hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-22 07:07:09 +02:00
Code Issues Packages Projects Releases Wiki Activity

Subsample negative examples to 1% to prevent huge numbers.

Browse Source
This commit is contained in:
tiferet
2022-12-26 23:24:53 -08:00
parent 5d62dc3d2e
commit 4546dbe51b
1 changed files with 15 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
java/ql/experimental/adaptivethreatmodeling/src/ExtractNegativeExamples.ql
View File

@@ -12,11 +12,25 @@ import semmle.code.java.dataflow.TaintTracking
private import experimental.adaptivethreatmodeling.EndpointCharacteristics as EndpointCharacteristics
private import experimental.adaptivethreatmodeling.EndpointTypes
bindingset[rate]
DataFlow::Node getSampleFromSampleRate(float rate) {
exists(int r |
result =
rank[r](DataFlow::Node n, string path, int a, int b, int c, int d |
n.asExpr().getLocation().hasLocationInfo(path, a, b, c, d)
|
n order by path, a, b, c, d
) and
r % (1 / rate).ceil() = 0
)
}
from
DataFlow::Node sink, EndpointCharacteristics::EndpointCharacteristic characteristic,
float confidence
where
characteristic.appliesToEndpoint(sink) and
confidence >= characteristic.highConfidence() and
characteristic.hasImplications(any(NegativeType negative), true, confidence)
characteristic.hasImplications(any(NegativeType negative), true, confidence) and
sink = getSampleFromSampleRate(0.01)
select sink, "Non-sink of type " + characteristic + " with confidence " + confidence.toString()