From 7f534b05449f97f4b96fc511704f933bd51ddf4d Mon Sep 17 00:00:00 2001 From: Mauro Baluda Date: Wed, 25 Feb 2026 18:05:42 +0100 Subject: [PATCH 1/8] XSRF test --- .../ui5/test/queries/RequestForgery/CSRF.expected | 4 ++++ .../frameworks/ui5/test/queries/RequestForgery/CSRF.qlref | 1 + .../ui5/test/queries/RequestForgery/SSRF.expected | 4 ++++ .../frameworks/ui5/test/queries/RequestForgery/SSRF.qlref | 1 + .../frameworks/ui5/test/queries/RequestForgery/test.js | 6 ++++++ 5 files changed, 16 insertions(+) create mode 100644 javascript/frameworks/ui5/test/queries/RequestForgery/CSRF.expected create mode 100644 javascript/frameworks/ui5/test/queries/RequestForgery/CSRF.qlref create mode 100644 javascript/frameworks/ui5/test/queries/RequestForgery/SSRF.expected create mode 100644 javascript/frameworks/ui5/test/queries/RequestForgery/SSRF.qlref create mode 100644 javascript/frameworks/ui5/test/queries/RequestForgery/test.js diff --git a/javascript/frameworks/ui5/test/queries/RequestForgery/CSRF.expected b/javascript/frameworks/ui5/test/queries/RequestForgery/CSRF.expected new file mode 100644 index 000000000..e217064d1 --- /dev/null +++ b/javascript/frameworks/ui5/test/queries/RequestForgery/CSRF.expected @@ -0,0 +1,4 @@ +edges +nodes +subpaths +#select diff --git a/javascript/frameworks/ui5/test/queries/RequestForgery/CSRF.qlref b/javascript/frameworks/ui5/test/queries/RequestForgery/CSRF.qlref new file mode 100644 index 000000000..1557850e8 --- /dev/null +++ b/javascript/frameworks/ui5/test/queries/RequestForgery/CSRF.qlref @@ -0,0 +1 @@ +Security/CWE-918/ClientSideRequestForgery.ql diff --git a/javascript/frameworks/ui5/test/queries/RequestForgery/SSRF.expected b/javascript/frameworks/ui5/test/queries/RequestForgery/SSRF.expected new file mode 100644 index 000000000..e217064d1 --- /dev/null +++ b/javascript/frameworks/ui5/test/queries/RequestForgery/SSRF.expected @@ -0,0 +1,4 @@ +edges +nodes +subpaths +#select diff --git a/javascript/frameworks/ui5/test/queries/RequestForgery/SSRF.qlref b/javascript/frameworks/ui5/test/queries/RequestForgery/SSRF.qlref new file mode 100644 index 000000000..fcb4e41da --- /dev/null +++ b/javascript/frameworks/ui5/test/queries/RequestForgery/SSRF.qlref @@ -0,0 +1 @@ +Security/CWE-918/RequestForgery.ql diff --git a/javascript/frameworks/ui5/test/queries/RequestForgery/test.js b/javascript/frameworks/ui5/test/queries/RequestForgery/test.js new file mode 100644 index 000000000..dfde449f0 --- /dev/null +++ b/javascript/frameworks/ui5/test/queries/RequestForgery/test.js @@ -0,0 +1,6 @@ +import request from 'request'; +$(document).ready(function () { + var request = new XMLHttpRequest(); + var url = jQuery.sap.GetUriParameters().get("url"); + request.open("GET", url, false); +}); \ No newline at end of file From 39d02f70d67d71ccfd46fff658a3c9254ee12be9 Mon Sep 17 00:00:00 2001 From: Mauro Baluda Date: Wed, 25 Feb 2026 18:07:00 +0100 Subject: [PATCH 2/8] getContent is not a generic remote source --- javascript/frameworks/ui5/ext/ui5.model.yml | 1 - .../queries/UI5Xss/xss-html-control-sanitized/UI5Xss.expected | 1 - 2 files changed, 2 deletions(-) diff --git a/javascript/frameworks/ui5/ext/ui5.model.yml b/javascript/frameworks/ui5/ext/ui5.model.yml index 4112a1cab..a17302ede 100644 --- a/javascript/frameworks/ui5/ext/ui5.model.yml +++ b/javascript/frameworks/ui5/ext/ui5.model.yml @@ -115,7 +115,6 @@ extensions: data: - ["UI5InputControl", "Member[value]", "remote"] - ["UI5InputControl", "Member[getValue].ReturnValue", "remote"] - - ["UI5HTMLControl", "Member[getContent].ReturnValue", "remote"] - ["UI5CodeEditor", "Member[value]", "remote"] - ["UI5CodeEditor", "Member[getCurrentValue].ReturnValue", "remote"] - ["global", "Member[jQuery].Member[sap].Member[syncHead,syncGet,syncGetText,syncPost,syncPostText].ReturnValue", "remote"] diff --git a/javascript/frameworks/ui5/test/queries/UI5Xss/xss-html-control-sanitized/UI5Xss.expected b/javascript/frameworks/ui5/test/queries/UI5Xss/xss-html-control-sanitized/UI5Xss.expected index 7ce2c54b5..ee57653fa 100644 --- a/javascript/frameworks/ui5/test/queries/UI5Xss/xss-html-control-sanitized/UI5Xss.expected +++ b/javascript/frameworks/ui5/test/queries/UI5Xss/xss-html-control-sanitized/UI5Xss.expected @@ -18,5 +18,4 @@ edges #select | webapp/controller/app.controller.js:16:35:16:62 | oModel. ... input') | webapp/view/app.view.xml:5:5:7:28 | value={/input} | webapp/controller/app.controller.js:16:35:16:62 | oModel. ... input') | XSS vulnerability due to $@. | webapp/view/app.view.xml:5:5:7:28 | value={/input} | user-provided value | | webapp/controller/app.controller.js:19:36:19:63 | oModel. ... input') | webapp/view/app.view.xml:5:5:7:28 | value={/input} | webapp/controller/app.controller.js:19:36:19:63 | oModel. ... input') | XSS vulnerability due to $@. | webapp/view/app.view.xml:5:5:7:28 | value={/input} | user-provided value | -| webapp/controller/app.controller.js:20:35:20:58 | unsanit ... ntent() | webapp/controller/app.controller.js:20:35:20:58 | unsanit ... ntent() | webapp/controller/app.controller.js:20:35:20:58 | unsanit ... ntent() | XSS vulnerability due to $@. | webapp/controller/app.controller.js:20:35:20:58 | unsanit ... ntent() | user-provided value | | webapp/controller/app.controller.js:20:35:20:58 | unsanit ... ntent() | webapp/view/app.view.xml:5:5:7:28 | value={/input} | webapp/controller/app.controller.js:20:35:20:58 | unsanit ... ntent() | XSS vulnerability due to $@. | webapp/view/app.view.xml:5:5:7:28 | value={/input} | user-provided value | From 365d3423e4f638316ff04f7cb5e2b7e793193463 Mon Sep 17 00:00:00 2001 From: Mauro Baluda Date: Wed, 11 Mar 2026 19:24:02 +0100 Subject: [PATCH 3/8] Change UI5URIParameters return type to browser-url-query --- javascript/frameworks/ui5/ext/ui5.model.