delete old deprecations

2025-12-18 01:33:15 +01:00 · 2023-06-12 11:33:17 +02:00
parent 1d65284011
commit ae8bf5ed3c
176 changed files with 0 additions and 5913 deletions
--- a/python/ql/src/experimental/Security/CWE-074/JinjaBad.py
+++ b/python/ql/src/experimental/Security/CWE-074/JinjaBad.py
@@ -1,19 +0,0 @@
-from django.urls import path
-from django.http import HttpResponse
-from jinja2 import Template as Jinja2_Template
-from jinja2 import Environment, DictLoader, escape
-
-
-def a(request):
-    # Load the template
-    template = request.GET['template']
-    t = Jinja2_Template(template)
-    name = request.GET['name']
-    # Render the template with the context data
-    html = t.render(name=escape(name))
-    return HttpResponse(html)
-
-
-urlpatterns = [
-    path('a', a),
-]
--- a/python/ql/src/experimental/Security/CWE-074/JinjaGood.py
+++ b/python/ql/src/experimental/Security/CWE-074/JinjaGood.py
@@ -1,20 +0,0 @@
-from django.urls import path
-from django.http import HttpResponse
-from jinja2 import Template as Jinja2_Template
-from jinja2 import Environment, DictLoader, escape
-
-
-def a(request):
-    # Load the template
-    template = request.GET['template']
-    env = SandboxedEnvironment(undefined=StrictUndefined)
-    t = env.from_string(template)
-    name = request.GET['name']
-    # Render the template with the context data
-    html = t.render(name=escape(name))
-    return HttpResponse(html)
-
-
-urlpatterns = [
-    path('a', a),
-]
--- a/python/ql/src/experimental/Security/CWE-074/TemplateInjection.qhelp
+++ b/python/ql/src/experimental/Security/CWE-074/TemplateInjection.qhelp
@@ -1,24 +0,0 @@
-<!DOCTYPE qhelp SYSTEM "qhelp.dtd">
-<qhelp>
-    <overview>
-        <p>
-            Template Injection occurs when user input is embedded in a template in an unsafe manner.
-            When an attacker is able to use native template syntax to inject a malicious payload into a template, which is then executed server-side is results in Server Side Template Injection.         
-        </p>
-    </overview>
-    <recommendation>
-        <p>
-            To fix this, ensure that an untrusted value is not used as a template. If the application requirements do not alow this, use a sandboxed environment where access to unsafe attributes and methods is prohibited.
-        </p>
-    </recommendation>
-    <example>
-        <p>Consider the example given below, an untrusted HTTP parameter `template` is used to generate a Jinja2 template string. This can lead to remote code execution. </p>
-        <sample src="JinjaBad.py" />
-        
-        <p>Here we have fixed the problem by using the Jinja sandbox environment for evaluating untrusted code.</p>
-        <sample src="JinjaGood.py" />
-    </example>
-    <references>
-        <li>Portswigger : [Server Side Template Injection](https://portswigger.net/web-security/server-side-template-injection)</li>
-    </references>
-</qhelp>
--- a/python/ql/src/experimental/Security/CWE-074/TemplateInjection.ql
+++ b/python/ql/src/experimental/Security/CWE-074/TemplateInjection.ql
@@ -1,35 +0,0 @@
-/**
- * @name Server Side Template Injection
- * @description Using user-controlled data to create a template can cause security issues.
