Python: Minor SQLALchemy comment fixes

2026-05-01 19:55:15 +02:00 · 2021-09-22 13:58:29 +02:00
parent a66f83644b
commit 8badba26b8
2 changed files with 5 additions and 6 deletions
--- a/python/ql/lib/semmle/python/frameworks/SqlAlchemy.qll
+++ b/python/ql/lib/semmle/python/frameworks/SqlAlchemy.qll
@@ -300,10 +300,9 @@ module SqlAlchemy {
   *   there are many many constructs we would need to have models for. (see the 2
   *   examples below)
   *
-   * So instead we flag user-input to a TextClause with its' own query
-   * (`py/sqlalchemy-textclause-injection`). And so we don't highlight any parts of an
-   * ORM constructed query such as these as containing SQL, and don't need the additional
-   * taint steps either.
+   * So instead we extended the SQL injection query to include TextClause construction
+   * as a sink. And so we don't highlight any parts of an ORM constructed query such as
+   * these as containing SQL, and don't need the additional taint steps either.
   *
   * See
   * - https://docs.sqlalchemy.org/en/14/core/sqlelement.html#sqlalchemy.sql.expression.TextClause.
--- a/python/ql/test/library-tests/frameworks/sqlalchemy/new_tests.py
+++ b/python/ql/test/library-tests/frameworks/sqlalchemy/new_tests.py
@@ -202,8 +202,8 @@ assert query.all() == []
 # - This would require a LOT of modeling for these additional taint steps, since there
 #   are many many constructs we would need to have models for. (see the 2 examples below)
 #
-# So instead we flag user-input to a TextClause with its' own query. And so we don't
-# highlight any parts of an ORM constructed query such as these as containing SQL.
+# So instead we extended the SQL injection query to include TextClause construction as a
+# sink directly.

 # `filter` provides more general filtering
 # see https://docs.sqlalchemy.org/en/14/orm/tutorial.html#common-filter-operators