Overlay: Add overlay annotations to Java & shared libraries

2026-06-27 23:57:08 +02:00 · 2025-06-16 13:06:31 +02:00
parent 2218a981f6
commit c207cfdeb7
428 changed files with 966 additions and 0 deletions
--- a/java/ql/lib/semmle/code/java/frameworks/ApacheHttp.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/ApacheHttp.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates related to `org.apache.http.*` and `org.apache.hc.*`.
 */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.dataflow.FlowSteps
--- a/java/ql/lib/semmle/code/java/frameworks/ApacheLdap.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/ApacheLdap.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the Apache LDAP API.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/Assertions.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Assertions.qll
@@ -5,6 +5,8 @@
 * `org.junit.jupiter.api.Assertions`, `com.google.common.base.Preconditions`,
 * and `java.util.Objects`.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/Camel.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Camel.qll
@@ -1,6 +1,8 @@
 /**
 * Apache Camel messaging framework.
 */
+overlay[local?]
+module;

 import java
 import semmle.code.java.frameworks.spring.SpringCamel
--- a/java/ql/lib/semmle/code/java/frameworks/Castor.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Castor.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the Castor framework.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/Cucumber.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Cucumber.qll
@@ -1,6 +1,8 @@
 /**
 * Cucumber is an open-source project for writing executable acceptance tests in human-readable `.feature` files.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/FastJson.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/FastJson.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the FastJson framework.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/Flexjson.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Flexjson.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes for working with the Flexjson framework.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/Guice.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Guice.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the Guice framework.
 */
+overlay[local?]
+module;

 import java
 import semmle.code.java.dataflow.FlowSteps
--- a/java/ql/lib/semmle/code/java/frameworks/HessianBurlap.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/HessianBurlap.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the HessianBurlap framework.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/Hibernate.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Hibernate.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the Hibernate framework.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/InputStream.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/InputStream.qll
@@ -1,4 +1,6 @@
 /** Provides definitions related to `java.io.InputStream`. */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.dataflow.DataFlow
--- a/java/ql/lib/semmle/code/java/frameworks/IoJsonWebToken.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/IoJsonWebToken.qll
@@ -1,4 +1,6 @@
 /** Predicates and classes to reason about the `io.jsonwebtoken` library. */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.dataflow.DataFlow
--- a/java/ql/lib/semmle/code/java/frameworks/JAXB.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/JAXB.qll
@@ -1,4 +1,6 @@
 /** Definitions related to JAXB. */
+overlay[local?]
+module;

 import semmle.code.java.Type

--- a/java/ql/lib/semmle/code/java/frameworks/JUnitAnnotations.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/JUnitAnnotations.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with annotations from the `JUnit` framework.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/JYaml.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/JYaml.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the JYaml framework.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/Jabsorb.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Jabsorb.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes for working with the Jabsorb JSON-RPC ORB framework.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/Jackson.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Jackson.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the Jackson serialization framework.
 */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.dataflow.DataFlow
--- a/java/ql/lib/semmle/code/java/frameworks/JavaxAnnotations.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/JavaxAnnotations.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with annotations in the `javax` package.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/JaxWS.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/JaxWS.qll
@@ -2,6 +2,8 @@
 * Definitions relating to JAX-WS (Java/Jakarta API for XML Web Services) and JAX-RS
 * (Java/Jakarta API for RESTful Web Services).
 */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.frameworks.Networking
--- a/java/ql/lib/semmle/code/java/frameworks/Jdbc.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Jdbc.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the Java JDBC API.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/Jms.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Jms.qll
@@ -1,4 +1,6 @@
 /** Provides definitions for working with the JMS library. */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/Jndi.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Jndi.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the Java JNDI API.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/JoddJson.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/JoddJson.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the Jodd JSON framework.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/JsonIo.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/JsonIo.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the Json-io framework.
 */
+overlay[local?]
+module;