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/javascript/frameworks/ui5/ext/ui5.model.yml b/javascript/frameworks/ui5/ext/ui5.model.yml index a17302ede..86f718fdd 100644 --- a/javascript/frameworks/ui5/ext/ui5.model.yml +++ b/javascript/frameworks/ui5/ext/ui5.model.yml @@ -118,8 +118,8 @@ extensions: - ["UI5CodeEditor", "Member[value]", "remote"] - ["UI5CodeEditor", "Member[getCurrentValue].ReturnValue", "remote"] - ["global", "Member[jQuery].Member[sap].Member[syncHead,syncGet,syncGetText,syncPost,syncPostText].ReturnValue", "remote"] - - ["UI5URIParameters", "Member[get].ReturnValue", "remote"] - - ["UI5URIParameters", "Member[getAll].ReturnValue", "remote"] + - ["UI5URIParameters", "Member[get].ReturnValue", "browser-url-query"] + - ["UI5URIParameters", "Member[getAll].ReturnValue", "browser-url-query"] - addsTo: pack: codeql/javascript-all From 81856aec9251147794e0878be1d9317199ea7042 Mon Sep 17 00:00:00 2001 From: Mauro Baluda Date: Mon, 23 Mar 2026 13:05:15 +0100 Subject: [PATCH 4/8] Update CodeQL version --- javascript/frameworks/cap/ext/qlpack.yml | 4 +-- .../frameworks/cap/lib/codeql-pack.lock.yml | 26 +++++++-------- javascript/frameworks/cap/lib/qlpack.yml | 4 +-- .../frameworks/cap/src/codeql-pack.lock.yml | 26 +++++++-------- javascript/frameworks/cap/src/qlpack.yml | 4 +-- .../frameworks/cap/test/codeql-pack.lock.yml | 26 +++++++-------- javascript/frameworks/cap/test/qlpack.yml | 4 +-- .../test/codeql-pack.lock.yml | 26 +++++++-------- .../ui5-webcomponents/test/qlpack.yml | 4 +-- javascript/frameworks/ui5/ext/qlpack.yml | 4 +-- .../frameworks/ui5/lib/codeql-pack.lock.yml | 26 +++++++-------- javascript/frameworks/ui5/lib/qlpack.yml | 4 +-- .../frameworks/ui5/src/codeql-pack.lock.yml | 26 +++++++-------- javascript/frameworks/ui5/src/qlpack.yml | 4 +-- .../frameworks/ui5/test/codeql-pack.lock.yml | 32 +++++++++---------- javascript/frameworks/ui5/test/qlpack.yml | 4 +-- javascript/frameworks/xsjs/ext/qlpack.yml | 4 +-- .../frameworks/xsjs/lib/codeql-pack.lock.yml | 26 +++++++-------- javascript/frameworks/xsjs/lib/qlpack.yml | 4 +-- .../frameworks/xsjs/src/codeql-pack.lock.yml | 26 +++++++-------- javascript/frameworks/xsjs/src/qlpack.yml | 4 +-- .../frameworks/xsjs/test/codeql-pack.lock.yml | 26 +++++++-------- javascript/frameworks/xsjs/test/qlpack.yml | 4 +-- javascript/heuristic-models/ext/qlpack.yml | 4 +-- .../tests/codeql-pack.lock.yml | 26 +++++++-------- javascript/heuristic-models/tests/qlpack.yml | 4 +-- qlt.conf.json | 6 ++-- 27 files changed, 179 insertions(+), 179 deletions(-) diff --git a/javascript/frameworks/cap/ext/qlpack.yml b/javascript/frameworks/cap/ext/qlpack.yml index 75cd13495..ff49ec94f 100644 --- a/javascript/frameworks/cap/ext/qlpack.yml +++ b/javascript/frameworks/cap/ext/qlpack.yml @@ -1,6 +1,6 @@ --- library: true name: advanced-security/javascript-sap-cap-models -version: 2.24.3 +version: 2.25.0 extensionTargets: - codeql/javascript-all: "^2.6.22" + codeql/javascript-all: "^2.6.24" diff --git a/javascript/frameworks/cap/lib/codeql-pack.lock.yml b/javascript/frameworks/cap/lib/codeql-pack.lock.yml index 8aba5a528..710e9f7f8 100644 --- a/javascript/frameworks/cap/lib/codeql-pack.lock.yml +++ b/javascript/frameworks/cap/lib/codeql-pack.lock.yml @@ -2,29 +2,29 @@ lockVersion: 1.0.0 dependencies: codeql/concepts: - version: 0.0.17 + version: 0.0.18 codeql/controlflow: - version: 2.0.27 + version: 2.0.28 codeql/dataflow: - version: 2.0.27 + version: 2.1.0 codeql/javascript-all: - version: 2.6.23 + version: 2.6.24 codeql/mad: - version: 1.0.43 + version: 1.0.44 codeql/regex: - version: 1.0.43 + version: 1.0.44 codeql/ssa: - version: 2.0.19 + version: 2.0.20 codeql/threat-models: - version: 1.0.43 + version: 1.0.44 codeql/tutorial: - version: 1.0.43 + version: 1.0.44 codeql/typetracking: - version: 2.0.27 + version: 2.0.28 codeql/util: - version: 2.0.30 + version: 2.0.31 codeql/xml: - version: 1.0.43 + version: 1.0.44 codeql/yaml: - version: 1.0.43 + version: 1.0.44 compiled: false diff --git a/javascript/frameworks/cap/lib/qlpack.yml b/javascript/frameworks/cap/lib/qlpack.yml index 68bceb676..3187abc4e 100644 --- a/javascript/frameworks/cap/lib/qlpack.yml +++ b/javascript/frameworks/cap/lib/qlpack.yml @@ -1,8 +1,8 @@ --- library: true name: advanced-security/javascript-sap-cap-all -version: 2.24.3 +version: 2.25.0 suites: codeql-suites extractor: javascript dependencies: - codeql/javascript-all: "^2.6.22" + codeql/javascript-all: "^2.6.24" diff --git a/javascript/frameworks/cap/src/codeql-pack.lock.yml b/javascript/frameworks/cap/src/codeql-pack.lock.yml index 8aba5a528..710e9f7f8 100644 --- a/javascript/frameworks/cap/src/codeql-pack.lock.yml +++ b/javascript/frameworks/cap/src/codeql-pack.lock.yml @@ -2,29 +2,29 @@ lockVersion: 1.0.0 dependencies: codeql/concepts: - version: 0.0.17 + version: 0.0.18 codeql/controlflow: - version: 2.0.27 + version: 2.0.28 codeql/dataflow: - version: 2.0.27 + version: 2.1.0 codeql/javascript-all: - version: 2.6.23 + version: 2.6.24 codeql/mad: - version: 1.0.43 + version: 1.0.44 codeql/regex: - version: 1.0.43 + version: 1.0.44 codeql/ssa: - version: 2.0.19 + version: 2.0.20 codeql/threat-models: - version: 1.0.43 + version: 1.0.44 codeql/tutorial: - version: 1.0.43 + version: 1.0.44 codeql/typetracking: - version: 2.0.27 + version: 2.0.28 codeql/util: - version: 2.0.30 + version: 2.0.31 codeql/xml: - version: 1.0.43 + version: 1.0.44 codeql/yaml: - version: 1.0.43 + version: 1.0.44 compiled: false diff --git a/javascript/frameworks/cap/src/qlpack.yml b/javascript/frameworks/cap/src/qlpack.yml index a37c61a9a..6f84f8e29 100644 --- a/javascript/frameworks/cap/src/qlpack.yml +++ b/javascript/frameworks/cap/src/qlpack.yml @@ -1,10 +1,10 @@ --- library: false name: advanced-security/javascript-sap-cap-queries -version: 2.24.3 +version: 2.25.0 suites: codeql-suites extractor: javascript dependencies: - codeql/javascript-all: "^2.6.22" + codeql/javascript-all: "^2.6.24" advanced-security/javascript-sap-cap-all: "${workspace}" default-suite-file: codeql-suites/javascript-code-scanning.qls diff --git a/javascript/frameworks/cap/test/codeql-pack.lock.yml b/javascript/frameworks/cap/test/codeql-pack.lock.yml index 8aba5a528..710e9f7f8 100644 --- a/javascript/frameworks/cap/test/codeql-pack.lock.yml +++ b/javascript/frameworks/cap/test/codeql-pack.lock.yml @@ -2,29 +2,29 @@ lockVersion: 1.0.0 dependencies: codeql/concepts: - version: 0.0.17 + version: 0.0.18 codeql/controlflow: - version: 2.0.27 + version: 2.0.28 codeql/dataflow: - version: 2.0.27 + version: 2.1.0 codeql/javascript-all: - version: 2.6.23 + version: 2.6.24 codeql/mad: - version: 1.0.43 + version: 1.0.44 codeql/regex: - version: 1.0.43 + version: 1.0.44 codeql/ssa: - version: 2.0.19 + version: 2.0.20 codeql/threat-models: - version: 1.0.43 + version: 1.0.44 codeql/tutorial: - version: 1.0.43 + version: 1.0.44 codeql/typetracking: - version: 2.0.27 + version: 2.0.28 codeql/util: - version: 2.0.30 + version: 2.0.31 codeql/xml: - version: 1.0.43 + version: 1.0.44 codeql/yaml: - version: 1.0.43 + version: 1.0.44 compiled: false diff --git a/javascript/frameworks/cap/test/qlpack.yml b/javascript/frameworks/cap/test/qlpack.yml index 846ef2cbe..aac89d6ed 100644 --- a/javascript/frameworks/cap/test/qlpack.yml +++ b/javascript/frameworks/cap/test/qlpack.yml @@ -1,9 +1,9 @@ --- name: advanced-security/javascript-sap-cap-queries-tests -version: 2.24.3 +version: 2.25.0 extractor: javascript dependencies: - codeql/javascript-all: "^2.6.22" + codeql/javascript-all: "^2.6.24" advanced-security/javascript-sap-cap-queries: "${workspace}" advanced-security/javascript-sap-cap-models: "${workspace}" advanced-security/javascript-sap-cap-all: "${workspace}" diff --git a/javascript/frameworks/ui5-webcomponents/test/codeql-pack.lock.yml b/javascript/frameworks/ui5-webcomponents/test/codeql-pack.lock.yml index 8aba5a528..710e9f7f8 100644 --- a/javascript/frameworks/ui5-webcomponents/test/codeql-pack.lock.yml +++ b/javascript/frameworks/ui5-webcomponents/test/codeql-pack.lock.yml @@ -2,29 +2,29 @@ lockVersion: 1.0.0 dependencies: codeql/concepts: - version: 0.0.17 + version: 0.0.18 codeql/controlflow: - version: 2.0.27 + version: 2.0.28 codeql/dataflow: - version: 2.0.27 + version: 2.1.0 codeql/javascript-all: - version: 2.6.23 + version: 2.6.24 codeql/mad: - version: 1.0.43 + version: 1.0.44 codeql/regex: - version: 1.0.43 + version: 1.0.44 codeql/ssa: - version: 2.0.19 + version: 2.0.20 codeql/threat-models: - version: 1.0.43 + version: 1.0.44 codeql/tutorial: - version: 1.0.43 + version: 1.0.44 codeql/typetracking: - version: 2.0.27 + version: 2.0.28 codeql/util: - version: 2.0.30 + version: 2.0.31 codeql/xml: - version: 1.0.43 + version: 1.0.44 codeql/yaml: - version: 1.0.43 + version: 1.0.44 compiled: false diff --git a/javascript/frameworks/ui5-webcomponents/test/qlpack.yml b/javascript/frameworks/ui5-webcomponents/test/qlpack.yml index 6b1918f5e..97a5b6038 100644 --- a/javascript/frameworks/ui5-webcomponents/test/qlpack.yml +++ b/javascript/frameworks/ui5-webcomponents/test/qlpack.yml @@ -1,6 +1,6 @@ name: advanced-security/javascript-sap-ui5-webcomponents-for-react-test -version: 2.24.3 +version: 2.25.0 extractor: javascript dependencies: - codeql/javascript-all: "^2.6.22" + codeql/javascript-all: "^2.6.24" advanced-security/javascript-sap-ui5-all: "${workspace}" diff --git a/javascript/frameworks/ui5/ext/qlpack.yml b/javascript/frameworks/ui5/ext/qlpack.yml index b9e79d2f4..e001e7e45 100644 --- a/javascript/frameworks/ui5/ext/qlpack.yml +++ b/javascript/frameworks/ui5/ext/qlpack.yml @@ -1,8 +1,8 @@ --- library: true name: advanced-security/javascript-sap-ui5-models -version: 2.24.3 +version: 2.25.0 extensionTargets: - codeql/javascript-all: "^2.6.22" + codeql/javascript-all: "^2.6.24" dataExtensions: - "*.model.yml" diff --git a/javascript/frameworks/ui5/lib/codeql-pack.lock.yml b/javascript/frameworks/ui5/lib/codeql-pack.lock.yml index 8aba5a528..710e9f7f8 100644 --- a/javascript/frameworks/ui5/lib/codeql-pack.lock.yml +++ b/javascript/frameworks/ui5/lib/codeql-pack.lock.yml @@ -2,29 +2,29 @@ lockVersion: 1.0.0 dependencies: codeql/concepts: - version: 0.0.17 + version: 0.0.18 codeql/controlflow: - version: 2.0.27 + version: 2.0.28 codeql/dataflow: - version: 2.0.27 + version: 2.1.0 codeql/javascript-all: - version: 2.6.23 + version: 2.6.24 codeql/mad: - version: 1.0.43 + version: 1.0.44 codeql/regex: - version: 1.0.43 + version: 1.0.44 codeql/ssa: - version: 2.0.19 + version: 2.0.20 codeql/threat-models: - version: 1.0.43 + version: 1.0.44 codeql/tutorial: - version: 1.0.43 + version: 1.0.44 codeql/typetracking: - version: 2.0.27 + version: 2.0.28 codeql/util: - version: 2.0.30 + version: 2.0.31 codeql/xml: - version: 1.0.43 + version: 1.0.44 codeql/yaml: - version: 1.0.43 + version: 1.0.44 compiled: false diff --git a/javascript/frameworks/ui5/lib/qlpack.yml b/javascript/frameworks/ui5/lib/qlpack.yml index ed210f58f..246f9ec38 100644 --- a/javascript/frameworks/ui5/lib/qlpack.yml +++ b/javascript/frameworks/ui5/lib/qlpack.yml @@ -1,8 +1,8 @@ --- library: true name: advanced-security/javascript-sap-ui5-all -version: 2.24.3 +version: 2.25.0 suites: codeql-suites extractor: javascript dependencies: - codeql/javascript-all: "^2.6.22" + codeql/javascript-all: "^2.6.24" diff --git a/javascript/frameworks/ui5/src/codeql-pack.lock.yml b/javascript/frameworks/ui5/src/codeql-pack.lock.yml index 8aba5a528..710e9f7f8 100644 --- a/javascript/frameworks/ui5/src/codeql-pack.lock.yml +++ b/javascript/frameworks/ui5/src/codeql-pack.lock.yml @@ -2,29 +2,29 @@ lockVersion: 1.0.0 dependencies: codeql/concepts: - version: 0.0.17 + version: 0.0.18 codeql/controlflow: - version: 2.0.27 + version: 2.0.28 codeql/dataflow: - version: 2.0.27 + version: 2.1.0 codeql/javascript-all: - version: 2.6.23 + version: 2.6.24 codeql/mad: - version: 1.0.43 + version: 1.0.44 codeql/regex: - version: 1.0.43 + version: 1.0.44 codeql/ssa: - version: 2.0.19 + version: 2.0.20 codeql/threat-models: - version: 1.0.43 + version: 1.0.44 codeql/tutorial: - version: 1.0.43 + version: 1.0.44 codeql/typetracking: - version: 2.0.27 + version: 2.0.28 codeql/util: - version: 2.0.30 + version: 2.0.31 codeql/xml: - version: 1.0.43 + version: 1.0.44 codeql/yaml: - version: 1.0.43 + version: 1.0.44 compiled: false diff --git a/javascript/frameworks/ui5/src/qlpack.yml b/javascript/frameworks/ui5/src/qlpack.yml index 4bf69c159..6585053c5 100644 --- a/javascript/frameworks/ui5/src/qlpack.yml +++ b/javascript/frameworks/ui5/src/qlpack.yml @@ -1,10 +1,10 @@ --- library: false name: advanced-security/javascript-sap-ui5-queries -version: 2.24.3 +version: 2.25.0 suites: codeql-suites extractor: javascript dependencies: - codeql/javascript-all: "^2.6.22" + codeql/javascript-all: "^2.6.24" advanced-security/javascript-sap-ui5-all: "${workspace}" default-suite-file: codeql-suites/javascript-code-scanning.qls diff --git a/javascript/frameworks/ui5/test/codeql-pack.lock.yml b/javascript/frameworks/ui5/test/codeql-pack.lock.yml index 0e2a61397..ed8f5cef1 100644 --- a/javascript/frameworks/ui5/test/codeql-pack.lock.yml +++ b/javascript/frameworks/ui5/test/codeql-pack.lock.yml @@ -2,35 +2,35 @@ lockVersion: 1.0.0 dependencies: codeql/concepts: - version: 0.0.17 + version: 0.0.18 codeql/controlflow: - version: 2.0.27 + version: 2.0.28 codeql/dataflow: - version: 2.0.27 + version: 2.1.0 codeql/javascript-all: - version: 2.6.23 + version: 2.6.24 codeql/javascript-queries: - version: 2.3.3 + version: 2.3.4 codeql/mad: - version: 1.0.43 + version: 1.0.44 codeql/regex: - version: 1.0.43 + version: 1.0.44 codeql/ssa: - version: 2.0.19 + version: 2.0.20 codeql/suite-helpers: - version: 1.0.43 + version: 1.0.44 codeql/threat-models: - version: 1.0.43 + version: 1.0.44 codeql/tutorial: - version: 1.0.43 + version: 1.0.44 codeql/typetracking: - version: 2.0.27 + version: 2.0.28 codeql/typos: - version: 1.0.43 + version: 1.0.44 codeql/util: - version: 2.0.30 + version: 2.0.31 codeql/xml: - version: 1.0.43 + version: 1.0.44 codeql/yaml: - version: 1.0.43 + version: 1.0.44 compiled: false diff --git a/javascript/frameworks/ui5/test/qlpack.yml b/javascript/frameworks/ui5/test/qlpack.yml index 6bb6f8536..02f6c4e5b 100644 --- a/javascript/frameworks/ui5/test/qlpack.yml +++ b/javascript/frameworks/ui5/test/qlpack.yml @@ -1,8 +1,8 @@ name: advanced-security/javascript-sap-ui5-queries-tests -version: 2.24.3 +version: 2.25.0 extractor: javascript dependencies: - codeql/javascript-all: "^2.6.22" + codeql/javascript-all: "^2.6.24" # We use this dependency to run the standard Log Injection query to ensure that # no overlap occurs with the SAP UI5 queries. We therefore allow any version # greater than or equal to 1.2.0, as major breaking changes are not a concern. diff --git a/javascript/frameworks/xsjs/ext/qlpack.yml b/javascript/frameworks/xsjs/ext/qlpack.yml index 39d653af4..536f3c345 100644 --- a/javascript/frameworks/xsjs/ext/qlpack.yml +++ b/javascript/frameworks/xsjs/ext/qlpack.yml @@ -1,8 +1,8 @@ --- library: