hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-24 08:07:07 +02:00
Code Issues Packages Projects Releases Wiki Activity

Shared: Fix for 'profile'.

Browse Source
This commit is contained in:
Geoffrey White
2026-05-06 12:00:06 +01:00
parent cb84e633fa
commit b60ce3cf04
2 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
rust/ql/test/library-tests/sensitivedata/test.rs
View File

@@ -41,7 +41,7 @@ fn test_passwords(
sink(my_password); // $ sensitive=password
sink(password_str); // $ sensitive=password
sink(password_confirmation); // $ sensitive=password
sink(profile_password); // $ MISSING: sensitive=password
sink(profile_password); // $ sensitive=password
sink(unencrypted_password); // $ MISSING: sensitive=password
sink(unencoded_password); // $ MISSING: sensitive=password
sink(pass_phrase); // $ sensitive=password

2
shared/concepts/codeql/concepts/internal/SensitiveDataHeuristics.qll
View File

@@ -151,7 +151,7 @@ module HeuristicNames {
string notSensitiveRegexp() {
result =
"(?is).*([^\\w$.-]|redact|censor|obfuscate|hash|md5|sha|random|((?<!un)(en))?(crypt|(?<!pass)code)|"
+ "certain|concert|secretar|wildcard|account(ant|ab|ing|ed)|file|path|([_-]|\\b)url).*"
+ "certain|concert|secretar|wildcard|account(ant|ab|ing|ed)|(?<!pro)file|path|([_-]|\\b)url).*"
}
/**