Java: Convert unsafe URL opening sinks to CSV format

2026-02-28 21:03:50 +01:00 · 2021-03-30 09:31:38 +02:00
parent 716568ebd1
commit b9ce1aefc0
2 changed files with 10 additions and 16 deletions
--- a/java/ql/src/semmle/code/java/dataflow/ExternalFlow.qll
+++ b/java/ql/src/semmle/code/java/dataflow/ExternalFlow.qll
@@ -184,7 +184,14 @@ private predicate sourceModelCsv(string row) {
    ]
 }

-private predicate sinkModelCsv(string row) { none() }
+private predicate sinkModelCsv(string row) {
+  row =
+    [
+      // Open URL
+      "java.net;URL;false;openConnection;;;Argument[-1];open-url",
+      "java.net;URL;false;openStream;;;Argument[-1];open-url"
+    ]
+}

 private predicate summaryModelCsv(string row) {
  row =