- * @kind path-problem
- * @problem.severity error
- * @precision high
- * @id py/template-injection
- * @tags security
- *       experimental
- *       external/cwe/cwe-074
- */
-
-import python
-import semmle.python.security.Paths
-/* Sources */
-import semmle.python.web.HttpRequest
-/* Sinks */
-import experimental.semmle.python.templates.Ssti
-/* Flow */
-import semmle.python.security.strings.Untrusted
-
-class TemplateInjectionConfiguration extends TaintTracking::Configuration {
-  TemplateInjectionConfiguration() { this = "Template injection configuration" }
-
-  deprecated override predicate isSource(TaintTracking::Source source) {
-    source instanceof HttpRequestTaintSource
-  }
-
-  deprecated override predicate isSink(TaintTracking::Sink sink) { sink instanceof SSTISink }
-}
-
-from TemplateInjectionConfiguration config, TaintedPathSource src, TaintedPathSink sink
-where config.hasFlowPath(src, sink)
-select sink.getSink(), src, sink, "This Template depends on $@.", src.getSource(),
-  "a user-provided value"
--- a/python/ql/src/experimental/Security/CWE-091/Xslt.qhelp
+++ b/python/ql/src/experimental/Security/CWE-091/Xslt.qhelp
@@ -1,18 +0,0 @@
-<!DOCTYPE qhelp SYSTEM "qhelp.dtd">
-<qhelp>
-    <overview>
-        <p>
-            Processing an unvalidated XSL stylesheet can allow an attacker to change the structure and contents of the resultant XML, include arbitrary files from the file system, or execute arbitrary code.
-        </p>
-    </overview>
-    <recommendation>
-        <p>
-            This vulnerability can be prevented by not allowing untrusted user input to be passed as an XSL stylesheet.
-            If the application logic necessitates processing untrusted XSL stylesheets, the input should be properly filtered and sanitized before use.
-        </p>
-    </recommendation>
-    <example>
-        <p>In the example below, the XSL stylesheet is controlled by the user and hence leads to a vulnerability.</p>
-        <sample src="xslt.py" />
-    </example>
-</qhelp>
--- a/python/ql/src/experimental/Security/CWE-091/Xslt.ql
+++ b/python/ql/src/experimental/Security/CWE-091/Xslt.ql
@@ -1,36 +0,0 @@
-/**
- * @name XSLT query built from user-controlled sources
- * @description Building a XSLT query from user-controlled sources is vulnerable to insertion of
- *              malicious XSLT code by the user.
- * @kind path-problem
- * @problem.severity error
- * @precision high
- * @id py/xslt-injection
- * @tags security
- *       experimental
- *       external/cwe/cwe-643
- */
-
-import python
-import semmle.python.security.Paths
-/* Sources */
-import semmle.python.web.HttpRequest
-/* Sinks */
-import experimental.semmle.python.security.injection.XSLT
-
-class XsltInjectionConfiguration extends TaintTracking::Configuration {
-  XsltInjectionConfiguration() { this = "XSLT injection configuration" }
-
-  deprecated override predicate isSource(TaintTracking::Source source) {
-    source instanceof HttpRequestTaintSource
-  }
-
-  deprecated override predicate isSink(TaintTracking::Sink sink) {
-    sink instanceof XSLTInjection::XSLTInjectionSink
-  }
-}
-
-from XsltInjectionConfiguration config, TaintedPathSource src, TaintedPathSink sink
-where config.hasFlowPath(src, sink)
-select sink.getSink(), src, sink, "This XSLT query depends on $@.", src.getSource(),
-  "a user-provided value"
--- a/python/ql/src/experimental/Security/CWE-091/xslt.py
+++ b/python/ql/src/experimental/Security/CWE-091/xslt.py
@@ -1,14 +0,0 @@
-from lxml import etree
-from io import StringIO
-from flask import Flask, request
-
-app = Flask(__name__)
-
-
-@app.route("/xslt")
-def bad():
-    xsltQuery = request.args.get('xml', '')
-    xslt_root = etree.XML(xsltQuery)
-    f = StringIO('<foo><bar></bar></foo>')
-    tree = etree.parse(f)
-    result_tree = tree.xslt(xslt_root)  # Not OK
