aboutsummaryrefslogtreecommitdiffstats
path: root/src/qml/jsruntime/qv4jsonobject.cpp
diff options
context:
space:
mode:
authorFabian Kosmale <fabian.kosmale@qt.io>2025-05-19 10:36:38 +0200
committerUlf Hermann <ulf.hermann@qt.io>2025-06-24 06:50:39 +0000
commitc9f9e70da7e7e11394a3daeb1bc80fa8d41c9f0d (patch)
tree8104037b88fb2bbb033a681364b836eda0600508 /src/qml/jsruntime/qv4jsonobject.cpp
parenta2f3dc0d76c67d1c70602a06c3a5b67f454b2bbf (diff)
Mark QML's JSON parser as critical
We're doing fully custom parsing here, and external JSON must not cause security issues. Pick-to: 6.10 6.9 6.8 QUIP: 23 Task-number: QTBUG-136970 Change-Id: I43f8280a31ebc170382485e6f5f3e7c06aa7db1a Reviewed-by: Ulf Hermann <ulf.hermann@qt.io>
Diffstat (limited to 'src/qml/jsruntime/qv4jsonobject.cpp')
-rw-r--r--src/qml/jsruntime/qv4jsonobject.cpp1
1 files changed, 1 insertions, 0 deletions
diff --git a/src/qml/jsruntime/qv4jsonobject.cpp b/src/qml/jsruntime/qv4jsonobject.cpp
index 685276ba23..4cec24ba4c 100644
--- a/src/qml/jsruntime/qv4jsonobject.cpp
+++ b/src/qml/jsruntime/qv4jsonobject.cpp
@@ -1,5 +1,6 @@
// Copyright (C) 2016 The Qt Company Ltd.
// SPDX-License-Identifier: LicenseRef-Qt-Commercial OR LGPL-3.0-only OR GPL-2.0-only OR GPL-3.0-only
+// Qt-Security score:critical reason:dataparser
#include <qv4jsonobject_p.h>
#include <qv4objectproto_p.h>
#include <qv4numberobject_p.h>
generated by cgit v1.2.3 (git 2.25.1) at 2025-12-23 18:30:13 +0000