JS: Move an alert and add RelatedLocations

asgerf · asgerf · commit 6a5606344f71 · 2025-02-25T17:29:25.000+01:00
diff --git a/javascript/ql/test/query-tests/Security/CWE-693/InsecureHelmetBad.js b/javascript/ql/test/query-tests/Security/CWE-693/InsecureHelmetBad.js
@@ -4,9 +4,9 @@ const helmet = require("helmet");
 const app = express();
 
 app.use(helmet({
-    contentSecurityPolicy: false, // $ Alert - switch off default CSP
-    frameguard: false // $ Alert - switch off default frameguard
-}));
+    contentSecurityPolicy: false, // $ RelatedLocation - switch off default CSP
+    frameguard: false // $ RelatedLocation - switch off default frameguard
+})); // $ Alert
 
 app.get("/", (req, res) => {
   res.send("Hello, world!");
