mirror of
https://github.com/github/codeql.git
synced 2026-04-20 22:44:52 +02:00
Review suggestions - rename sink class and add barrier out
This commit is contained in:
@@ -806,8 +806,8 @@ private module MassAssignmentSinks {
|
||||
}
|
||||
|
||||
/** A call to a method that sets attributes of an database record using a hash. */
|
||||
private class MassAssignmentCall extends MassAssignment::Sink {
|
||||
MassAssignmentCall() {
|
||||
private class MassAssignmentSink extends MassAssignment::Sink {
|
||||
MassAssignmentSink() {
|
||||
exists(DataFlow::CallNode call, string name | massAssignmentCall(call, name) |
|
||||
name =
|
||||
[
|
||||
|
||||
@@ -43,10 +43,9 @@ private module Config implements DataFlow::StateConfigSig {
|
||||
state instanceof FlowState::Permitted
|
||||
}
|
||||
|
||||
predicate isBarrierIn(DataFlow::Node node, FlowState state) {
|
||||
node instanceof MassAssignment::Source and
|
||||
state instanceof FlowState::Unpermitted
|
||||
}
|
||||
predicate isBarrierIn(DataFlow::Node node, FlowState state) { isSource(node, state) }
|
||||
|
||||
predicate isBarrierOut(DataFlow::Node node, FlowState state) { isSink(node, state) }
|
||||
|
||||
predicate isBarrier(DataFlow::Node node) { node instanceof MassAssignment::Sanitizer }
|
||||
|
||||
|
||||
Reference in New Issue
Block a user