hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-28 18:25:24 +02:00
Code Issues Packages Projects Releases Wiki Activity

Python: Fix tags and message for CWE-312 queries.

Browse Source
This commit is contained in:
Mark Shannon
2019-08-23 14:44:50 +01:00
parent 4759044ee4
commit 8909c3d6ab
3 changed files with 5 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
python/ql/src/Security/CWE-312/CleartextLogging.ql
View File

@@ -5,7 +5,7 @@
* @kind path-problem
* @problem.severity error
* @precision high
* @id py/clear-text-storage-of-sensitive-data
* @id py/clear-text-logging-sensitive-data
* @tags security
* external/cwe/cwe-312
* external/cwe/cwe-315
@@ -37,5 +37,5 @@ class CleartextLoggingConfiguration extends TaintTracking::Configuration {
from CleartextLoggingConfiguration config, TaintedPathSource source, TaintedPathSink sink
where config.hasFlowPath(source, sink)
select sink.getSink(), source, sink, "Sensitive data returned by $@ is stored here.",
select sink.getSink(), source, sink, "Sensitive data returned by $@ is logged here.",
source.getSource(), source.getNode().(SensitiveData::Source).repr()

2
python/ql/src/Security/CWE-312/CleartextStorage.ql
View File

@@ -5,7 +5,7 @@
* @kind path-problem
* @problem.severity error
* @precision high
* @id py/clear-text-logging
* @id py/clear-text-storage-sensitive-data
* @tags security
* external/cwe/cwe-312
* external/cwe/cwe-315