mirror of
https://github.com/github/codeql.git
synced 2026-04-28 02:05:14 +02:00
add RubyZip::File.open to frameworks
This commit is contained in:
thiggy1342
@@ -8,6 +8,7 @@ private import codeql.ruby.frameworks.ActiveRecord
|
||||
private import codeql.ruby.frameworks.ActiveStorage
|
||||
private import codeql.ruby.frameworks.ActionView
|
||||
private import codeql.ruby.frameworks.ActiveSupport
|
||||
private import codeql.ruby.frameworks.Archive
|
||||
private import codeql.ruby.frameworks.GraphQL
|
||||
private import codeql.ruby.frameworks.Rails
|
||||
private import codeql.ruby.frameworks.Stdlib
|
||||
|
||||
22
ruby/ql/lib/codeql/ruby/frameworks/Archive.qll
Normal file
22
ruby/ql/lib/codeql/ruby/frameworks/Archive.qll
Normal file
@@ -0,0 +1,22 @@
|
||||
/**
|
||||
* Provides classes for working with archive libraries.
|
||||
*/
|
||||
|
||||
private import ruby
|
||||
private import codeql.ruby.Concepts
|
||||
private import codeql.ruby.DataFlow
|
||||
private import codeql.ruby.ApiGraphs
|
||||
|
||||
/**
|
||||
* Classes and predicates for modelling the RubyZip library
|
||||
*/
|
||||
module RubyZip {
|
||||
/**
|
||||
* A call to `Zip::File.open`, considered as a `FileSystemAccess`.
|
||||
*/
|
||||
class RubyZipFileOpen extends DataFlow::CallNode, FileSystemAccess::Range {
|
||||
RubyZipFileOpen() { this = API::getTopLevelMember("Zip").getMember("File").getAMethodCall("open") }
|
||||
|
||||
override DataFlow::Node getAPathArgument() { result = this.getArgument(0) }
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user