hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-22 18:03:39 +01:00
Code Issues Packages Projects Releases Wiki Activity

Create Zip.qll

Browse Source
This commit is contained in:
Ahmed Farid
2022-03-01 00:05:30 +01:00
committed by GitHub
parent abe25da3df
commit 76bd3317eb
1 changed files with 28 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

28
python/ql/src/experimental/semmle/python/frameworks/Zip.qll Normal file
View File

@@ -0,0 +1,28 @@
private import python
private import experimental.semmle.python.Concepts
private import semmle.python.dataflow.new.DataFlow
private import semmle.python.ApiGraphs
private module Zip {
private API::Node shutil() { result = API::moduleImport("shutil") }
private class CopyFiles extends DataFlow::CallCfgNode, OpenFile::Range {
CopyFiles() { this = shutil().getMember(["copyfile", "copy", "copy2", "copytree", "move"]).getACall() }
override DataFlow::Node getAPathArgument() { result in [this.getArg(0), this.getArgByName("src"), this.getArg(1), this.getArgByName("dst")] }
}
private class CopyFileobj extends DataFlow::CallCfgNode, OpenFile::Range {
CopyFileobj() { this = shutil().getMember("copyfileobj").getACall() }
override DataFlow::Node getAPathArgument() { result in [this.getArg(0), this.getArgByName("fsrc"), this.getArg(1), this.getArgByName("fdst")] }
}
private class OpenZipFile extends DataFlow::CallCfgNode, ZipFile::Range {
OpenZipFile() {
this = API::moduleImport("zipfile").getMember("ZipFile").getMember("open").getACall() or
this = API::moduleImport("zipfile").getMember("ZipFile").getACall()
}
override DataFlow::Node getAnInput() { result = this.getArg(0) }
}
}