Merge pull request #12110 from jcogs33/jcogs33/add-heuristic-sql-models

Java: add sql summary model discovered with heuristics
2025-12-24 04:36:35 +01:00 · 2023-03-22 15:20:01 -04:00
parent bcca18d5b2 5f8d6c3c07
commit 71c37dba32
2 changed files with 5 additions and 0 deletions
--- a/java/ql/lib/change-notes/2023-03-20-nativesql-summary.md
+++ b/java/ql/lib/change-notes/2023-03-20-nativesql-summary.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Added a summary model for the `nativeSQL` method of the `java.sql.Connection` interface.
--- a/java/ql/lib/ext/java.sql.model.yml
+++ b/java/ql/lib/ext/java.sql.model.yml
@@ -20,6 +20,7 @@ extensions:
      pack: codeql/java-all
      extensible: summaryModel
    data:
+      - ["java.sql", "Connection", True, "nativeSQL", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
      - ["java.sql", "PreparedStatement", True, "setString", "(int,String)", "", "Argument[1]", "Argument[this]", "value", "manual"]
      - ["java.sql", "ResultSet", True, "getString", "(String)", "", "Argument[this]", "ReturnValue", "taint", "manual"]
  - addsTo: