apply suggestions from code review

erik-krogh · erik-krogh · commit 35c3c62f9e7e · 2022-03-16T22:59:01.000+01:00
diff --git a/javascript/ql/examples/queries/dataflow/TemplateInjection/TemplateInjection.ql b/javascript/ql/examples/queries/dataflow/TemplateInjection/TemplateInjection.ql
@@ -14,7 +14,7 @@ import DataFlow::PathGraph
 /**
  * Gets the name of an unescaped placeholder in a lodash template.
  *
- * For example, the string "<h1><%= title %></h1>" contains the placeholder "title".
+ * For example, the string `"<h1><%= title %></h1>"` contains the placeholder "title".
  */
 bindingset[s]
 string getAPlaceholderInString(string s) {
diff --git a/ql/ql/src/queries/style/MissingParameterInQlDoc.ql b/ql/ql/src/queries/style/MissingParameterInQlDoc.ql
@@ -42,7 +42,8 @@ private string getAMentionedNonParameter(Predicate p) {
   ) and
   result.regexpMatch("^[a-z]\\w+$") and
   not result.toLowerCase() = getAParameterName(p).toLowerCase() and
-  not result = ["true", "false", "NaN", "this"] and // keywords
+  not result = ["true", "false", "NaN", "this", "forall", "exists", "null", "break", "return"] and // keywords
+  not result = any(Aggregate a).getKind() and // min, max, sum, count, etc.
   not result = getMentionedPredicates(p.getLocation().getFile()) and
   // variables inside the predicate are also fine
   not result = any(VarDecl var | var.getEnclosingPredicate() = p).getName()

Original file line number	Diff line number	Diff line change
`@@ -14,7 +14,7 @@ import DataFlow::PathGraph`
`14`	`14`	`/**`
`15`	`15`	`* Gets the name of an unescaped placeholder in a lodash template.`
`16`	`16`	`*`
`17`		`- * For example, the string "<h1><%= title %></h1>" contains the placeholder "title".`
	`17`	+ * For example, the string `"<h1><%= title %></h1>"` contains the placeholder "title".
`18`	`18`	`*/`
`19`	`19`	`bindingset[s]`
`20`	`20`	`string getAPlaceholderInString(string s) {`