--- a/python/ql/src/experimental/semmle/python/security/injection/XSLT.qll
+++ b/python/ql/src/experimental/semmle/python/security/injection/XSLT.qll
@@ -8,7 +8,6 @@

 import python
 import semmle.python.dataflow.TaintTracking
-import semmle.python.web.HttpRequest

 /** Models XSLT Injection related classes and functions */
 module XsltInjection {
@@ -21,21 +20,6 @@ module XsltInjection {
  /** DEPRECATED: Alias for XsltInjectionSink */
  deprecated class XSLTInjectionSink = XsltInjectionSink;

-  /**
-   * A kind of "taint", representing an untrusted XML string
-   */
-  deprecated private class ExternalXmlStringKind extends ExternalStringKind {
-    ExternalXmlStringKind() { this = "etree.XML string" }
-
-    override TaintKind getTaintForFlowStep(ControlFlowNode fromnode, ControlFlowNode tonode) {
-      etreeXml(fromnode, tonode) and result instanceof ExternalXmlKind
-      or
-      etreeFromStringList(fromnode, tonode) and result instanceof ExternalXmlKind
-      or
-      etreeFromString(fromnode, tonode) and result instanceof ExternalXmlKind
-    }
-  }
-
  /**
   * A kind of "taint", representing a XML encoded  string
   */
@@ -43,32 +27,6 @@ module XsltInjection {
    ExternalXmlKind() { this = "lxml etree xml" }
  }

-  private predicate etreeXml(ControlFlowNode fromnode, CallNode tonode) {
-    // etree.XML("<xmlContent>")
-    exists(CallNode call | call.getFunction().(AttrNode).getObject("XML").pointsTo(etree()) |
-      call.getArg(0) = fromnode and
-      call = tonode
-    )
-  }
-
-  private predicate etreeFromString(ControlFlowNode fromnode, CallNode tonode) {
-    // etree.fromstring(text, parser=None)
-    exists(CallNode call | call.getFunction().(AttrNode).getObject("fromstring").pointsTo(etree()) |
-      call.getArg(0) = fromnode and
-      call = tonode
-    )
-  }
-
-  private predicate etreeFromStringList(ControlFlowNode fromnode, CallNode tonode) {
-    // etree.fromstringlist(strings, parser=None)
-    exists(CallNode call |
-      call.getFunction().(AttrNode).getObject("fromstringlist").pointsTo(etree())
-    |
-      call.getArg(0) = fromnode and
-      call = tonode
-    )
-  }
-
  /**
   * A Sink representing an argument to the `etree.XSLT` call.
   *
--- a/python/ql/src/experimental/semmle/python/templates/Airspeed.qll
+++ b/python/ql/src/experimental/semmle/python/templates/Airspeed.qll
@@ -1,27 +0,0 @@
-/** Provides classes which model the `airspeed` package. */
-
-import python
-import semmle.python.web.HttpRequest
-import experimental.semmle.python.templates.SSTISink
-
-/** returns the ClassValue representing `airspeed.Template` */
-deprecated ClassValue theAirspeedTemplateClass() { result = Value::named("airspeed.Template") }
-
-/**
- * A sink representing the `airspeed.Template` class instantiation argument.
- *
- *  import airspeed
- *  temp = airspeed.Template(`"sink"`)
- */
-deprecated class AirspeedTemplateSink extends SSTISink {
-  override string toString() { result = "argument to airspeed.Template()" }
-
-  AirspeedTemplateSink() {
-    exists(CallNode call |
-      call.getFunction().pointsTo(theAirspeedTemplateClass()) and
-      call.getArg(0) = this
-    )
-  }
-
-  override predicate sinks(TaintKind kind) { kind instanceof ExternalStringKind }
-}
--- a/python/ql/src/experimental/semmle/python/templates/Bottle.qll
+++ b/python/ql/src/experimental/semmle/python/templates/Bottle.qll
@@ -1,48 +0,0 @@
-/** Provides classes which model the `bottle` package. */
-
-import python
-import semmle.python.web.HttpRequest
-import experimental.semmle.python.templates.SSTISink
-
-/** returns the ClassValue representing `bottle.SimpleTemplate` */
-deprecated ClassValue theBottleSimpleTemplateClass() {
-  result = Value::named("bottle.SimpleTemplate")
-}
-
-/**
- * A sink representing the `bottle.SimpleTemplate` class instantiation argument.
