hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 01:03:14 +01:00
Code Issues Packages Projects Releases Wiki Activity

JS: improve and expose SensitiveActions::HeuristicNames

Browse Source
This commit is contained in:
Esben Sparre Andreasen
2018-08-08 11:03:13 +02:00
parent 804c06bd59
commit b4952e7bfd
1 changed files with 28 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

46
javascript/ql/src/semmle/javascript/security/SensitiveActions.qll
View File

@@ -11,27 +11,37 @@
import javascript
/** A regular expression that identifies strings that look like they represent secret data that are not passwords. */
private string suspiciousNonPassword() {
result = "(?is).*(secret|account|accnt|(?<!un)trusted).*"
}
/** A regular expression that identifies strings that look like they represent secret data that are passwords. */
private string suspiciousPassword() {
result = "(?is).*(password|passwd).*"
}
/** A regular expression that identifies strings that look like they represent secret data. */
private string suspicious() {
result = suspiciousPassword() or result = suspiciousNonPassword()
}
/**
* A string for `match` that identifies strings that look like they represent secret data that is
* hashed or encrypted.
* Provides heuristics for identifying names related to sensitive information.
*
* INTERNAL: Do not use directly.
*/
private string nonSuspicious() {
result = "(?is).*(hash|(?<!un)encrypted|\\bcrypt\\b).*"
module HeuristicNames {
/** A regular expression that identifies strings that look like they represent secret data that are not passwords. */
string suspiciousNonPassword() {
result = "(?is).*(secret|account|accnt|(?<!un)trusted).*"
}
/** A regular expression that identifies strings that look like they represent secret data that are passwords. */
string suspiciousPassword() {
result = "(?is).*(password|passwd).*"
}
/** A regular expression that identifies strings that look like they represent secret data. */
string suspicious() {
result = suspiciousPassword() or result = suspiciousNonPassword()
}
/**
* A regular expression that identifies strings that look like they represent data that is
* hashed or encrypted.
*/
string nonSuspicious() {
result = "(?is).*(redact|censor|obfuscate|hash|md5|sha|((?<!un)(en))?(crypt|code)).*"
}
}
private import HeuristicNames
/** An expression that might contain sensitive data. */
abstract class SensitiveExpr extends Expr {