hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-18 13:34:02 +02:00
Code Issues Packages Projects Releases Wiki Activity

Restrict logic for checking for id parameters on index expressions for performance

Browse Source
This commit is contained in:
Joe Farebrother
2023-09-15 16:35:29 +01:00
parent 6d704be7d2
commit 68ad5b7c00
1 changed files with 1 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
csharp/ql/lib/semmle/code/csharp/security/auth/InsecureDirectObjectReferenceQuery.qll
View File

@@ -2,7 +2,6 @@
import csharp
import semmle.code.csharp.dataflow.flowsources.Remote
import DataFlow as DF
import TaintTracking as TT
import ActionMethods
@@ -26,7 +25,7 @@ private predicate hasIdParameter(ActionMethod m) {
exists(StringLiteral idStr, IndexerCall idx |
idStr.getValue().toLowerCase().matches(["%id", "%idx"]) and
TT::localTaint(src, DataFlow::exprNode(idx.getQualifier())) and
DF::localExprFlow(idStr, idx.getArgument(0))
idStr = idx.getArgument(0)
)
)
}