true name: advanced-security/javascript-sap-xsjs-models -version: 2.24.3 +version: 2.25.0 extensionTargets: - codeql/javascript-all: "^2.6.22" + codeql/javascript-all: "^2.6.24" dataExtensions: - "*.model.yml" diff --git a/javascript/frameworks/xsjs/lib/codeql-pack.lock.yml b/javascript/frameworks/xsjs/lib/codeql-pack.lock.yml index 8aba5a528..710e9f7f8 100644 --- a/javascript/frameworks/xsjs/lib/codeql-pack.lock.yml +++ b/javascript/frameworks/xsjs/lib/codeql-pack.lock.yml @@ -2,29 +2,29 @@ lockVersion: 1.0.0 dependencies: codeql/concepts: - version: 0.0.17 + version: 0.0.18 codeql/controlflow: - version: 2.0.27 + version: 2.0.28 codeql/dataflow: - version: 2.0.27 + version: 2.1.0 codeql/javascript-all: - version: 2.6.23 + version: 2.6.24 codeql/mad: - version: 1.0.43 + version: 1.0.44 codeql/regex: - version: 1.0.43 + version: 1.0.44 codeql/ssa: - version: 2.0.19 + version: 2.0.20 codeql/threat-models: - version: 1.0.43 + version: 1.0.44 codeql/tutorial: - version: 1.0.43 + version: 1.0.44 codeql/typetracking: - version: 2.0.27 + version: 2.0.28 codeql/util: - version: 2.0.30 + version: 2.0.31 codeql/xml: - version: 1.0.43 + version: 1.0.44 codeql/yaml: - version: 1.0.43 + version: 1.0.44 compiled: false diff --git a/javascript/frameworks/xsjs/lib/qlpack.yml b/javascript/frameworks/xsjs/lib/qlpack.yml index f685654e3..306572420 100644 --- a/javascript/frameworks/xsjs/lib/qlpack.yml +++ b/javascript/frameworks/xsjs/lib/qlpack.yml @@ -1,8 +1,8 @@ --- library: true name: advanced-security/javascript-sap-xsjs-all -version: 2.24.3 +version: 2.25.0 suites: codeql-suites extractor: javascript dependencies: - codeql/javascript-all: "^2.6.22" + codeql/javascript-all: "^2.6.24" diff --git a/javascript/frameworks/xsjs/src/codeql-pack.lock.yml b/javascript/frameworks/xsjs/src/codeql-pack.lock.yml index 8aba5a528..710e9f7f8 100644 --- a/javascript/frameworks/xsjs/src/codeql-pack.lock.yml +++ b/javascript/frameworks/xsjs/src/codeql-pack.lock.yml @@ -2,29 +2,29 @@ lockVersion: 1.0.0 dependencies: codeql/concepts: - version: 0.0.17 + version: 0.0.18 codeql/controlflow: - version: 2.0.27 + version: 2.0.28 codeql/dataflow: - version: 2.0.27 + version: 2.1.0 codeql/javascript-all: - version: 2.6.23 + version: 2.6.24 codeql/mad: - version: 1.0.43 + version: 1.0.44 codeql/regex: - version: 1.0.43 + version: 1.0.44 codeql/ssa: - version: 2.0.19 + version: 2.0.20 codeql/threat-models: - version: 1.0.43 + version: 1.0.44 codeql/tutorial: - version: 1.0.43 + version: 1.0.44 codeql/typetracking: - version: 2.0.27 + version: 2.0.28 codeql/util: - version: 2.0.30 + version: 2.0.31 codeql/xml: - version: 1.0.43 + version: 1.0.44 codeql/yaml: - version: 1.0.43 + version: 1.0.44 compiled: false diff --git a/javascript/frameworks/xsjs/src/qlpack.yml b/javascript/frameworks/xsjs/src/qlpack.yml index 724439417..3d035fb75 100644 --- a/javascript/frameworks/xsjs/src/qlpack.yml +++ b/javascript/frameworks/xsjs/src/qlpack.yml @@ -1,10 +1,10 @@ --- library: false name: advanced-security/javascript-sap-xsjs-queries -version: 2.24.3 +version: 2.25.0 suites: codeql-suites extractor: javascript dependencies: - codeql/javascript-all: "^2.6.22" + codeql/javascript-all: "^2.6.24" advanced-security/javascript-sap-xsjs-all: "${workspace}" default-suite-file: codeql-suites/javascript-code-scanning.qls diff --git a/javascript/frameworks/xsjs/test/codeql-pack.lock.yml b/javascript/frameworks/xsjs/test/codeql-pack.lock.yml index 8aba5a528..710e9f7f8 100644 --- a/javascript/frameworks/xsjs/test/codeql-pack.lock.yml +++ b/javascript/frameworks/xsjs/test/codeql-pack.lock.yml @@ -2,29 +2,29 @@ lockVersion: 1.0.0 dependencies: codeql/concepts: - version: 0.0.17 + version: 0.0.18 codeql/controlflow: - version: 2.0.27 + version: 2.0.28 codeql/dataflow: - version: 2.0.27 + version: 2.1.0 codeql/javascript-all: - version: 2.6.23 + version: 2.6.24 codeql/mad: - version: 1.0.43 + version: 1.0.44 codeql/regex: - version: 1.0.43 + version: 1.0.44 codeql/ssa: - version: 2.0.19 + version: 2.0.20 codeql/threat-models: - version: 1.0.43 + version: 1.0.44 codeql/tutorial: - version: 1.0.43 + version: 1.0.44 codeql/typetracking: - version: 2.0.27 + version: 2.0.28 codeql/util: - version: 2.0.30 + version: 2.0.31 codeql/xml: - version: 1.0.43 + version: 1.0.44 codeql/yaml: - version: 1.0.43 + version: 1.0.44 compiled: false diff --git a/javascript/frameworks/xsjs/test/qlpack.yml b/javascript/frameworks/xsjs/test/qlpack.yml index 3cd01bd80..9228bce5f 100644 --- a/javascript/frameworks/xsjs/test/qlpack.yml +++ b/javascript/frameworks/xsjs/test/qlpack.yml @@ -1,9 +1,9 @@ --- name: advanced-security/javascript-sap-xsjs-tests -version: 2.24.3 +version: 2.25.0 extractor: javascript dependencies: - codeql/javascript-all: "^2.6.22" + codeql/javascript-all: "^2.6.24" advanced-security/javascript-sap-xsjs-queries: "${workspace}" advanced-security/javascript-sap-xsjs-all: "${workspace}" advanced-security/javascript-sap-xsjs-models: "${workspace}" diff --git a/javascript/heuristic-models/ext/qlpack.yml b/javascript/heuristic-models/ext/qlpack.yml index a45f3360f..af8ee4234 100644 --- a/javascript/heuristic-models/ext/qlpack.yml +++ b/javascript/heuristic-models/ext/qlpack.yml @@ -2,8 +2,8 @@ library: true warnOnImplicitThis: false name: advanced-security/javascript-heuristic-models -version: 2.24.3 +version: 2.25.0 extensionTargets: - codeql/javascript-all: "^2.6.22" + codeql/javascript-all: "^2.6.24" dataExtensions: - "*.model.yml" diff --git a/javascript/heuristic-models/tests/codeql-pack.lock.yml b/javascript/heuristic-models/tests/codeql-pack.lock.yml index 8aba5a528..710e9f7f8 100644 --- a/javascript/heuristic-models/tests/codeql-pack.lock.yml +++ b/javascript/heuristic-models/tests/codeql-pack.lock.yml @@ -2,29 +2,29 @@ lockVersion: 1.0.0 dependencies: codeql/concepts: - version: 0.0.17 + version: 0.0.18 codeql/controlflow: - version: 2.0.27 + version: 2.0.28 codeql/dataflow: - version: 2.0.27 + version: 2.1.0 codeql/javascript-all: - version: 2.6.23 + version: 2.6.24 codeql/mad: - version: 1.0.43 + version: 1.0.44 codeql/regex: - version: 1.0.43 + version: 1.0.44 codeql/ssa: - version: 2.0.19 + version: 2.0.20 codeql/threat-models: - version: 1.0.43 + version: 1.0.44 codeql/tutorial: - version: 1.0.43 + version: 1.0.44 codeql/typetracking: - version: 2.0.27 + version: 2.0.28 codeql/util: - version: 2.0.30 + version: 2.0.31 codeql/xml: - version: 1.0.43 + version: 1.0.44 codeql/yaml: - version: 1.0.43 + version: 1.0.44 compiled: false diff --git a/javascript/heuristic-models/tests/qlpack.yml b/javascript/heuristic-models/tests/qlpack.yml index 03b7f94e8..d0fd68d70 100644 --- a/javascript/heuristic-models/tests/qlpack.yml +++ b/javascript/heuristic-models/tests/qlpack.yml @@ -1,8 +1,8 @@ library: false warnOnImplicitThis: false name: advanced-security/javascript-heuristic-models-tests -version: 2.24.3 +version: 2.25.0 extractor: javascript dependencies: - "codeql/javascript-all": "^2.6.22" + "codeql/javascript-all": "^2.6.24" "advanced-security/javascript-heuristic-models": "${workspace}" diff --git a/qlt.conf.json b/qlt.conf.json index efea7e079..fe6dab6ba 100644 --- a/qlt.conf.json +++ b/qlt.conf.json @@ -1,5 +1,5 @@ { - "CodeQLCLI": "2.24.3", - "CodeQLStandardLibrary": "codeql-cli/v2.24.3", - "CodeQLCLIBundle": "codeql-bundle-v2.24.3" + "CodeQLCLI": "2.25.0", + "CodeQLStandardLibrary": "codeql-cli/v2.25.0", + "CodeQLCLIBundle": "codeql-bundle-v2.25.0" } From 63dc88c678c602b96fb4fa19c97c2d017f6deb00 Mon Sep 17 00:00:00 2001 From: Mauro Baluda Date: Mon, 23 Mar 2026 13:29:43 +0100 Subject: [PATCH 5/8] Update pack dependency --- javascript/frameworks/cap/src/qlpack.yml | 2 +- javascript/frameworks/cap/test/qlpack.yml | 6 +++--- javascript/frameworks/ui5-webcomponents/test/qlpack.yml | 2 +- javascript/frameworks/ui5/src/qlpack.yml | 2 +- javascript/frameworks/ui5/test/qlpack.yml | 6 +++--- javascript/frameworks/xsjs/src/qlpack.yml | 2 +- javascript/frameworks/xsjs/test/qlpack.yml | 6 +++--- javascript/heuristic-models/tests/qlpack.yml | 2 +- 8 files changed, 14 insertions(+), 14 deletions(-) diff --git a/javascript/frameworks/cap/src/qlpack.yml b/javascript/frameworks/cap/src/qlpack.yml index 6f84f8e29..280e21c5e 100644 --- a/javascript/frameworks/cap/src/qlpack.yml +++ b/javascript/frameworks/cap/src/qlpack.yml @@ -6,5 +6,5 @@ suites: codeql-suites extractor: javascript dependencies: codeql/javascript-all: "^2.6.24" - advanced-security/javascript-sap-cap-all: "${workspace}" + advanced-security/javascript-sap-cap-all: "2.25.0" default-suite-file: codeql-suites/javascript-code-scanning.qls diff --git a/javascript/frameworks/cap/test/qlpack.yml b/javascript/frameworks/cap/test/qlpack.yml index aac89d6ed..1d07dae06 100644 --- a/javascript/frameworks/cap/test/qlpack.yml +++ b/javascript/frameworks/cap/test/qlpack.yml @@ -4,6 +4,6 @@ version: 2.25.0 extractor: javascript dependencies: codeql/javascript-all: "^2.6.24" - advanced-security/javascript-sap-cap-queries: "${workspace}" - advanced-security/javascript-sap-cap-models: "${workspace}" - advanced-security/javascript-sap-cap-all: "${workspace}" + advanced-security/javascript-sap-cap-queries: "2.25.0" + advanced-security/javascript-sap-cap-models: "2.25.0" + advanced-security/javascript-sap-cap-all: "2.25.0" diff --git a/javascript/frameworks/ui5-webcomponents/test/qlpack.yml b/javascript/frameworks/ui5-webcomponents/test/qlpack.yml index 97a5b6038..c63e68011 100644 --- a/javascript/frameworks/ui5-webcomponents/test/qlpack.yml +++ b/javascript/frameworks/ui5-webcomponents/test/qlpack.yml @@ -3,4 +3,4 @@ version: 2.25.0 extractor: javascript dependencies: codeql/javascript-all: "^2.6.24" - advanced-security/javascript-sap-ui5-all: "${workspace}" + advanced-security/javascript-sap-ui5-all: "2.25.0" diff --git a/javascript/frameworks/ui5/src/qlpack.yml b/javascript/frameworks/ui5/src/qlpack.yml index 6585053c5..c1ce6e64a 100644 --- a/javascript/frameworks/ui5/src/qlpack.yml +++ b/javascript/frameworks/ui5/src/qlpack.yml @@ -6,5 +6,5 @@ suites: codeql-suites extractor: javascript dependencies: codeql/javascript-all: "^2.6.24" - advanced-security/javascript-sap-ui5-all: "${workspace}" + advanced-security/javascript-sap-ui5-all: "2.25.0" default-suite-file: codeql-suites/javascript-code-scanning.qls diff --git a/javascript/frameworks/ui5/test/qlpack.yml b/javascript/frameworks/ui5/test/qlpack.yml index 02f6c4e5b..302e77ecd 100644 --- a/javascript/frameworks/ui5/test/qlpack.yml +++ b/javascript/frameworks/ui5/test/qlpack.yml @@ -7,6 +7,6 @@ dependencies: # no overlap occurs with the SAP UI5 queries. We therefore allow any version # greater than or equal to 1.2.0, as major breaking changes are not a concern. codeql/javascript-queries: ">1.2.0" - advanced-security/javascript-sap-ui5-queries: "${workspace}" - advanced-security/javascript-sap-ui5-models: "${workspace}" - advanced-security/javascript-sap-ui5-all: "${workspace}" + advanced-security/javascript-sap-ui5-queries: "2.25.0" + advanced-security/javascript-sap-ui5-models: "2.25.0" + advanced-security/javascript-sap-ui5-all: "2.25.0" diff --git a/javascript/frameworks/xsjs/src/qlpack.yml b/javascript/frameworks/xsjs/src/qlpack.yml index 3d035fb75..25c432ec8 100644 --- a/javascript/frameworks/xsjs/src/qlpack.yml +++ b/javascript/frameworks/xsjs/src/qlpack.yml @@ -6,5 +6,5 @@ suites: codeql-suites extractor: javascript dependencies: codeql/javascript-all: "^2.6.24" - advanced-security/javascript-sap-xsjs-all: "${workspace}" + advanced-security/javascript-sap-xsjs-all: "2.25.0" default-suite-file: codeql-suites/javascript-code-scanning.qls diff --git a/javascript/frameworks/xsjs/test/qlpack.yml b/javascript/frameworks/xsjs/test/qlpack.yml index 9228bce5f..5f4ea503d 100644 --- a/javascript/frameworks/xsjs/test/qlpack.yml +++ b/javascript/frameworks/xsjs/test/qlpack.yml @@ -4,6 +4,6 @@ version: 2.25.0 extractor: javascript dependencies: codeql/javascript-all: "^2.6.24" - advanced-security/javascript-sap-xsjs-queries: "${workspace}" - advanced-security/javascript-sap-xsjs-all: "${workspace}" - advanced-security/javascript-sap-xsjs-models: "${workspace}" + advanced-security/javascript-sap-xsjs-queries: "2.25.0" + advanced-security/javascript-sap-xsjs-all: "2.25.0" + advanced-security/javascript-sap-xsjs-models: "2.25.0" diff --git a/javascript/heuristic-models/tests/qlpack.yml b/javascript/heuristic-models/tests/qlpack.yml index d0fd68d70..80a0edc01 100644 --- a/javascript/heuristic-models/tests/qlpack.yml +++ b/javascript/heuristic-models/tests/qlpack.yml @@ -5,4 +5,4 @@ version: 2.25.0 extractor: javascript dependencies: "codeql/javascript-all": "^2.6.24" - "advanced-security/javascript-heuristic-models": "${workspace}" + "advanced-security/javascript-heuristic-models": "2.25.0" From d77479295a59f241dd0b37992ce6c1b19e2a3292 Mon Sep 17 00:00:00 2001 From: Mauro Baluda Date: Mon, 23 Mar 2026 13:58:07 +0100 Subject: [PATCH 6/8] Update source type --- .../ui5/test/models/source/sourceTest.expected | 14 +++++++------- 1 file changed, 7 insertions(+), 7 deletions(-) diff --git a/javascript/frameworks/ui5/test/models/source/sourceTest.expected b/javascript/frameworks/ui5/test/models/source/sourceTest.expected index c3539750e..331d5c81d 100644 --- a/javascript/frameworks/ui5/test/models/source/sourceTest.expected +++ b/javascript/frameworks/ui5/test/models/source/sourceTest.expected @@ -54,7 +54,7 @@ | source.js:92:17:92:25 | obj.value | Remote flow source of type: Source node (remote) [from data-extension] | | source.js:94:17:94:30 | obj.getValue() | Remote flow source of type: Remote flow | | source.js:94:17:94:30 | obj.getValue() | Remote flow source of type: Source node (remote) [from data-extension] | -| source.js:96:17:96:51 | jQuery. ... ).get() | Remote flow source of type: Remote flow | +| source.js:96:17:96:51 | jQuery. ... ).get() | Remote flow source of type: Source node (browser-url-query) [from data-extension] | | source.js:96:17:96:51 | jQuery. ... ).get() | Remote flow source of type: Source node (remote) [from data-extension] | | source.js:98:17:98:37 | jQuery. ... cHead() | Remote flow source of type: Remote flow | | source.js:98:17:98:37 | jQuery. ... cHead() | Remote flow source of type: Source node (remote) [from data-extension] | @@ -66,15 +66,15 @@ | source.js:104:17:104:37 | jQuery. ... cPost() | Remote flow source of type: Source node (remote) [from data-extension] | | source.js:106:17:106:41 | jQuery. ... tText() | Remote flow source of type: Remote flow | | source.js:106:17:106:41 | jQuery. ... tText() | Remote flow source of type: Source node (remote) [from data-extension] | -| source.js:108:17:108:52 | UriPara ... ).get() | Remote flow source of type: Remote flow | +| source.js:108:17:108:52 | UriPara ... ).get() | Remote flow source of type: Source node (browser-url-query) [from data-extension] | | source.js:108:17:108:52 | UriPara ... ).get() | Remote flow source of type: Source node (remote) [from data-extension] | -| source.js:109:17:109:55 | UriPara ... etAll() | Remote flow source of type: Remote flow | +| source.js:109:17:109:55 | UriPara ... etAll() | Remote flow source of type: Source node (browser-url-query) [from data-extension] | | source.js:109:17:109:55 | UriPara ... etAll() | Remote flow source of type: Source node (remote) [from data-extension] | -| source.js:112:17:112:25 | obj.get() | Remote flow source of type: Remote flow | +| source.js:112:17:112:25 | obj.get() | Remote flow source of type: Source node (browser-url-query) [from data-extension] | | source.js:112:17:112:25 | obj.get() | Remote flow source of type: Source node (remote) [from