.textContent`',
url: require('../url')(module),
},
schema: [],
},
create(context) {
return {
'MemberExpression[property.name=innerHTML]': function (node) {
context.report({
node: node.property,
message: 'Using innerHTML poses a potential security risk and should not be used. Prefer using textContent.',
})
},
}
},
}
Reference in New Issue View Git Blame Copy Permalink