 import java
 import semmle.code.java.Maps
--- a/java/ql/lib/semmle/code/java/frameworks/Kryo.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Kryo.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the Kryo serialization framework.
 */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.dataflow.DataFlow
--- a/java/ql/lib/semmle/code/java/frameworks/Lombok.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Lombok.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for identifying use of the Lombok framework.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/Mail.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Mail.qll
@@ -1,4 +1,6 @@
 /** Provides classes and predicates to work with email */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/Mockito.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Mockito.qll
@@ -3,6 +3,8 @@
 *
 * QL classes are provided for detecting uses of Mockito annotations on fields.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/MyBatis.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/MyBatis.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the MyBatis framework.
 */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.dataflow.DataFlow
--- a/java/ql/lib/semmle/code/java/frameworks/Netty.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Netty.qll
@@ -1,4 +1,6 @@
 /** Provides definitions related to the Netty framework. */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/Networking.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Networking.qll
@@ -1,6 +1,8 @@
 /**
 * Definitions related to `java.net.*`.
 */
+overlay[local?]
+module;

 import semmle.code.java.Type
 private import semmle.code.java.dataflow.DataFlow
--- a/java/ql/lib/semmle/code/java/frameworks/OpenSaml.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/OpenSaml.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the OpenSAML libraries.
 */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.security.InsecureRandomnessQuery
--- a/java/ql/lib/semmle/code/java/frameworks/Properties.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Properties.qll
@@ -1,4 +1,6 @@
 /** Definitions related to `java.util.Properties`. */
+overlay[local?]
+module;

 import semmle.code.java.Type
 private import semmle.code.java.dataflow.FlowSteps
--- a/java/ql/lib/semmle/code/java/frameworks/Protobuf.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Protobuf.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the Protobuf framework.
 */
+overlay[local?]
+module;

 import java
 import semmle.code.java.dataflow.FlowSteps
--- a/java/ql/lib/semmle/code/java/frameworks/Regex.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Regex.qll
@@ -1,4 +1,6 @@
 /** Definitions related to `java.util.regex`. */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/Rmi.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Rmi.qll
@@ -1,4 +1,6 @@
 /** Remote Method Invocation. */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/Selenium.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Selenium.qll
@@ -2,6 +2,8 @@
 * Provides classes and predicates for identifying classes reflectively constructed by Selenium using the
 * `PageFactory.initElements(...)` method.
 */
+overlay[local?]
+module;

 import default
 import semmle.code.java.Reflection
--- a/java/ql/lib/semmle/code/java/frameworks/Servlets.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Servlets.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the Java Servlet API.
 */
+overlay[local?]
+module;

 import semmle.code.java.Type

--- a/java/ql/lib/semmle/code/java/frameworks/SnakeYaml.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/SnakeYaml.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the SnakeYaml serialization framework.
 */
+overlay[local?]
+module;

 import java
 import semmle.code.java.dataflow.DataFlow
--- a/java/ql/lib/semmle/code/java/frameworks/SpringJdbc.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/SpringJdbc.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the Spring JDBC framework.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/SpringLdap.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/SpringLdap.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the Spring LDAP API.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/SpringWeb.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/SpringWeb.qll
@@ -1,3 +1,6 @@
+overlay[local?]
+module;
+
 import java
 import spring.SpringController
 import spring.SpringWeb
--- a/java/ql/lib/semmle/code/java/frameworks/Stream.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Stream.qll
@@ -1,4 +1,6 @@
 /** Definitions related to `java.util.stream`. */
+overlay[local?]
+module;

 private import semmle.code.java.dataflow.FlowSummary

--- a/java/ql/lib/semmle/code/java/frameworks/ThreadLocal.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/ThreadLocal.qll
@@ -1,4 +1,6 @@
 /** Definitions related to `java.lang.ThreadLocal`. */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.dataflow.DataFlow
--- a/java/ql/lib/semmle/code/java/frameworks/Thrift.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Thrift.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the Apache Thrift framework.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/UnboundId.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/UnboundId.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the UnboundID API.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/XStream.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/XStream.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the XStream XML serialization framework.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/YamlBeans.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/YamlBeans.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the YamlBeans framework.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/android/Android.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/Android.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with Android components.
 */
+overlay[local?]
+module;

