hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-04 21:25:44 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #12813 from atorralba/atorralba/java/sensitive-expr-fix-and-tests

Browse Source 
Java: Add tests for SensitiveActions and fix getCommonSensitiveInfoRegex
This commit is contained in:
Tony Torralba
2023-04-13 13:13:37 +02:00
committed by GitHub
parent 6968de2ccc 4f2ffccc20
commit 4c6df3fdb9
5 changed files with 233 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
java/ql/lib/semmle/code/java/security/SensitiveActions.qll
View File

@@ -31,7 +31,7 @@ private string nonSuspicious() {
* Gets a regular expression for matching common names of variables that indicate the value being held contains sensitive information.
*/
string getCommonSensitiveInfoRegex() {
result = "(?i).*challenge|pass(wd|word|code|phrase)(?!.*question).*" or
result = "(?i).*(challenge|pass(wd|word|code|phrase))(?!.*question).*" or
result = "(?i).*(token|secret).*"
}