mirror of
https://github.com/hohn/codeql-dataflow-sql-injection-go.git
synced 2025-12-15 18:03:03 +01:00
12 lines
276 B
Plaintext
12 lines
276 B
Plaintext
/**
|
|
* Identify the source: the return value of function `getUserInfo`.
|
|
* Uses AST matching to find return expressions within that function.
|
|
*/
|
|
|
|
import go
|
|
import DataFlow as DF
|
|
|
|
from DF::CallNode cn
|
|
where cn.getACalleeIncludingExternals().getName() = "ReadString"
|
|
select cn
|