make rb/meta/taint-steps into a @kind problem query

2026-04-28 18:25:24 +02:00 · 2022-10-06 13:28:10 +02:00
parent db056aae1b
commit 169965cfb9
1 changed files with 10 additions and 6 deletions
--- a/ruby/ql/src/queries/meta/TaintSteps.ql
+++ b/ruby/ql/src/queries/meta/TaintSteps.ql
@@ -1,11 +1,11 @@
 /**
 * @name Taint steps
- * @description The number of default taint steps.
- * @kind metric
- * @metricType project
- * @metricAggregate sum
- * @tags meta
+ * @description All taint steps.
+ * @kind problem
+ * @problem.severity recommendation
 * @id rb/meta/taint-steps
+ * @tags meta
+ * @precision very-low
 */

 import ruby
@@ -14,4 +14,8 @@ import codeql.ruby.dataflow.internal.TaintTrackingPublic

 predicate relevantStep(DataFlow::Node pred, DataFlow::Node succ) { localTaintStep(pred, succ) }

-select projectRoot(), count(DataFlow::Node pred, DataFlow::Node succ | relevantStep(pred, succ))
+from DataFlow::Node pred, int numOfSuccessors
+where
+  relevantStep(pred, _) and
+  numOfSuccessors = count(DataFlow::Node succ | relevantStep(pred, succ))
+select pred, "Step to " + numOfSuccessors + " other nodes."