hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-24 00:05:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

Ruby: modgen - restrict flow summaries to public methods

Browse Source
This commit is contained in:
Alex Ford
2023-10-26 17:05:31 +01:00
parent fef2932f56
commit 24946c0dfd
1 changed files with 6 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
ruby/ql/src/queries/modeling/internal/Summaries.qll
View File

@@ -12,12 +12,16 @@ private import Util as Util
*/
module Summaries {
private module Config implements DataFlow::ConfigSig {
predicate isSource(DataFlow::Node source) { source instanceof DataFlow::ParameterNode }
predicate isSource(DataFlow::Node source) {
exists(DataFlow::MethodNode methodNode | not methodNode.isPublic() |
getAnyParameterNode(methodNode).asSource() = source
)
}
predicate isSink(DataFlow::Node sink) { sink = any(DataFlow::MethodNode m).getAReturnNode() }
}
API::Node getAnyParameterNode(DataFlow::MethodNode methodNode) {
private API::Node getAnyParameterNode(DataFlow::MethodNode methodNode) {
result.asSource() =
[
methodNode.getParameter(_), methodNode.getKeywordParameter(_),