Merge pull request #7824 from github/hmac/constantize

2026-05-05 13:45:19 +02:00 · 2022-02-09 08:30:21 +13:00
parent b2419d60bd c65ca8ff86
commit 3206384884
5 changed files with 48 additions and 0 deletions
--- a/ruby/ql/test/library-tests/frameworks/ActiveSupport.expected
+++ b/ruby/ql/test/library-tests/frameworks/ActiveSupport.expected
@@ -0,0 +1,2 @@
+| active_support.rb:1:1:1:22 | call to constantize | active_support.rb:1:1:1:10 | "Foo::Bar" |
+| active_support.rb:3:1:3:13 | call to constantize | active_support.rb:3:1:3:1 | call to a |
--- a/ruby/ql/test/library-tests/frameworks/ActiveSupport.ql
+++ b/ruby/ql/test/library-tests/frameworks/ActiveSupport.ql
@@ -0,0 +1,5 @@
+import codeql.ruby.frameworks.ActiveSupport
+
+query DataFlow::Node constantizeCalls(ActiveSupport::CoreExtensions::String::Constantize c) {
+  result = c.getCode()
+}
--- a/ruby/ql/test/library-tests/frameworks/active_support.rb
+++ b/ruby/ql/test/library-tests/frameworks/active_support.rb
@@ -0,0 +1,3 @@
+"Foo::Bar".constantize
+
+a.constantize