hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-24 04:36:35 +01:00
Code Issues Packages Projects Releases Wiki Activity

Fixing a couple of bug from PR comments

Browse Source
This commit is contained in:
Raul Garcia
2022-09-12 18:22:13 -07:00
parent 1bfe335d93
commit 9e63a3d30b
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/JsonWebTokenHandlerLib.qll
View File

@@ -23,7 +23,7 @@ class TokenValidationParametersPropertySensitiveValidation extends Property {
*/
class FalseValueFlowsToTokenValidationParametersPropertyWriteToBypassValidation extends DataFlow::Configuration {
FalseValueFlowsToTokenValidationParametersPropertyWriteToBypassValidation() {
this = "FlowsToTokenValidationResultIsValidCall"
this = "FalseValueFlowsToTokenValidationParametersPropertyWriteToBypassValidation"
}
override predicate isSource(DataFlow::Node source) {
@@ -75,7 +75,7 @@ class JsonWebTokenHandlerValidateTokenCall extends MethodCall {
*/
private class TokenValidationResultIsValidCall extends PropertyRead {
TokenValidationResultIsValidCall() {
exists(Property p | p.getAnAccess().(PropertyRead) = this |
exists(Property p | p.getAnAccess() = this |
p.hasName("IsValid") or
p.hasName("Exception")
)