hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-24 04:36:35 +01:00
Code Issues Packages Projects Releases Wiki Activity

limit field flow when tracking regex strings in Java

Browse Source
This commit is contained in:
erik-krogh
2023-08-08 09:01:23 +02:00
parent 022a06659c
commit 45c39e6072
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
java/ql/lib/semmle/code/java/regex/RegexFlowConfigs.qll
View File

@@ -148,6 +148,8 @@ private module RegexFlowConfig implements DataFlow::ConfigSig {
predicate isBarrier(DataFlow::Node node) {
node.getEnclosingCallable().getDeclaringType() instanceof NonSecurityTestClass
}
int fieldFlowBranchLimit() { result = 1 }
}
private module RegexFlow = DataFlow::Global<RegexFlowConfig>;