hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-05 21:55:19 +02:00
Code Issues Packages Projects Releases Wiki Activity

Move credentials-% sink kinds to "shared" status

Browse Source
This commit is contained in:
Ed Minnix
2023-09-03 22:03:58 -04:00
parent 72a1289eba
commit 24c809b3b5
1 changed files with 6 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
shared/mad/codeql/mad/ModelValidation.qll
View File

@@ -30,11 +30,11 @@ module KindValidation<KindValidationConfigSig Config> {
"js-injection", "ldap-injection", "log-injection", "path-injection", "request-forgery",
"sql-injection", "url-redirection",
// Java-only currently, but may be shared in the future
"bean-validation", "credentials-password", "credentials-username", "crypto-parameter",
"fragment-injection", "groovy-injection", "hostname-verification", "information-leak",
"intent-redirection", "jexl-injection", "jndi-injection", "mvel-injection",
"ognl-injection", "pending-intents", "response-splitting", "trust-boundary-violation",
"template-injection", "xpath-injection", "xslt-injection",
"bean-validation", "crypto-parameter", "fragment-injection", "groovy-injection",
"hostname-verification", "information-leak", "intent-redirection", "jexl-injection",
"jndi-injection", "mvel-injection", "ognl-injection", "pending-intents",
"response-splitting", "trust-boundary-violation", "template-injection", "xpath-injection",
"xslt-injection",
// JavaScript-only currently, but may be shared in the future
"mongodb.sink", "nosql-injection", "unsafe-deserialization",
// Swift-only currently, but may be shared in the future
@@ -44,11 +44,9 @@ module KindValidation<KindValidationConfigSig Config> {
or
this.matches([
// shared
"encryption-%", "qltest%", "test-%",
"credentials-%", "encryption-%", "qltest%", "test-%",
// Java-only currently, but may be shared in the future
"regex-use%",
// JavaScript-only currently, but may be shared in the future
"credentials-%",
// Swift-only currently, but may be shared in the future
"%string-%length", "weak-hash-input-%"
])