- *
- *  from bottle import SimpleTemplate
- *  template = SimpleTemplate(`sink`)
- */
-deprecated class BottleSimpleTemplateSink extends SSTISink {
-  override string toString() { result = "argument to bottle.SimpleTemplate()" }
-
-  BottleSimpleTemplateSink() {
-    exists(CallNode call |
-      call.getFunction().pointsTo(theBottleSimpleTemplateClass()) and
-      call.getArg(0) = this
-    )
-  }
-
-  override predicate sinks(TaintKind kind) { kind instanceof ExternalStringKind }
-}
-
-/**
- * A sink representing the `bottle.template` function call argument.
- *
- *  from bottle import template
- *  tmp = template(`sink`)
- */
-deprecated class BottleTemplateSink extends SSTISink {
-  override string toString() { result = "argument to bottle.template()" }
-
-  BottleTemplateSink() {
-    exists(CallNode call |
-      call.getFunction() = theBottleModule().attr("template").getAReference() and
-      call.getArg(0) = this
-    )
-  }
-
-  override predicate sinks(TaintKind kind) { kind instanceof ExternalStringKind }
-}
--- a/python/ql/src/experimental/semmle/python/templates/Chameleon.qll
+++ b/python/ql/src/experimental/semmle/python/templates/Chameleon.qll
@@ -1,29 +0,0 @@
-/** Provides classes which model the `Chameleon` package. */
-
-import python
-import semmle.python.web.HttpRequest
-import experimental.semmle.python.templates.SSTISink
-
-/** returns the ClassValue representing `chameleon.PageTemplate` */
-deprecated ClassValue theChameleonPageTemplateClass() {
-  result = Value::named("chameleon.PageTemplate")
-}
-
-/**
- * A sink representing the `chameleon.PageTemplate` class instantiation argument.
- *
- *  from chameleon import PageTemplate
- *  template = PageTemplate(`sink`)
- */
-deprecated class ChameleonTemplateSink extends SSTISink {
-  override string toString() { result = "argument to Chameleon.PageTemplate()" }
-
-  ChameleonTemplateSink() {
-    exists(CallNode call |
-      call.getFunction().pointsTo(theChameleonPageTemplateClass()) and
-      call.getArg(0) = this
-    )
-  }
-
-  override predicate sinks(TaintKind kind) { kind instanceof ExternalStringKind }
-}
--- a/python/ql/src/experimental/semmle/python/templates/Cheetah.qll
+++ b/python/ql/src/experimental/semmle/python/templates/Cheetah.qll
@@ -1,39 +0,0 @@
-/** Provides classes which model the `Cheetah3` package. */
-
-import python
-import semmle.python.web.HttpRequest
-import experimental.semmle.python.templates.SSTISink
-
-/** returns the ClassValue representing `Cheetah.Template.Template` */
-deprecated ClassValue theCheetahTemplateClass() {
-  result = Value::named("Cheetah.Template.Template")
-}
-
-/**
- * A sink representing the instantiation argument of any class which derives from
- * the `Cheetah.Template.Template` class .
- *
- *  from Cheetah.Template import Template
- *  class Template3(Template):
- *    title = 'Hello World Example!'
- *    contents = 'Hello World!'
- *  t3 = Template3("sink")
- *
- * This will also detect cases of the following type :
- *
- *  from Cheetah.Template import Template
- *  t3 = Template("sink")
- */
-deprecated class CheetahTemplateInstantiationSink extends SSTISink {
-  override string toString() { result = "argument to Cheetah.Template.Template()" }
-
-  CheetahTemplateInstantiationSink() {
-    exists(CallNode call, ClassValue cv |
-      cv.getASuperType() = theCheetahTemplateClass() and
-      call.getFunction().pointsTo(cv) and
-      call.getArg(0) = this
-    )
-  }
-
-  override predicate sinks(TaintKind kind) { kind instanceof ExternalStringKind }
-}
--- a/python/ql/src/experimental/semmle/python/templates/Chevron.qll
+++ b/python/ql/src/experimental/semmle/python/templates/Chevron.qll
@@ -1,36 +0,0 @@
-/** Provides classes which model the `chevron` package. */
-
-import python
-import semmle.python.web.HttpRequest
-import experimental.semmle.python.templates.SSTISink
-
-/** returns the Value representing `chevron.render` function */
-deprecated Value theChevronRenderFunc() { result = Value::named("chevron.render") }
-
-/**
- * A sink representing the `chevron.render` function call argument.
- *
- *  import chevron
- *  tmp = chevron.render(`sink`,{ 'key' : 'value' })
- */
-deprecated class ChevronRenderSink extends SSTISink {
-  override string toString() { result = "argument to chevron.render()" }
-
-  ChevronRenderSink() {
-    exists(CallNode call |
-      call.getFunction() = theChevronRenderFunc().getAReference() and
-      call.getArg(0) = this
-    )
-    // TODO: this should also detect :
-    // import chevron
-    // args = {
-    //   'template': 'sink',
-    //   'data': {
-    //     'mustache': 'World'
-    //   }
-    // }
-    // chevron.render(**args)
-  }
-
-  override predicate sinks(TaintKind kind) { kind instanceof ExternalStringKind }
-}
--- a/python/ql/src/experimental/semmle/python/templates/DjangoTemplate.qll
+++ b/python/ql/src/experimental/semmle/python/templates/DjangoTemplate.qll
@@ -1,35 +0,0 @@
-/** Provides classes which model the `DjangoTemplate` package. */
-
-import python
-import semmle.python.web.HttpRequest
-import experimental.semmle.python.templates.SSTISink
-
-deprecated ClassValue theDjangoTemplateClass() { result = Value::named("django.template.Template") }
-
-/**
- * A sink representing `django.template.Template` class instantiation argument.
- *
- *  from django.template import Template
- *  template = Template(`sink`)
- */
-deprecated class DjangoTemplateTemplateSink extends SSTISink {
-  override string toString() { result = "argument to Django.template()" }
-
-  DjangoTemplateTemplateSink() {
-    exists(CallNode call |
-      call.getFunction().pointsTo(theDjangoTemplateClass()) and
-      call.getArg(0) = this
-    )
-  }
-
-  override predicate sinks(TaintKind kind) { kind instanceof ExternalStringKind }
-}
-// TODO (intentionally commented out QLDoc, since qlformat will delete those lines otherwise)
-// /**
-//  * Sinks representing the django.template.Template class instantiation.
-//  *
-//  *  from django.template import engines
-//  *
-//  *  django_engine = engines["django"]
-//  *  template = django_engine.from_string(`sink`)
-//  */
--- a/python/ql/src/experimental/semmle/python/templates/FlaskTemplate.qll
+++ b/python/ql/src/experimental/semmle/python/templates/FlaskTemplate.qll
@@ -1,28 +0,0 @@
-/** Provides classes which model templates in the`flask` package. */
-
-import python
-import semmle.python.web.HttpRequest
-import experimental.semmle.python.templates.SSTISink
-
-deprecated Value theFlaskRenderTemplateClass() {
-  result = Value::named("flask.render_template_string")
-}
-
-/**
- * A sink representing `flask.render_template_string` function call argument.
