hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-22 19:56:32 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #13916 from erik-krogh/limit-java-field-reg

Browse Source 
Java: limit field flow when tracking regex strings
This commit is contained in:
Erik Krogh Kristensen
2023-08-18 12:14:31 +02:00
committed by GitHub
parent 41a527cf72 45c39e6072
commit 08ef31d452
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
java/ql/lib/semmle/code/java/regex/RegexFlowConfigs.qll
View File

@@ -148,6 +148,8 @@ private module RegexFlowConfig implements DataFlow::ConfigSig {
predicate isBarrier(DataFlow::Node node) { predicate isBarrier(DataFlow::Node node) {
node.getEnclosingCallable().getDeclaringType() instanceof NonSecurityTestClass node.getEnclosingCallable().getDeclaringType() instanceof NonSecurityTestClass
} }
int fieldFlowBranchLimit() { result = 1 }
} }
private module RegexFlow = DataFlow::Global<RegexFlowConfig>; private module RegexFlow = DataFlow::Global<RegexFlowConfig>;