File tree Expand file tree Collapse file tree 1 file changed +2
-2
lines changed
javascript/ql/lib/semmle/javascript/security/dataflow Expand file tree Collapse file tree 1 file changed +2
-2
lines changed Original file line number Diff line number Diff line change @@ -106,9 +106,9 @@ module RequestForgery {
106106 private import Xss as Xss
107107
108108 /**
109- * A call to `encodeURI` or ` encodeURIComponent`, viewed as a sanitizer for request forgery.
109+ * A call to `encodeURIComponent`, viewed as a sanitizer for request forgery.
110110 * These calls will escape "/" to "%2F", which is not a problem for request forgery.
111- * The result from calling `encodeURI` or ` encodeURIComponent` is not a valid URL, and only makes sense
111+ * The result from calling `encodeURIComponent` is not a valid URL, and only makes sense
112112 * as a part of a URL.
113113 */
114114 class UriEncodingSanitizer extends Sanitizer instanceof Xss:: Shared:: UriEncodingSanitizer {
You can’t perform that action at this time.
0 commit comments