- *
- *  from flask import render_template_string
- *  render_template_string(`sink`)
- */
-deprecated class FlaskTemplateSink extends SSTISink {
-  override string toString() { result = "argument to flask.render_template_string()" }
-
-  FlaskTemplateSink() {
-    exists(CallNode call |
-      call.getFunction().pointsTo(theFlaskRenderTemplateClass()) and
-      call.getArg(0) = this
-    )
-  }
-
-  override predicate sinks(TaintKind kind) { kind instanceof ExternalStringKind }
-}
--- a/python/ql/src/experimental/semmle/python/templates/Genshi.qll
+++ b/python/ql/src/experimental/semmle/python/templates/Genshi.qll
@@ -1,53 +0,0 @@
-/** Provides classes which model the `Genshi` package. */
-
-import python
-import semmle.python.web.HttpRequest
-import experimental.semmle.python.templates.SSTISink
-
-/** returns the ClassValue representing `Genshi.template.TextTemplate` */
-deprecated ClassValue theGenshiTextTemplateClass() {
-  result = Value::named("genshi.template.TextTemplate")
-}
-
-/** returns the ClassValue representing `Genshi.template.MarkupTemplate` */
-deprecated ClassValue theGenshiMarkupTemplateClass() {
-  result = Value::named("genshi.template.MarkupTemplate")
-}
-
-/**
- * A sink representing the `genshi.template.TextTemplate` class instantiation argument.
- *
- *  from genshi.template import TextTemplate
- *  tmpl = TextTemplate('sink')
- */
-deprecated class GenshiTextTemplateSink extends SSTISink {
-  override string toString() { result = "argument to genshi.template.TextTemplate()" }
-
-  GenshiTextTemplateSink() {
-    exists(CallNode call |
-      call.getFunction().pointsTo(theGenshiTextTemplateClass()) and
-      call.getArg(0) = this
-    )
-  }
-
-  override predicate sinks(TaintKind kind) { kind instanceof ExternalStringKind }
-}
-
-/**
- * A sink representing the `genshi.template.MarkupTemplate` class instantiation argument.
- *
- *  from genshi.template import MarkupTemplate
- *  tmpl = MarkupTemplate('sink')
- */
-deprecated class GenshiMarkupTemplateSink extends SSTISink {
-  override string toString() { result = "argument to genshi.template.MarkupTemplate()" }
-
-  GenshiMarkupTemplateSink() {
-    exists(CallNode call |
-      call.getFunction().pointsTo(theGenshiMarkupTemplateClass()) and
-      call.getArg(0) = this
-    )
-  }
-
-  override predicate sinks(TaintKind kind) { kind instanceof ExternalStringKind }
-}
--- a/python/ql/src/experimental/semmle/python/templates/Jinja.qll
+++ b/python/ql/src/experimental/semmle/python/templates/Jinja.qll
@@ -1,49 +0,0 @@
-/** Provides classes which model the `Jinja2` package. */
-
-import python
-import semmle.python.web.HttpRequest
-import experimental.semmle.python.templates.SSTISink
-
-/** returns the ClassValue representing `jinja2.Template` */
-deprecated ClassValue theJinja2TemplateClass() { result = Value::named("jinja2.Template") }
-
-/** returns the ClassValue representing `jinja2.Template` */
-deprecated Value theJinja2FromStringValue() { result = Value::named("jinja2.from_string") }
-
-/**
- * A sink representing the `jinja2.Template` class instantiation argument.
- *
- *  from jinja2 import Template
- *  template = Template(`sink`)
- */
-deprecated class Jinja2TemplateSink extends SSTISink {
-  override string toString() { result = "argument to jinja2.Template()" }
-
-  Jinja2TemplateSink() {
-    exists(CallNode call |
-      call.getFunction().pointsTo(theJinja2TemplateClass()) and
-      call.getArg(0) = this
-    )
-  }
-
-  override predicate sinks(TaintKind kind) { kind instanceof ExternalStringKind }
-}
-
-/**
- * A sink representing the `jinja2.from_string` function call argument.
