hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-03 20:58:03 +02:00
Code Issues Packages Projects Releases Wiki Activity

Python: Move SqlInjection configuration to own file

Browse Source
This commit is contained in:
Rasmus Wriedt Larsen
2020-11-06 14:09:46 +01:00
parent 6299b73a46
commit 0c6bd8401a
2 changed files with 22 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
python/ql/src/semmle/python/security/dataflow/SqlInjection.qll Normal file
View File

@@ -0,0 +1,21 @@
/**
* Provides a taint-tracking configuration for reasoning about SQL injection
* vulnerabilities.
*/
import python
import semmle.python.dataflow.new.DataFlow
import semmle.python.dataflow.new.TaintTracking
import semmle.python.Concepts
import semmle.python.dataflow.new.RemoteFlowSources
/**
* A taint-tracking configuration for reasoning about SQL injection vulnerabilities.
*/
class SQLInjectionConfiguration extends TaintTracking::Configuration {
SQLInjectionConfiguration() { this = "SQLInjectionConfiguration" }
override predicate isSource(DataFlow::Node source) { source instanceof RemoteFlowSource }
override predicate isSink(DataFlow::Node sink) { sink = any(SqlExecution e).getSql() }
}