Details

    • Type: Language-Specification
    • Status: Active
    • Resolution: Unresolved
    • Labels:
      None
    • Impact:
      Unknown 'null' severity
    • Likelihood:
      Unknown 'null' severity
    • Default Quality Profiles:
      Sonar way, Sonar way recommended

      Description

      Questionable Code Example

      // The process object is a global that provides information about, and control over, the current Node.js process
      // All uses of process.stdin are security-sensitive and should be reviewed
      
      process.stdin.on('readable', () => {
      	const chunk = process.stdin.read(); // Questionable
      	if (chunk !== null) {
      		dosomething(chunk);
      	}
      });
      
      const readline = require('readline');
      readline.createInterface({
      	input: process.stdin // Questionable
      }).on('line', (input) => {
      	dosomething(input);
      });
      

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              lars.svensson Lars Svensson (Inactive)
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated: