npm - circle-ir - Versions diffs - 3.1.0 - Mend

circle-ir 3.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (194) hide show

package/LICENSE +15 -0
package/README.md +200 -0
package/configs/sinks/code_injection.yaml +672 -0
package/configs/sinks/command.yaml +917 -0
package/configs/sinks/deserialization.yaml +105 -0
package/configs/sinks/ldap.yaml +136 -0
package/configs/sinks/nodejs.json +629 -0
package/configs/sinks/path.yaml +715 -0
package/configs/sinks/python.json +501 -0
package/configs/sinks/rust.json +339 -0
package/configs/sinks/sql.yaml +233 -0
package/configs/sinks/ssrf.yaml +160 -0
package/configs/sinks/xpath.yaml +121 -0
package/configs/sinks/xss.yaml +727 -0
package/configs/sources/db_sources.yaml +90 -0
package/configs/sources/env_sources.yaml +94 -0
package/configs/sources/express.json +197 -0
package/configs/sources/file_sources.yaml +164 -0
package/configs/sources/http_sources.yaml +379 -0
package/configs/sources/io_sources.yaml +519 -0
package/configs/sources/network_sources.yaml +99 -0
package/configs/sources/python.json +230 -0
package/configs/sources/rust.json +286 -0
package/configs/sources/spring.yaml +70 -0
package/dist/analysis/advisory-db.d.ts +86 -0
package/dist/analysis/advisory-db.js +104 -0
package/dist/analysis/advisory-db.js.map +1 -0
package/dist/analysis/cargo-parser.d.ts +42 -0
package/dist/analysis/cargo-parser.js +102 -0
package/dist/analysis/cargo-parser.js.map +1 -0
package/dist/analysis/config-loader.d.ts +37 -0
package/dist/analysis/config-loader.js +1561 -0
package/dist/analysis/config-loader.js.map +1 -0
package/dist/analysis/constant-propagation/ast-utils.d.ts +25 -0
package/dist/analysis/constant-propagation/ast-utils.js +34 -0
package/dist/analysis/constant-propagation/ast-utils.js.map +1 -0
package/dist/analysis/constant-propagation/evaluator.d.ts +32 -0
package/dist/analysis/constant-propagation/evaluator.js +296 -0
package/dist/analysis/constant-propagation/evaluator.js.map +1 -0
package/dist/analysis/constant-propagation/index.d.ts +62 -0
package/dist/analysis/constant-propagation/index.js +152 -0
package/dist/analysis/constant-propagation/index.js.map +1 -0
package/dist/analysis/constant-propagation/patterns.d.ts +8 -0
package/dist/analysis/constant-propagation/patterns.js +126 -0
package/dist/analysis/constant-propagation/patterns.js.map +1 -0
package/dist/analysis/constant-propagation/propagator.d.ts +180 -0
package/dist/analysis/constant-propagation/propagator.js +1985 -0
package/dist/analysis/constant-propagation/propagator.js.map +1 -0
package/dist/analysis/constant-propagation/types.d.ts +63 -0
package/dist/analysis/constant-propagation/types.js +5 -0
package/dist/analysis/constant-propagation/types.js.map +1 -0
package/dist/analysis/constant-propagation.d.ts +9 -0
package/dist/analysis/constant-propagation.js +18 -0
package/dist/analysis/constant-propagation.js.map +1 -0
package/dist/analysis/dependency-scanner.d.ts +79 -0
package/dist/analysis/dependency-scanner.js +122 -0
package/dist/analysis/dependency-scanner.js.map +1 -0
package/dist/analysis/dfg-verifier.d.ts +116 -0
package/dist/analysis/dfg-verifier.js +399 -0
package/dist/analysis/dfg-verifier.js.map +1 -0
package/dist/analysis/findings.d.ts +11 -0
package/dist/analysis/findings.js +228 -0
package/dist/analysis/findings.js.map +1 -0
package/dist/analysis/index.d.ts +16 -0
package/dist/analysis/index.js +18 -0
package/dist/analysis/index.js.map +1 -0
package/dist/analysis/interprocedural.d.ts +99 -0
package/dist/analysis/interprocedural.js +526 -0
package/dist/analysis/interprocedural.js.map +1 -0
package/dist/analysis/path-finder.d.ts +133 -0
package/dist/analysis/path-finder.js +354 -0
package/dist/analysis/path-finder.js.map +1 -0
package/dist/analysis/rules.d.ts +75 -0
package/dist/analysis/rules.js +332 -0
package/dist/analysis/rules.js.map +1 -0
package/dist/analysis/semver.d.ts +27 -0
package/dist/analysis/semver.js +127 -0
package/dist/analysis/semver.js.map +1 -0
package/dist/analysis/taint-matcher.d.ts +15 -0
package/dist/analysis/taint-matcher.js +634 -0
package/dist/analysis/taint-matcher.js.map +1 -0
package/dist/analysis/taint-propagation.d.ts +67 -0
package/dist/analysis/taint-propagation.js +298 -0
package/dist/analysis/taint-propagation.js.map +1 -0
package/dist/analysis/unresolved.d.ts +14 -0
package/dist/analysis/unresolved.js +202 -0
package/dist/analysis/unresolved.js.map +1 -0
package/dist/analyzer.d.ts +43 -0
package/dist/analyzer.js +1010 -0
package/dist/analyzer.js.map +1 -0
package/dist/browser/circle-ir.js +16576 -0
package/dist/browser.d.ts +38 -0
package/dist/browser.js +38 -0
package/dist/browser.js.map +1 -0
package/dist/core/circle-ir-core.cjs +13626 -0
package/dist/core/circle-ir-core.d.ts +59 -0
package/dist/core/circle-ir-core.js +13591 -0
package/dist/core/extractors/calls.d.ts +13 -0
package/dist/core/extractors/calls.js +1429 -0
package/dist/core/extractors/calls.js.map +1 -0
package/dist/core/extractors/cfg.d.ts +9 -0
package/dist/core/extractors/cfg.js +519 -0
package/dist/core/extractors/cfg.js.map +1 -0
package/dist/core/extractors/dfg.d.ts +12 -0
package/dist/core/extractors/dfg.js +1081 -0
package/dist/core/extractors/dfg.js.map +1 -0
package/dist/core/extractors/exports.d.ts +14 -0
package/dist/core/extractors/exports.js +80 -0
package/dist/core/extractors/exports.js.map +1 -0
package/dist/core/extractors/imports.d.ts +9 -0
package/dist/core/extractors/imports.js +739 -0
package/dist/core/extractors/imports.js.map +1 -0
package/dist/core/extractors/index.d.ts +10 -0
package/dist/core/extractors/index.js +11 -0
package/dist/core/extractors/index.js.map +1 -0
package/dist/core/extractors/meta.d.ts +10 -0
package/dist/core/extractors/meta.js +109 -0
package/dist/core/extractors/meta.js.map +1 -0
package/dist/core/extractors/types.d.ts +10 -0
package/dist/core/extractors/types.js +1479 -0
package/dist/core/extractors/types.js.map +1 -0
package/dist/core/index.d.ts +5 -0
package/dist/core/index.js +8 -0
package/dist/core/index.js.map +1 -0
package/dist/core/parser.d.ts +84 -0
package/dist/core/parser.js +250 -0
package/dist/core/parser.js.map +1 -0
package/dist/core-lib.d.ts +59 -0
package/dist/core-lib.js +62 -0
package/dist/core-lib.js.map +1 -0
package/dist/index.d.ts +15 -0
package/dist/index.js +20 -0
package/dist/index.js.map +1 -0
package/dist/languages/index.d.ts +11 -0
package/dist/languages/index.js +14 -0
package/dist/languages/index.js.map +1 -0
package/dist/languages/plugins/base.d.ts +44 -0
package/dist/languages/plugins/base.js +82 -0
package/dist/languages/plugins/base.js.map +1 -0
package/dist/languages/plugins/index.d.ts +14 -0
package/dist/languages/plugins/index.js +25 -0
package/dist/languages/plugins/index.js.map +1 -0
package/dist/languages/plugins/java.d.ts +49 -0
package/dist/languages/plugins/java.js +402 -0
package/dist/languages/plugins/java.js.map +1 -0
package/dist/languages/plugins/javascript.d.ts +48 -0
package/dist/languages/plugins/javascript.js +445 -0
package/dist/languages/plugins/javascript.js.map +1 -0
package/dist/languages/plugins/python.d.ts +47 -0
package/dist/languages/plugins/python.js +480 -0
package/dist/languages/plugins/python.js.map +1 -0
package/dist/languages/plugins/rust.d.ts +47 -0
package/dist/languages/plugins/rust.js +405 -0
package/dist/languages/plugins/rust.js.map +1 -0
package/dist/languages/registry.d.ts +30 -0
package/dist/languages/registry.js +80 -0
package/dist/languages/registry.js.map +1 -0
package/dist/languages/types.d.ts +184 -0
package/dist/languages/types.js +8 -0
package/dist/languages/types.js.map +1 -0
package/dist/resolution/cross-file.d.ts +146 -0
package/dist/resolution/cross-file.js +439 -0
package/dist/resolution/cross-file.js.map +1 -0
package/dist/resolution/index.d.ts +12 -0
package/dist/resolution/index.js +10 -0
package/dist/resolution/index.js.map +1 -0
package/dist/resolution/symbol-table.d.ts +136 -0
package/dist/resolution/symbol-table.js +336 -0
package/dist/resolution/symbol-table.js.map +1 -0
package/dist/resolution/type-hierarchy.d.ts +124 -0
package/dist/resolution/type-hierarchy.js +515 -0
package/dist/resolution/type-hierarchy.js.map +1 -0
package/dist/types/config.d.ts +45 -0
package/dist/types/config.js +5 -0
package/dist/types/config.js.map +1 -0
package/dist/types/index.d.ts +392 -0
package/dist/types/index.js +7 -0
package/dist/types/index.js.map +1 -0
package/dist/utils/logger.d.ts +85 -0
package/dist/utils/logger.js +198 -0
package/dist/utils/logger.js.map +1 -0
package/dist/wasm/tree-sitter-java.wasm +0 -0
package/dist/wasm/tree-sitter-javascript.wasm +0 -0
package/dist/wasm/tree-sitter-python.wasm +0 -0
package/dist/wasm/tree-sitter-rust.wasm +0 -0
package/dist/wasm/web-tree-sitter.wasm +0 -0
package/docs/SPEC.md +1021 -0
package/examples/browser-example.html +610 -0
package/examples/node-example.ts +215 -0
package/package.json +107 -0
package/wasm/tree-sitter-java.wasm +0 -0
package/wasm/tree-sitter-javascript.wasm +0 -0
package/wasm/tree-sitter-python.wasm +0 -0
package/wasm/tree-sitter-rust.wasm +0 -0

package/configs/sinks/xss.yaml ADDED Viewed

@@ -0,0 +1,727 @@
+{
+  "sinks": [
+    {
+      "method": "sendError",
+      "class": "HttpServletResponse",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        1
+      ],
+      "note": "XSS in error message (CWE-81)"
+    },
+    {
+      "method": "setStatus",
+      "class": "HttpServletResponse",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "medium",
+      "arg_positions": [
+        1
+      ]
+    },
+    {
+      "method": "sendRedirect",
+      "class": "HttpServletResponse",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        0
+      ],
+      "note": "Open redirect leading to XSS"
+    },
+    {
+      "method": "setHeader",
+      "class": "HttpServletResponse",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        1
+      ],
+      "note": "HTTP header injection / XSS in header"
+    },
+    {
+      "method": "addHeader",
+      "class": "HttpServletResponse",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        1
+      ]
+    },
+    {
+      "method": "getWriter",
+      "class": "HttpServletResponse",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "Returns PrintWriter - check what's written"
+    },
+    {
+      "method": "print",
+      "class": "PrintWriter",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        0
+      ],
+      "note": "Direct output to HTTP response"
+    },
+    {
+      "method": "println",
+      "class": "PrintWriter",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        0
+      ]
+    },
+    {
+      "method": "write",
+      "class": "PrintWriter",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        0
+      ]
+    },
+    {
+      "method": "printf",
+      "class": "PrintWriter",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        1
+      ]
+    },
+    {
+      "method": "format",
+      "class": "PrintWriter",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        1
+      ]
+    },
+    {
+      "method": "append",
+      "class": "PrintWriter",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        0
+      ]
+    },
+    {
+      "method": "getOutputStream",
+      "class": "HttpServletResponse",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "medium"
+    },
+    {
+      "method": "print",
+      "class": "ServletOutputStream",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        0
+      ]
+    },
+    {
+      "method": "println",
+      "class": "ServletOutputStream",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        0
+      ]
+    },
+    {
+      "method": "print",
+      "class": "JspWriter",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        0
+      ]
+    },
+    {
+      "method": "println",
+      "class": "JspWriter",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        0
+      ]
+    },
+    {
+      "method": "write",
+      "class": "JspWriter",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        0
+      ]
+    },
+    {
+      "method": "ok",
+      "class": "ResponseEntity",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "medium",
+      "arg_positions": [
+        0
+      ],
+      "note": "Check if body contains unencoded user input"
+    },
+    {
+      "method": "body",
+      "class": "ResponseEntity$BodyBuilder",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "medium",
+      "arg_positions": [
+        0
+      ]
+    },
+    {
+      "annotation": "@ResponseBody",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "medium",
+      "note": "Check return value encoding"
+    },
+    {
+      "method": "addAttribute",
+      "class": "Model",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "medium",
+      "arg_positions": [
+        1
+      ],
+      "note": "Check if used in unescaped JSP/Thymeleaf"
+    },
+    {
+      "method": "addAttribute",
+      "class": "ModelMap",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "medium",
+      "arg_positions": [
+        1
+      ]
+    },
+    {
+      "method": "put",
+      "class": "ModelMap",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "medium",
+      "arg_positions": [
+        1
+      ]
+    },
+    {
+      "method": "setAttribute",
+      "class": "HttpServletRequest",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "low",
+      "arg_positions": [
+        1
+      ],
+      "note": "Low risk unless forwarded to JSP"
+    },
+    {
+      "method": "append",
+      "class": "StringBuilder",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "medium",
+      "arg_positions": [
+        0
+      ],
+      "note": "Check if used for HTML and written to response"
+    },
+    {
+      "method": "append",
+      "class": "StringBuffer",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "medium",
+      "arg_positions": [
+        0
+      ]
+    },
+    {
+      "method": "put",
+      "class": "VelocityContext",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        1
+      ],
+      "note": "Velocity doesn't auto-escape by default"
+    },
+    {
+      "method": "setVariable",
+      "class": "Environment",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "medium",
+      "arg_positions": [
+        1
+      ]
+    },
+    {
+      "method": "Cookie",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "low",
+      "arg_positions": [
+        1
+      ],
+      "note": "Cookie value XSS - rare but possible"
+    },
+    {
+      "method": "setValue",
+      "class": "Cookie",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "low",
+      "arg_positions": [
+        0
+      ]
+    },
+    {
+      "method": "addJavascript",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "critical",
+      "arg_positions": [
+        0
+      ],
+      "note": "JavaScript context requires JS encoding"
+    },
+    {
+      "method": "setAttribute",
+      "class": "HttpSession",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        1
+      ],
+      "note": "Session attribute can be reflected in HTML"
+    },
+    {
+      "method": "putValue",
+      "class": "HttpSession",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        1
+      ]
+    },
+    {
+      "method": "setAttribute",
+      "class": "HttpServletRequest",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        1
+      ],
+      "note": "Request attribute reflection"
+    },
+    {
+      "method": "addAttribute",
+      "class": "Model",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        1
+      ],
+      "note": "Spring MVC model attribute XSS"
+    },
+    {
+      "method": "addAttribute",
+      "class": "ModelMap",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        1
+      ]
+    },
+    {
+      "method": "addObject",
+      "class": "ModelAndView",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "arg_positions": [
+        1
+      ]
+    },
+    {
+      "method": "getResource",
+      "type": "xss",
+      "cwe": "CWE-79",
+      "severity": "high",
+      "arg_positions": [
+        0
+      ],
+      "note": "Auto-mined from CVE analysis"
+    },
+    {
+      "method": "compile",
+      "class": "XPath",
+      "type": "xss",
+      "cwe": "CWE-79",
+      "severity": "high",
+      "arg_positions": [
+        0
+      ],
+      "note": "Auto-mined from CVE analysis"
+    },
+    {
+      "method": "write",
+      "type": "xss",
+      "cwe": "CWE-79",
+      "severity": "high",
+      "arg_positions": [
+        0
+      ],
+      "note": "Auto-mined from CVE analysis"
+    },
+    {
+      "method": "newInstance",
+      "type": "xss",
+      "cwe": "CWE-79",
+      "severity": "high",
+      "arg_positions": [
+        0
+      ],
+      "note": "Auto-mined from CVE analysis"
+    },
+    {
+      "method": "parse",
+      "class": "DocumentBuilder",
+      "type": "xss",
+      "cwe": "CWE-79",
+      "severity": "high",
+      "arg_positions": [
+        0
+      ],
+      "note": "Auto-mined from CVE analysis"
+    },
+    {
+      "method": "execute",
+      "class": "WikiPlugin",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "Wiki plugin execution - may render HTML"
+    },
+    {
+      "method": "handleLinks",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "Wiki link rendering"
+    },
+    {
+      "method": "getString",
+      "class": "WysiwygEditingRenderer",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "Wiki WYSIWYG rendering"
+    },
+    {
+      "method": "printXMLElement",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "XML/HTML element output"
+    },
+    {
+      "method": "printXMLStartElement",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "XML/HTML start element output"
+    },
+    {
+      "method": "printRaw",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "Raw HTML output without encoding"
+    },
+    {
+      "method": "getValidInput",
+      "class": "DefaultValidator",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "ESAPI validator - may have bypass vulnerabilities"
+    },
+    {
+      "method": "getValidSafeHTML",
