hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-23 18:33:42 +01:00
Code Issues Packages Projects Releases Wiki Activity

Refactor logInjectionGuard part 1

Browse Source
This commit is contained in:
Owen Mansel-Chan
2026-02-14 01:20:41 +00:00
parent 146fc7a8c0
commit 6c0c1d558e
1 changed files with 7 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
java/ql/lib/semmle/code/java/security/LogInjection.qll
View File

@@ -96,16 +96,17 @@ private predicate logInjectionSanitizer(MethodCall ma) {
* by checking if there are line breaks in `e`.
*/
private predicate logInjectionGuard(Guard g, Expr e, boolean branch) {
exists(MethodCall ma | ma = g |
ma.getMethod() instanceof StringContainsMethod and
ma.getArgument(0).(CompileTimeConstantExpr).getStringValue() = ["\n", "\r"] and
e = ma.getQualifier() and
branch = false
)
or
exists(MethodCall ma, CompileTimeConstantExpr target |
ma = g and
target = ma.getArgument(0)
|
ma.getMethod().getDeclaringType() instanceof TypeString and
ma.getMethod().hasName("contains") and
target.getStringValue() = ["\n", "\r"] and
e = ma.getQualifier() and
branch = false
or
ma.getMethod().hasName("matches") and
(
ma.getMethod().getDeclaringType() instanceof TypeString and