TranSPArent: Taint-style Vulnerability Detection in Generic Single Page Applications through Automated Framework Abstraction
Senapati Diwangkara
Network and Distributed System Security (NDSS) Symposium 2026 · Day 1 · Systems Security
This talk presents **TranSPArent**, a tool for detecting taint-style vulnerabilities (particularly **cross-site scripting**) in modern **Single Page Application (SPA)** frameworks like **React**, **Vue**, and **Angular**. The core challenge is that SPAs introduce framework-specific sinks that existing static analysis tools like **CodeQL** cannot detect because they rely on hardcoded definitions of DOM sinks. TranSPArent solves this through **automated framework abstraction** -- a two-stage analysis that first analyzes the SPA framework runtime to discover framework-specific sinks, then uses those sinks to augment off-the-shelf static analysis tools.
AI review
A practical improvement to web application static analysis that closes a genuine coverage gap in CodeQL for SPA-specific XSS sinks. Finding 14 sinks unknown to CodeQL and 11 zero-days is real output. The automated framework abstraction approach (using unit test stack traces and transpiler analysis) is clever engineering. Not groundbreaking offensive research, but directly useful for anyone doing web application security assessments.