mirror of
https://github.com/github/codeql.git
synced 2026-01-27 05:13:00 +01:00
add proper test cases
This commit is contained in:
amammad
@@ -70,8 +70,7 @@ module Fasthttp {
|
||||
f.hasQualifiedName("github.com/valyala/fasthttp",
|
||||
[
|
||||
"DialDualStack", "Dial", "DialTimeout", "DialDualStackTimeout", "Get", "GetDeadline",
|
||||
"GetTimeout", "Post", "Do", "DoDeadline", "DoTimeout", "Write", "Write", "Write",
|
||||
"Write", "Write"
|
||||
"GetTimeout", "Post", "Do", "DoDeadline", "DoTimeout"
|
||||
]) and
|
||||
this = f.getACall().getArgument(0)
|
||||
)
|
||||
|
||||
File diff suppressed because it is too large
Load Diff
@@ -1,7 +1,6 @@
|
||||
import go
|
||||
import semmle.go.frameworks.Fasthttp
|
||||
|
||||
from
|
||||
Fasthttp::Request::UntrustedFlowSource u1, Fasthttp::RequestCtx::UntrustedFlowSource u2,
|
||||
Fasthttp::URI::UntrustedFlowSource u3, Fasthttp::RequestHeader::UntrustedFlowSource u4
|
||||
select u1, u2, u3, u4
|
||||
from Fasthttp::AdditionalStep a, DataFlow::Node pred, DataFlow::Node succ
|
||||
where a.hasTaintStep(pred, succ)
|
||||
select pred, succ, any(UntrustedFlowSource s)
|
||||
|
||||
@@ -6,6 +6,39 @@ require github.com/valyala/fasthttp v1.49.0
|
||||
|
||||
require (
|
||||
github.com/andybalholm/brotli v1.0.5 // indirect
|
||||
github.com/dgryski/go-minhash v0.0.0-20170608043002-7fe510aff544 // indirect
|
||||
github.com/ekzhu/minhash-lsh v0.0.0-20171225071031-5c06ee8586a1 // indirect
|
||||
github.com/emirpasic/gods v1.12.0 // indirect
|
||||
github.com/github/depstubber v0.0.0-20211124194836-d0e8ca3d2e44 // indirect
|
||||
github.com/go-enry/go-license-detector/v4 v4.0.0 // indirect
|
||||
github.com/go-git/gcfg v1.5.0 // indirect
|
||||
github.com/go-git/go-billy/v5 v5.0.0 // indirect
|
||||
github.com/go-git/go-git/v5 v5.1.0 // indirect
|
||||
github.com/golang/dep v0.5.4 // indirect
|
||||
github.com/hhatto/gorst v0.0.0-20181029133204-ca9f730cac5b // indirect
|
||||
github.com/imdario/mergo v0.3.9 // indirect
|
||||
github.com/jbenet/go-context v0.0.0-20150711004518-d14ea06fba99 // indirect
|
||||
github.com/jdkato/prose v1.1.0 // indirect
|
||||
github.com/kevinburke/ssh_config v0.0.0-20190725054713-01f96b0aa0cd // indirect
|
||||
github.com/klauspost/compress v1.16.3 // indirect
|
||||
github.com/mitchellh/go-homedir v1.1.0 // indirect
|
||||
github.com/montanaflynn/stats v0.0.0-20151014174947-eeaced052adb // indirect
|
||||
github.com/pkg/errors v0.9.1 // indirect
|
||||
github.com/russross/blackfriday/v2 v2.0.1 // indirect
|
||||
github.com/sergi/go-diff v1.1.0 // indirect
|
||||
github.com/shogo82148/go-shuffle v0.0.0-20170808115208-59829097ff3b // indirect
|
||||
github.com/shurcooL/sanitized_anchor_name v0.0.0-20170918181015-86672fcb3f95 // indirect
|
||||
github.com/valyala/bytebufferpool v1.0.0 // indirect
|
||||
github.com/xanzy/ssh-agent v0.2.1 // indirect
|
||||
golang.org/x/crypto v0.7.0 // indirect
|
||||
golang.org/x/exp v0.0.0-20190125153040-c74c464bbbf2 // indirect
|
||||
golang.org/x/mod v0.8.0 // indirect
|
||||
golang.org/x/net v0.8.0 // indirect
|
||||
golang.org/x/sys v0.6.0 // indirect
|
||||
golang.org/x/text v0.8.0 // indirect
|
||||
golang.org/x/tools v0.6.0 // indirect
|
||||
golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 // indirect
|
||||
gonum.org/v1/gonum v0.7.0 // indirect
|
||||
gopkg.in/neurosnap/sentences.v1 v1.0.6 // indirect
|
||||
gopkg.in/warnings.v0 v0.1.2 // indirect
|
||||
)
|
||||
|
||||
1609
go/ql/test/library-tests/semmle/go/frameworks/Fasthttp/vendor/github.com/valyala/fasthttp/stub.go
generated
vendored
Normal file
1609
go/ql/test/library-tests/semmle/go/frameworks/Fasthttp/vendor/github.com/valyala/fasthttp/stub.go
generated
vendored
Normal file
File diff suppressed because it is too large
Load Diff
111
go/ql/test/library-tests/semmle/go/frameworks/Fasthttp/vendor/modules.txt
vendored
Normal file
111
go/ql/test/library-tests/semmle/go/frameworks/Fasthttp/vendor/modules.txt