+      "class": "DefaultValidator",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "ESAPI HTML validator"
+    },
+    {
+      "method": "scan",
+      "class": "AntiSamyDOMScanner",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "AntiSamy HTML scanner"
+    },
+    {
+      "method": "scan",
+      "class": "AntiSamySAXScanner",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "AntiSamy SAX scanner"
+    },
+    {
+      "method": "startElement",
+      "class": "MagicSAXFilter",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "AntiSamy SAX filter"
+    },
+    {
+      "method": "decodeRedirectUri",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "Redirect URI decoding - potential XSS via open redirect"
+    },
+    {
+      "method": "getOrigin",
+      "class": "UriUtils",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "URI origin extraction"
+    },
+    {
+      "method": "isValid",
+      "class": "SafeHtmlValidator",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "Hibernate SafeHtml validator"
+    },
+    {
+      "method": "getFragmentAsDocument",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "HTML fragment parsing"
+    },
+    {
+      "method": "cleanAttributes",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "XWiki/HTML attribute sanitization - may have bypass"
+    },
+    {
+      "method": "printXMLElement",
+      "class": "XHTMLWikiPrinter",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "XWiki XHTML element output"
+    },
+    {
+      "method": "printXMLStartElement",
+      "class": "XHTMLWikiPrinter",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "XWiki XHTML start element output"
+    },
+    {
+      "method": "printXMLComment",
+      "class": "XMLWikiPrinter",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "XML comment output"
+    },
+    {
+      "method": "sanitize",
+      "class": "JsonSanitizer",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "Google JsonSanitizer - check for bypass CVEs"
+    },
+    {
+      "method": "validate",
+      "class": "SafeHtmlValidator",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "Hibernate SafeHtml - CVE-2019-10219 bypass"
+    },
+    {
+      "method": "clean",
+      "class": "HtmlCleaner",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "HtmlCleaner sanitization"
+    },
+    {
+      "method": "clean",
+      "class": "Cleaner",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "Jsoup cleaner"
+    },
+    {
+      "method": "save",
+      "class": "JobGroupController",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "XXL-Job controller - CVE-2020-29204"
+    },
+    {
+      "method": "parseText",
+      "class": "Jsoup",
+      "type": "xss",
+      "cwe": "CWE-079",
+      "severity": "high",
+      "note": "Jsoup HTML parsing"
+    }
+  ],
+  "sanitizers": [
+    {
+      "method": "forHtml",
+      "class": "Encode",
+      "removes": [
+        "xss"
+      ],
+      "note": "OWASP HTML entity encoding"
+    },
+    {
+      "method": "forHtmlAttribute",
+      "class": "Encode",
+      "removes": [
+        "xss"
+      ]
+    },
+    {
+      "method": "forJavaScript",
+      "class": "Encode",
+      "removes": [
+        "xss"
+      ]
+    },
+    {
+      "method": "forHtmlContent",
+      "class": "Encode",
+      "removes": [
+        "xss"
+      ]
+    },
+    {
+      "method": "escapeHtml4",
+      "class": "StringEscapeUtils",
+      "removes": [
+        "xss"
+      ]
+    },
+    {
+      "method": "escapeHtml3",
+      "class": "StringEscapeUtils",
+      "removes": [
+        "xss"
+      ]
+    },
+    {
+      "method": "escapeEcmaScript",
+      "class": "StringEscapeUtils",
+      "removes": [
+        "xss"
+      ]
+    },
+    {
+      "method": "escapeXml",
+      "class": "StringEscapeUtils",
+      "removes": [
+        "xss"
+      ]
+    },
+    {
+      "method": "htmlEscape",
+      "class": "HtmlUtils",
+      "removes": [
+        "xss"
+      ]
+    },
+    {
+      "method": "htmlEscapeDecimal",
+      "class": "HtmlUtils",
+      "removes": [
+        "xss"
+      ]
+    },
+    {
+      "method": "htmlEscapeHex",
+      "class": "HtmlUtils",
+      "removes": [
+        "xss"
+      ]
+    },
+    {
+      "tag": "c:out",
+      "removes": [
+        "xss"
+      ],
+      "note": "JSTL c:out auto-escapes by default"
+    },
+    {
+      "attribute": "th:text",
+      "removes": [
+        "xss"
+      ],
+      "note": "Thymeleaf th:text auto-escapes"
+    }
+  ]
+}