Python: Promote ClickHouse SQL models

2025-12-20 10:46:30 +01:00 · 2021-05-25 16:27:23 +02:00
parent eb1da152a0
commit 1b3f857a2f
14 changed files with 9 additions and 6 deletions
--- a/python/ql/src/experimental/semmle/python/frameworks/Aioch.qll
+++ b/python/ql/src/experimental/semmle/python/frameworks/Aioch.qll
@@ -1,52 +0,0 @@
-/**
- * Provides classes modeling security-relevant aspects of the `aioch` PyPI package (an
- * async-io version of the `clickhouse-driver` PyPI package).
- *
- * See https://pypi.org/project/aioch/
- */
-
-private import python
-private import semmle.python.Concepts
-private import semmle.python.ApiGraphs
-private import semmle.python.frameworks.PEP249
-private import experimental.semmle.python.frameworks.ClickhouseDriver
-
-/**
- * INTERNAL: Do not use.
- *
- * Provides models for `aioch` PyPI package (an async-io version of the
- * `clickhouse-driver` PyPI package).
- *
- * See https://pypi.org/project/aioch/
- */
-module Aioch {
-  /** Provides models for `aioch.Client` class and subclasses. */
-  module Client {
-    /** Gets a reference to the `aioch.Client` class or any subclass. */
-    API::Node subclassRef() {
-      result = API::moduleImport("aioch").getMember("Client").getASubclass*()
-    }
-
-    /** Gets a reference to an instance of `clickhouse_driver.Client` or any subclass. */
-    API::Node instance() { result = subclassRef().getReturn() }
-  }
-
-  /**
-   * A call to any of the the execute methods on a `aioch.Client`, which are just async
-   * versions of the methods in the `clickhouse-driver` PyPI package.
-   *
-   * See
-   * - https://clickhouse-driver.readthedocs.io/en/latest/api.html#clickhouse_driver.Client.execute
-   * - https://clickhouse-driver.readthedocs.io/en/latest/api.html#clickhouse_driver.Client.execute_iter
-   * - https://clickhouse-driver.readthedocs.io/en/latest/api.html#clickhouse_driver.Client.execute_with_progress
-   */
-  class ClientExecuteCall extends SqlExecution::Range, DataFlow::CallCfgNode {
-    ClientExecuteCall() {
-      exists(string methodName | methodName = ClickhouseDriver::getExecuteMethodName() |
-        this = Client::instance().getMember(methodName).getACall()
-      )
-    }
-
-    override DataFlow::Node getSql() { result in [this.getArg(0), this.getArgByName("query")] }
-  }
-}
--- a/python/ql/src/experimental/semmle/python/frameworks/ClickhouseDriver.qll
+++ b/python/ql/src/experimental/semmle/python/frameworks/ClickhouseDriver.qll
@@ -1,65 +0,0 @@
-/**
- * Provides classes modeling security-relevant aspects of the `clickhouse-driver` PyPI package.
- * See
- * - https://pypi.org/project/clickhouse-driver/
- * - https://clickhouse-driver.readthedocs.io/en/latest/
- */
-
-private import python
-private import semmle.python.Concepts
-private import semmle.python.ApiGraphs
-private import semmle.python.frameworks.PEP249
-
-/**
- * INTERNAL: Do not use.
- *
- * Provides models for `clickhouse-driver` PyPI package (imported as `clickhouse_driver`).
- * See
- * - https://pypi.org/project/clickhouse-driver/
- * - https://clickhouse-driver.readthedocs.io/en/latest/
- */
-module ClickhouseDriver {
-  /**
-   * `clickhouse_driver` implements PEP249,
-   * providing ways to execute SQL statements against a database.
-   */
-  class ClickHouseDriverPEP249 extends PEP249ModuleApiNode {
-    ClickHouseDriverPEP249() { this = API::moduleImport("clickhouse_driver") }
-  }
-
-  /** Provides models for `clickhouse_driver.Client` class and subclasses. */
-  module Client {
-    /** Gets a reference to the `clickhouse_driver.Client` class or any subclass. */
-    API::Node subclassRef() {
-      exists(API::Node classRef |
-        // canonical definition
-        classRef = API::moduleImport("clickhouse_driver").getMember("client").getMember("Client")
-        or
-        // commonly used alias
-        classRef = API::moduleImport("clickhouse_driver").getMember("Client")
-      |
-        result = classRef.getASubclass*()
-      )
-    }
-
-    /** Gets a reference to an instance of `clickhouse_driver.Client` or any subclass. */
-    API::Node instance() { result = subclassRef().getReturn() }
-  }
-
-  /** `clickhouse_driver.Client` execute method names */
-  string getExecuteMethodName() { result in ["execute_with_progress", "execute", "execute_iter"] }
-
-  /**
-   * A call to any of the the execute methods on a `clickhouse_driver.Client` method
-   *
-   * See
-   * - https://clickhouse-driver.readthedocs.io/en/latest/api.html#clickhouse_driver.Client.execute
-   * - https://clickhouse-driver.readthedocs.io/en/latest/api.html#clickhouse_driver.Client.execute_iter
-   * - https://clickhouse-driver.readthedocs.io/en/latest/api.html#clickhouse_driver.Client.execute_with_progress
-   */
-  class ClientExecuteCall extends SqlExecution::Range, DataFlow::CallCfgNode {
-    ClientExecuteCall() { this = Client::instance().getMember(getExecuteMethodName()).getACall() }
-
-    override DataFlow::Node getSql() { result in [this.getArg(0), this.getArgByName("query")] }
-  }
-}