hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-03 12:45:27 +02:00
Code Issues Packages Projects Releases Wiki Activity

Cryptographic sinks

Browse Source
This commit is contained in:
Ed Minnix
2023-07-28 15:39:00 -04:00
parent b713efb711
commit 0313f39229
3 changed files with 32 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
java/ql/lib/semmle/code/java/security/WeakRandomnessQuery.qll
View File

@@ -4,6 +4,7 @@ import java
import semmle.code.java.frameworks.Servlets
import semmle.code.java.security.SensitiveActions
import semmle.code.java.dataflow.TaintTracking
import semmle.code.java.dataflow.ExternalFlow
import semmle.code.java.security.RandomQuery
/**
@@ -108,6 +109,10 @@ private class SensitiveActionSink extends WeakRandomnessSink {
SensitiveActionSink() { this.asExpr() instanceof SensitiveExpr }
}
private class CryptographicSink extends WeakRandomnessSink {
CryptographicSink() { sinkNode(this, "crypto-parameter") }
}
/**
* Holds if there is a method access which converts `bytes` to the string `str`.
*/