mirror of
https://github.com/github/codeql.git
synced 2026-04-25 00:35:20 +02:00
Changes
This commit is contained in:
@@ -22,7 +22,7 @@ module InsecureRandomness {
|
||||
abstract class Source extends DataFlow::Node { }
|
||||
|
||||
/**
|
||||
* AA data flow sink for random values that are not cryptographically secure.
|
||||
* A data flow sink for random values that are not cryptographically secure.
|
||||
*/
|
||||
abstract class Sink extends DataFlow::Node { }
|
||||
|
||||
@@ -36,8 +36,6 @@ module InsecureRandomness {
|
||||
*/
|
||||
class DefaultSource extends Source, DataFlow::CallNode {
|
||||
DefaultSource() {
|
||||
this = API::getTopLevelMember("Random").getAMethodCall(["rand"])
|
||||
or
|
||||
this.asExpr().getExpr() instanceof UnknownMethodCall and
|
||||
(
|
||||
this.getReceiver().asExpr().getExpr() instanceof SelfVariableAccess and
|
||||
|
||||
Reference in New Issue
Block a user