data-extension] | -| source.js:113:17:113:28 | obj.getAll() | Remote flow source of type: Remote flow | +| source.js:113:17:113:28 | obj.getAll() | Remote flow source of type: Source node (browser-url-query) [from data-extension] | | source.js:113:17:113:28 | obj.getAll() | Remote flow source of type: Source node (remote) [from data-extension] | -| source.js:115:17:115:28 | obj.getAll() | Remote flow source of type: Remote flow | +| source.js:115:17:115:28 | obj.getAll() | Remote flow source of type: Source node (browser-url-query) [from data-extension] | | source.js:115:17:115:28 | obj.getAll() | Remote flow source of type: Source node (remote) [from data-extension] | -| source.js:117:17:117:25 | obj.get() | Remote flow source of type: Remote flow | +| source.js:117:17:117:25 | obj.get() | Remote flow source of type: Source node (browser-url-query) [from data-extension] | | source.js:117:17:117:25 | obj.get() | Remote flow source of type: Source node (remote) [from data-extension] | From 5f607c51af87134b6692ef83973f56651f9c04ef Mon Sep 17 00:00:00 2001 From: Mauro Baluda Date: Tue, 24 Mar 2026 09:36:42 +0100 Subject: [PATCH 7/8] CSRF test --- .../ui5/test/queries/RequestForgery/CSRF.expected | 4 ++++ .../frameworks/ui5/test/queries/RequestForgery/test.js | 8 ++------ 2 files changed, 6 insertions(+), 6 deletions(-) diff --git a/javascript/frameworks/ui5/test/queries/RequestForgery/CSRF.expected b/javascript/frameworks/ui5/test/queries/RequestForgery/CSRF.expected index e217064d1..1143df044 100644 --- a/javascript/frameworks/ui5/test/queries/RequestForgery/CSRF.expected +++ b/javascript/frameworks/ui5/test/queries/RequestForgery/CSRF.expected @@ -1,4 +1,8 @@ edges +| test.js:1:11:1:50 | jQuery. ... ("url") | test.js:2:34:2:36 | url | provenance | | nodes +| test.js:1:11:1:50 | jQuery. ... ("url") | semmle.label | jQuery. ... ("url") | +| test.js:2:34:2:36 | url | semmle.label | url | subpaths #select +| test.js:2:1:2:20 | new XMLHttpRequest() | test.js:1:11:1:50 | jQuery. ... ("url") | test.js:2:34:2:36 | url | The $@ of this request depends on a $@. | test.js:2:34:2:36 | url | URL | test.js:1:11:1:50 | jQuery. ... ("url") | user-provided value | diff --git a/javascript/frameworks/ui5/test/queries/RequestForgery/test.js b/javascript/frameworks/ui5/test/queries/RequestForgery/test.js index dfde449f0..c9f7633ce 100644 --- a/javascript/frameworks/ui5/test/queries/RequestForgery/test.js +++ b/javascript/frameworks/ui5/test/queries/RequestForgery/test.js @@ -1,6 +1,2 @@ -import request from 'request'; -$(document).ready(function () { - var request = new XMLHttpRequest(); - var url = jQuery.sap.GetUriParameters().get("url"); - request.open("GET", url, false); -}); \ No newline at end of file +var url = jQuery.sap.getUriParameters().get("url"); +new XMLHttpRequest().open("GET", url, false); \ No newline at end of file From 98c27109347191d6a2fce264cfbfe21041061268 Mon Sep 17 00:00:00 2001 From: Mauro Baluda Date: Tue, 24 Mar 2026 09:42:25 +0100 Subject: [PATCH 8/8] Test names --- .../{CSRF.expected => ClientSideRequestForgery.expected} | 0 .../RequestForgery/{CSRF.qlref => ClientSideRequestForgery.qlref} | 0 .../RequestForgery/{SSRF.expected => RequestForgery.expected} | 0 .../queries/RequestForgery/{SSRF.qlref => RequestForgery.qlref} | 0 4 files changed, 0 insertions(+), 0 deletions(-) rename javascript/frameworks/ui5/test/queries/RequestForgery/{CSRF.expected => ClientSideRequestForgery.expected} (100%) rename javascript/frameworks/ui5/test/queries/RequestForgery/{CSRF.qlref => ClientSideRequestForgery.qlref} (100%) rename javascript/frameworks/ui5/test/queries/RequestForgery/{SSRF.expected => RequestForgery.expected} (100%) rename javascript/frameworks/ui5/test/queries/RequestForgery/{SSRF.qlref => RequestForgery.qlref} (100%) diff --git a/javascript/frameworks/ui5/test/queries/RequestForgery/CSRF.expected b/javascript/frameworks/ui5/test/queries/RequestForgery/ClientSideRequestForgery.expected similarity index 100% rename from javascript/frameworks/ui5/test/queries/RequestForgery/CSRF.expected rename to javascript/frameworks/ui5/test/queries/RequestForgery/ClientSideRequestForgery.expected diff --git a/javascript/frameworks/ui5/test/queries/RequestForgery/CSRF.qlref b/javascript/frameworks/ui5/test/queries/RequestForgery/ClientSideRequestForgery.qlref similarity index 100% rename from javascript/frameworks/ui5/test/queries/RequestForgery/CSRF.qlref rename to javascript/frameworks/ui5/test/queries/RequestForgery/ClientSideRequestForgery.qlref diff --git a/javascript/frameworks/ui5/test/queries/RequestForgery/SSRF.expected b/javascript/frameworks/ui5/test/queries/RequestForgery/RequestForgery.expected similarity index 100% rename from javascript/frameworks/ui5/test/queries/RequestForgery/SSRF.expected rename to javascript/frameworks/ui5/test/queries/RequestForgery/RequestForgery.expected diff --git a/javascript/frameworks/ui5/test/queries/RequestForgery/SSRF.qlref b/javascript/frameworks/ui5/test/queries/RequestForgery/RequestForgery.qlref similarity index 100% rename from javascript/frameworks/ui5/test/queries/RequestForgery/SSRF.qlref rename to javascript/frameworks/ui5/test/queries/RequestForgery/RequestForgery.qlref