Move JSFRenderer.qll to lib

java/ql/src/semmle/code/java/frameworks/javaee/jsf/JSFRenderer.qll

@@ -1,75 +0,0 @@
-/** Provides classes and predicates for working with JavaServer Faces renderer. */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-/**
- * The JSF class `FacesContext` for processing HTTP requests.
- */
-class FacesContext extends RefType {
-  FacesContext() {
-    this.hasQualifiedName(["javax.faces.context", "jakarta.faces.context"], "FacesContext")
-  }
-}
-
-private class ExternalContextSource extends SourceModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "javax.faces.context;ExternalContext;true;getRequestParameterMap;();;ReturnValue;remote",
-        "javax.faces.context;ExternalContext;true;getRequestParameterNames;();;ReturnValue;remote",
-        "javax.faces.context;ExternalContext;true;getRequestParameterValuesMap;();;ReturnValue;remote",
-        "javax.faces.context;ExternalContext;true;getRequestPathInfo;();;ReturnValue;remote",
-        "javax.faces.context;ExternalContext;true;getResource;(String);;ReturnValue;remote",
-        "javax.faces.context;ExternalContext;true;getResourceAsStream;(String);;ReturnValue;remote",
-        "javax.faces.context;ExternalContext;true;getResourcePaths;(String);;ReturnValue;remote",
-        "javax.faces.context;ExternalContext;true;getRequestCookieMap;();;ReturnValue;remote",
-        "javax.faces.context;ExternalContext;true;getRequestHeaderMap;();;ReturnValue;remote",
-        "javax.faces.context;ExternalContext;true;getRequestHeaderValuesMap;();;ReturnValue;remote",
-        "jakarta.faces.context;ExternalContext;true;getRequestParameterMap;();;ReturnValue;remote",
-        "jakarta.faces.context;ExternalContext;true;getRequestParameterNames;();;ReturnValue;remote",
-        "jakarta.faces.context;ExternalContext;true;getRequestParameterValuesMap;();;ReturnValue;remote",
-        "jakarta.faces.context;ExternalContext;true;getRequestPathInfo;();;ReturnValue;remote",
-        "jakarta.faces.context;ExternalContext;true;getResource;(String);;ReturnValue;remote",
-        "jakarta.faces.context;ExternalContext;true;getResourceAsStream;(String);;ReturnValue;remote",
-        "jakarta.faces.context;ExternalContext;true;getResourcePaths;(String);;ReturnValue;remote",
-        "jakarta.faces.context;ExternalContext;true;getRequestCookieMap;();;ReturnValue;remote",
-        "jakarta.faces.context;ExternalContext;true;getRequestHeaderMap;();;ReturnValue;remote",
-        "jakarta.faces.context;ExternalContext;true;getRequestHeaderValuesMap;();;ReturnValue;remote"
-      ]
-  }
-}
-
-/**
- * The method `getResponseWriter()` declared in JSF `ExternalContext`.
- */
-class FacesGetResponseWriterMethod extends Method {
-  FacesGetResponseWriterMethod() {
-    getDeclaringType() instanceof FacesContext and
-    hasName("getResponseWriter") and
-    getNumberOfParameters() = 0
-  }
-}
-
-/**
- * The method `getResponseStream()` declared in JSF `ExternalContext`.
- */
-class FacesGetResponseStreamMethod extends Method {
-  FacesGetResponseStreamMethod() {
-    getDeclaringType() instanceof FacesContext and
-    hasName("getResponseStream") and
-    getNumberOfParameters() = 0
-  }
-}
-
-private class ExternalContextXssSink extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "javax.faces.context;ResponseWriter;true;write;;;Argument[0];xss",
-        "javax.faces.context;ResponseStream;true;write;;;Argument[0];xss",
-        "jakarta.faces.context;ResponseWriter;true;write;;;Argument[0];xss",
-        "jakarta.faces.context;ResponseStream;true;write;;;Argument[0];xss"
-      ]
-  }
-}