vendored
Normal file
@@ -0,0 +1,111 @@
|
||||
# github.com/valyala/fasthttp v1.49.0
|
||||
## explicit
|
||||
github.com/valyala/fasthttp
|
||||
# github.com/andybalholm/brotli v1.0.5
|
||||
## explicit
|
||||
github.com/andybalholm/brotli
|
||||
# github.com/dgryski/go-minhash v0.0.0-20170608043002-7fe510aff544
|
||||
## explicit
|
||||
github.com/dgryski/go-minhash
|
||||
# github.com/ekzhu/minhash-lsh v0.0.0-20171225071031-5c06ee8586a1
|
||||
## explicit
|
||||
github.com/ekzhu/minhash-lsh
|
||||
# github.com/emirpasic/gods v1.12.0
|
||||
## explicit
|
||||
github.com/emirpasic/gods
|
||||
# github.com/github/depstubber v0.0.0-20211124194836-d0e8ca3d2e44
|
||||
## explicit
|
||||
github.com/github/depstubber
|
||||
# github.com/go-enry/go-license-detector/v4 v4.0.0
|
||||
## explicit
|
||||
github.com/go-enry/go-license-detector/v4
|
||||
# github.com/go-git/gcfg v1.5.0
|
||||
## explicit
|
||||
github.com/go-git/gcfg
|
||||
# github.com/go-git/go-billy/v5 v5.0.0
|
||||
## explicit
|
||||
github.com/go-git/go-billy/v5
|
||||
# github.com/go-git/go-git/v5 v5.1.0
|
||||
## explicit
|
||||
github.com/go-git/go-git/v5
|
||||
# github.com/golang/dep v0.5.4
|
||||
## explicit
|
||||
github.com/golang/dep
|
||||
# github.com/hhatto/gorst v0.0.0-20181029133204-ca9f730cac5b
|
||||
## explicit
|
||||
github.com/hhatto/gorst
|
||||
# github.com/imdario/mergo v0.3.9
|
||||
## explicit
|
||||
github.com/imdario/mergo
|
||||
# github.com/jbenet/go-context v0.0.0-20150711004518-d14ea06fba99
|
||||
## explicit
|
||||
github.com/jbenet/go-context
|
||||
# github.com/jdkato/prose v1.1.0
|
||||
## explicit
|
||||
github.com/jdkato/prose
|
||||
# github.com/kevinburke/ssh_config v0.0.0-20190725054713-01f96b0aa0cd
|
||||
## explicit
|
||||
github.com/kevinburke/ssh_config
|
||||
# github.com/klauspost/compress v1.16.3
|
||||
## explicit
|
||||
github.com/klauspost/compress
|
||||
# github.com/mitchellh/go-homedir v1.1.0
|
||||
## explicit
|
||||
github.com/mitchellh/go-homedir
|
||||
# github.com/montanaflynn/stats v0.0.0-20151014174947-eeaced052adb
|
||||
## explicit
|
||||
github.com/montanaflynn/stats
|
||||
# github.com/pkg/errors v0.9.1
|
||||
## explicit
|
||||
github.com/pkg/errors
|
||||
# github.com/russross/blackfriday/v2 v2.0.1
|
||||
## explicit
|
||||
github.com/russross/blackfriday/v2
|
||||
# github.com/sergi/go-diff v1.1.0
|
||||
## explicit
|
||||
github.com/sergi/go-diff
|
||||
# github.com/shogo82148/go-shuffle v0.0.0-20170808115208-59829097ff3b
|
||||
## explicit
|
||||
github.com/shogo82148/go-shuffle
|
||||
# github.com/shurcooL/sanitized_anchor_name v0.0.0-20170918181015-86672fcb3f95
|
||||
## explicit
|
||||
github.com/shurcooL/sanitized_anchor_name
|
||||
# github.com/valyala/bytebufferpool v1.0.0
|
||||
## explicit
|
||||
github.com/valyala/bytebufferpool
|
||||
# github.com/xanzy/ssh-agent v0.2.1
|
||||
## explicit
|
||||
github.com/xanzy/ssh-agent
|
||||
# golang.org/x/crypto v0.7.0
|
||||
## explicit
|
||||
golang.org/x/crypto
|
||||
# golang.org/x/exp v0.0.0-20190125153040-c74c464bbbf2
|
||||
## explicit
|
||||
golang.org/x/exp
|
||||
# golang.org/x/mod v0.8.0
|
||||
## explicit
|
||||
golang.org/x/mod
|
||||
# golang.org/x/net v0.8.0
|
||||
## explicit
|
||||
golang.org/x/net
|
||||
# golang.org/x/sys v0.6.0
|
||||
## explicit
|
||||
golang.org/x/sys
|
||||
# golang.org/x/text v0.8.0
|
||||
## explicit
|
||||
golang.org/x/text
|
||||
# golang.org/x/tools v0.6.0
|
||||
## explicit
|
||||
golang.org/x/tools
|
||||
# golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1
|
||||
## explicit
|
||||
golang.org/x/xerrors
|
||||
# gonum.org/v1/gonum v0.7.0
|
||||
## explicit
|
||||
gonum.org/v1/gonum
|
||||
# gopkg.in/neurosnap/sentences.v1 v1.0.6
|
||||
## explicit
|
||||
gopkg.in/neurosnap/sentences.v1
|
||||
# gopkg.in/warnings.v0 v0.1.2
|
||||
## explicit
|
||||
gopkg.in/warnings.v0
|
||||
Reference in New Issue
Block a user