 import java
 private import semmle.code.xml.AndroidManifest
--- a/java/ql/lib/semmle/code/java/frameworks/android/AsyncTask.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/AsyncTask.qll
@@ -1,4 +1,6 @@
 /** Provides classes and predicates to reason about `AsyncTask`s in Android. */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.dataflow.DataFlow
--- a/java/ql/lib/semmle/code/java/frameworks/android/Compose.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/Compose.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with components generated by the Android's Jetpack Compose compiler.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/android/ContentProviders.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/ContentProviders.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with Content Providers.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/android/ExternalStorage.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/ExternalStorage.qll
@@ -1,4 +1,6 @@
 /** Provides definitions for working with uses of Android external storage */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.security.FileReadWrite
--- a/java/ql/lib/semmle/code/java/frameworks/android/Fragment.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/Fragment.qll
@@ -1,4 +1,6 @@
 /** Provides classes and predicates to track Android fragments. */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/android/Intent.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/Intent.qll
@@ -1,3 +1,6 @@
+overlay[local?]
+module;
+
 import java
 private import semmle.code.java.frameworks.android.Android
 private import semmle.code.java.dataflow.DataFlow
--- a/java/ql/lib/semmle/code/java/frameworks/android/Layout.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/Layout.qll
@@ -1,4 +1,6 @@
 /** Provides classes and predicates for working with Android layouts and UI elements. */
+overlay[local?]
+module;

 import java
 import semmle.code.xml.AndroidManifest
--- a/java/ql/lib/semmle/code/java/frameworks/android/OnActivityResultSource.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/OnActivityResultSource.qll
@@ -1,4 +1,6 @@
 /** Provides a remote flow source for Android's `Activity.onActivityResult` method. */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.dataflow.DataFlow
--- a/java/ql/lib/semmle/code/java/frameworks/android/PendingIntent.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/PendingIntent.qll
@@ -1,4 +1,6 @@
 /** Provides classes and predicates related to the class `PendingIntent`. */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/android/SQLite.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/SQLite.qll
@@ -1,4 +1,6 @@
 /** Provides classes and predicates for working with SQLite databases. */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.dataflow.FlowSteps
--- a/java/ql/lib/semmle/code/java/frameworks/android/SharedPreferences.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/SharedPreferences.qll
@@ -1,4 +1,6 @@
 /** Provides classes related to `android.content.SharedPreferences`. */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/android/Slice.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/Slice.qll
@@ -1,4 +1,6 @@
 /** Provides classes and predicates related to `androidx.slice`. */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.dataflow.DataFlow
--- a/java/ql/lib/semmle/code/java/frameworks/android/WebView.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/WebView.qll
@@ -1,3 +1,6 @@
+overlay[local?]
+module;
+
 import java

 /** The class `android.webkit.WebView`. */
--- a/java/ql/lib/semmle/code/java/frameworks/android/Widget.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/Widget.qll
@@ -1,4 +1,6 @@
 /** Provides classes and predicates for working with Android widgets. */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.dataflow.ExternalFlow
--- a/java/ql/lib/semmle/code/java/frameworks/android/XmlParsing.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/XmlParsing.qll
@@ -1,3 +1,6 @@
+overlay[local?]
+module;
+
 import java

