hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-01 03:35:13 +02:00
Code Issues Packages Projects Releases Wiki Activity

Python: Fix ql4ql

Browse Source
This commit is contained in:
Rasmus Wriedt Larsen
2023-01-17 10:35:20 +01:00
parent 4f3876f184
commit 700e40b11b
1 changed files with 1 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
python/ql/src/Security/CWE-020-ExternalAPIs/ExternalAPIs.qll
View File

@@ -158,9 +158,7 @@ class UnresolvedCall extends InterestingExternalApiCall, TUnresolvedCall {
/** A node representing data being passed to an external API through a call. */
class ExternalApiDataNode extends DataFlow::Node {
ExternalApiDataNode() {
exists(InterestingExternalApiCall call, DataFlowPrivate::ArgumentPosition apos |
this = call.getArgument(apos)
) and
exists(InterestingExternalApiCall call | this = call.getArgument(_)) and
// Not already modeled as a taint step
not TaintTrackingPrivate::defaultAdditionalTaintStep(this, _) and
// for `list.append(x)`, we have a additional taint step from x -> [post] list.