hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-26 17:25:19 +02:00
Code Issues Packages Projects Releases Wiki Activity

fix comments

Browse Source
This commit is contained in:
thiggy1342
2022-06-20 13:53:56 +00:00
committed by GitHub
parent b4c893d857
commit 633ddf46fb
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
ruby/ql/src/experimental/decompression-api/DecompressionApi.ql
View File

@@ -19,7 +19,7 @@ import DataFlow::PathGraph
class DecompressionApiUse extends DataFlow::Node {
private DataFlow::CallNode call;
// this should find the first argument of Zlib::Inflate.inflate
// this should find the first argument in calls to Zlib::Inflate.inflate or Zip::File.open_buffer
DecompressionApiUse() {
this = call.getArgument(0) and
(
@@ -28,6 +28,7 @@ class DecompressionApiUse extends DataFlow::Node {
)
}
// returns calls to Zlib::Inflate.inflate or Zip::File.open_buffer
DataFlow::CallNode getCall() { result = call }
}
@@ -37,7 +38,7 @@ class Configuration extends TaintTracking::Configuration {
// this predicate will be used to constrain our query to find instances where only remote user-controlled data flows to the sink
override predicate isSource(DataFlow::Node source) { source instanceof RemoteFlowSource }
// our Decompression APIs defined above will the the sinks we use for this query
// our Decompression APIs defined above will be the sinks we use for this query
override predicate isSink(DataFlow::Node sink) {
sink instanceof DecompressionApiUse
}