 class XmlPullParser extends Interface {
--- a/java/ql/lib/semmle/code/java/frameworks/apache/Collections.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/apache/Collections.qll
@@ -1,4 +1,6 @@
 /** Definitions related to the Apache Commons Collections library. */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.dataflow.FlowSteps
--- a/java/ql/lib/semmle/code/java/frameworks/apache/CommonsXml.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/apache/CommonsXml.qll
@@ -1,4 +1,6 @@
 /** Provides XML definitions related to the `org.apache.commons` package. */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.dataflow.RangeUtils
--- a/java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll
@@ -1,4 +1,6 @@
 /** Definitions related to the Apache Commons Lang library. */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.dataflow.FlowSteps
--- a/java/ql/lib/semmle/code/java/frameworks/camel/CamelJavaAnnotations.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/camel/CamelJavaAnnotations.qll
@@ -14,6 +14,8 @@
 *
 * This creates a route to the `ConsumeMdb` class for messages sent to "activemq:queue:sayhello".
 */
+overlay[local?]
+module;

 import java
 import semmle.code.java.Reflection
--- a/java/ql/lib/semmle/code/java/frameworks/camel/CamelJavaDSL.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/camel/CamelJavaDSL.qll
@@ -13,6 +13,8 @@
 *
 * This creates a route to the `TargetBean` class for messages sent to "direct.start".
 */
+overlay[local?]
+module;

 import java
 import semmle.code.java.Reflection
--- a/java/ql/lib/semmle/code/java/frameworks/gigaspaces/GigaSpaces.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/gigaspaces/GigaSpaces.qll
@@ -1,6 +1,8 @@
 /**
 * GigaSpaces XAP (eXtreme Application Platform) is a distributed in-memory "datagrid".
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/google/GoogleHttpClientApi.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/google/GoogleHttpClientApi.qll
@@ -1,3 +1,6 @@
+overlay[local?]
+module;
+
 import java
 import semmle.code.java.Serializability
 import semmle.code.java.dataflow.DataFlow
--- a/java/ql/lib/semmle/code/java/frameworks/google/Gson.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/google/Gson.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes for working with the Gson framework.
 */
+overlay[local?]
+module;

 import java
 import semmle.code.java.dataflow.DataFlow
--- a/java/ql/lib/semmle/code/java/frameworks/google/GsonSerializability.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/google/GsonSerializability.qll
@@ -2,6 +2,8 @@
 * Provides classes and predicates for working with Java Serialization in the context of
 * the `com.google.gson` JSON processing framework.
 */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.Serializability
--- a/java/ql/lib/semmle/code/java/frameworks/guava/Collections.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/guava/Collections.qll
@@ -1,4 +1,6 @@
 /** Definitions of flow steps through the collection types in the Guava framework */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.dataflow.DataFlow
--- a/java/ql/lib/semmle/code/java/frameworks/guava/Guava.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/guava/Guava.qll
@@ -1,6 +1,8 @@
 /**
 * Definitions for tracking taint steps through the Guava framework.
 */
+overlay[local?]
+module;

 import java
 import Collections
--- a/java/ql/lib/semmle/code/java/frameworks/gwt/GWT.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/gwt/GWT.qll
@@ -1,4 +1,6 @@
 /** Provides classes and predicates for working with the GWT framework. */
+overlay[local?]
+module;

 import java
 import GwtXml
--- a/java/ql/lib/semmle/code/java/frameworks/gwt/GwtUiBinder.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/gwt/GwtUiBinder.qll
@@ -4,6 +4,8 @@
 * The UiBinder framework allows the specification of user interfaces in XML template files. These
 * can then be interacted with programmatically by writing an associated owner class.
 */
+overlay[local?]
+module;

 import java
 import GwtUiBinderXml
--- a/java/ql/lib/semmle/code/java/frameworks/gwt/GwtUiBinderXml.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/gwt/GwtUiBinderXml.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for identifying GWT UiBinder framework XML templates.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/gwt/GwtXml.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/gwt/GwtXml.qll
@@ -1,4 +1,6 @@
 /** Provides classes and predicates for working with `*.gwt.xml` files. */
+overlay[local?]
+module;

