# next (TypeScript) Security Rules

3 detection rules for next framework in TypeScript

- Total rules: 3
- CWE coverage: 3

## HIGH (1)

- **Unsafe 'any' Type in Security-Sensitive Context**: Using 'any' type with untrusted input bypasses TypeScript's type safety, allowing
unvalidated data to flow into security-sensitive operations.

## MEDIUM (1)

- **TypeScript Enum Type Confusion**: Comparing enum values with raw strings bypasses type safety and allows authorization
bypass when user input is compared against enum values without proper type checking.

## LOW (1)

- **Non-Null Assertion Without Null Check**: The non-null assertion operator (!) bypasses null/undefined checks at compile time
without runtime safety, causing crashes when values are unexpectedly null.