- *
- *  from jinja2 import from_string
- *  template = from_string(`sink`)
- */
-deprecated class Jinja2FromStringSink extends SSTISink {
-  override string toString() { result = "argument to jinja2.from_string()" }
-
-  Jinja2FromStringSink() {
-    exists(CallNode call |
-      call.getFunction().pointsTo(theJinja2FromStringValue()) and
-      call.getArg(0) = this
-    )
-  }
-
-  override predicate sinks(TaintKind kind) { kind instanceof ExternalStringKind }
-}
--- a/python/ql/src/experimental/semmle/python/templates/Mako.qll
+++ b/python/ql/src/experimental/semmle/python/templates/Mako.qll
@@ -1,27 +0,0 @@
-/** Provides classes which model the `Mako` package. */
-
-import python
-import semmle.python.web.HttpRequest
-import experimental.semmle.python.templates.SSTISink
-
-/** returns the ClassValue representing `mako.template.Template` */
-deprecated ClassValue theMakoTemplateClass() { result = Value::named("mako.template.Template") }
-
-/**
- * A sink representing the `mako.template.Template` class instantiation argument.
- *
- *  from mako.template import Template
- *  mytemplate = Template("hello world!")
- */
-deprecated class MakoTemplateSink extends SSTISink {
-  override string toString() { result = "argument to mako.template.Template()" }
-
-  MakoTemplateSink() {
-    exists(CallNode call |
-      call.getFunction().pointsTo(theMakoTemplateClass()) and
-      call.getArg(0) = this
-    )
-  }
-
-  override predicate sinks(TaintKind kind) { kind instanceof ExternalStringKind }
-}
--- a/python/ql/src/experimental/semmle/python/templates/SSTISink.qll
+++ b/python/ql/src/experimental/semmle/python/templates/SSTISink.qll
@@ -1,7 +0,0 @@
-import semmle.python.dataflow.TaintTracking
-
-/**
- * A generic taint sink that is vulnerable to template inclusions.
- * The `temp` in `jinja2.Template(temp)` and similar.
- */
-abstract deprecated class SSTISink extends TaintSink { }
--- a/python/ql/src/experimental/semmle/python/templates/Ssti.qll
+++ b/python/ql/src/experimental/semmle/python/templates/Ssti.qll
@@ -1,13 +0,0 @@
-/** Imports all files which model potential SSTI sinks */
-
-import experimental.semmle.python.templates.Airspeed
-import experimental.semmle.python.templates.Bottle
-import experimental.semmle.python.templates.Chameleon
-import experimental.semmle.python.templates.Cheetah
-import experimental.semmle.python.templates.Chevron
-import experimental.semmle.python.templates.DjangoTemplate
-import experimental.semmle.python.templates.FlaskTemplate
-import experimental.semmle.python.templates.Genshi
-import experimental.semmle.python.templates.Jinja
-import experimental.semmle.python.templates.Mako
-import experimental.semmle.python.templates.TRender
--- a/python/ql/src/experimental/semmle/python/templates/TRender.qll
+++ b/python/ql/src/experimental/semmle/python/templates/TRender.qll
@@ -1,27 +0,0 @@
-/** Provides classes which model the `TRender` package. */
-
-import python
-import semmle.python.web.HttpRequest
-import experimental.semmle.python.templates.SSTISink
-
-/** returns the ClassValue representing `trender.TRender` */
-deprecated ClassValue theTRenderTemplateClass() { result = Value::named("trender.TRender") }
-
-/**
- * A sink representing the `trender.TRender` class instantiation argument.
- *
- *  from trender import TRender
- *  template = TRender(`sink`)
- */
-deprecated class TRenderTemplateSink extends SSTISink {
-  override string toString() { result = "argument to trender.TRender()" }
-
-  TRenderTemplateSink() {
-    exists(CallNode call |
-      call.getFunction().pointsTo(theTRenderTemplateClass()) and
-      call.getArg(0) = this
-    )
-  }
-
-  override predicate sinks(TaintKind kind) { kind instanceof ExternalStringKind }
-}