codeql-lab/codeql-sqlite/Illustrations.ql

/**
 * @name Illustrations
 * @description Illustrations of some codeql classes.
 * @kind table
 */

import java
import semmle.code.java.dataflow.FlowSources
import semmle.code.java.security.SqlInjectionQuery
import QueryInjectionFlow::PathGraph

// Find starting points -- UserInput etc. -- from
// ql/cpp/ql/src/Security/CWE/CWE-089/SqlTainted.ql 

// using QueryInjectionSink shows a sink.  So we're missing a source.

from UserInput ui, QueryInjectionSink qsi
select ui, qsi