 import semmle.code.xml.XML

--- a/java/ql/lib/semmle/code/java/frameworks/hudson/Hudson.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/hudson/Hudson.qll
@@ -1,4 +1,6 @@
 /** Provides classes and predicates related to the Hudson framework. */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.dataflow.FlowSources
--- a/java/ql/lib/semmle/code/java/frameworks/j2objc/J2ObjC.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/j2objc/J2ObjC.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with OCNI (Objective-C Native Interface).
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/jOOQ.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/jOOQ.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the jOOQ framework.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/jackson/JacksonSerializability.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/jackson/JacksonSerializability.qll
@@ -2,6 +2,8 @@
 * Provides classes and predicates for working with Java Serialization in the context of
 * the `com.fasterxml.jackson` JSON processing framework.
 */
+overlay[local?]
+module;

 import java
 import semmle.code.java.Serializability
--- a/java/ql/lib/semmle/code/java/frameworks/javaee/JavaServerFaces.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/javaee/JavaServerFaces.qll
@@ -1,4 +1,6 @@
 /** Provides classes and predicates for working with Java Server Faces. */
+overlay[local?]
+module;

 import default
 import semmle.code.java.frameworks.javaee.jsf.JSFAnnotations
--- a/java/ql/lib/semmle/code/java/frameworks/javaee/Persistence.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/javaee/Persistence.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the JavaEE Persistence API.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/javaee/PersistenceXML.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/javaee/PersistenceXML.qll
@@ -2,6 +2,8 @@
 * Provides classes and predicates for working with JavaEE
 * persistence configuration XML files (`persistence.xml`).
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/javaee/Xml.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/javaee/Xml.qll
@@ -1,4 +1,6 @@
 /** Provides definitions related to the `javax.xml` package. */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.security.XmlParsers
--- a/java/ql/lib/semmle/code/java/frameworks/javaee/ejb/EJB.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/javaee/ejb/EJB.qll
@@ -1,4 +1,6 @@
 /** Provides classes and predicates for working with Enterprise Java Beans. */
+overlay[local?]
+module;

 import java
 import EJBJarXML
--- a/java/ql/lib/semmle/code/java/frameworks/javaee/ejb/EJBJarXML.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/javaee/ejb/EJBJarXML.qll
@@ -2,6 +2,8 @@
 * Provides classes and predicates for working with
 * EJB deployment descriptor XML files (`ejb-jar.xml`).
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/javaee/ejb/EJBRestrictions.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/javaee/ejb/EJBRestrictions.qll
@@ -2,6 +2,8 @@
 * Provides classes and predicates for modeling
 * EJB Programming Restrictions (see EJB 3.0 specification, section 21.1.2).
 */
+overlay[local?]
+module;

 import java
 import EJB
--- a/java/ql/lib/semmle/code/java/frameworks/javaee/jsf/JSFAnnotations.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/javaee/jsf/JSFAnnotations.qll
@@ -1,4 +1,6 @@
 /** Provides classes and predicates for working with Java Server Faces annotations. */
+overlay[local?]
+module;

 import default

--- a/java/ql/lib/semmle/code/java/frameworks/javaee/jsf/JSFFacesContextXML.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/javaee/jsf/JSFFacesContextXML.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes for JSF "Application Configuration Resources File", usually called `faces-config.xml`.
 */
+overlay[local?]
+module;

 import default

--- a/java/ql/lib/semmle/code/java/frameworks/javaee/jsf/JSFRenderer.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/javaee/jsf/JSFRenderer.qll
@@ -1,4 +1,6 @@
 /** Provides classes and predicates for working with JavaServer Faces renderer. */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/javase/Beans.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/javase/Beans.qll
@@ -1,4 +1,6 @@
 /** Provides definitions related to the `java.beans` package. */
+overlay[local?]
+module;

 import java
 private import semmle.code.java.security.XmlParsers
--- a/java/ql/lib/semmle/code/java/frameworks/javase/Http.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/javase/Http.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates related to `java.net.http.*`.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/javase/WebSocket.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/javase/WebSocket.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes for identifying methods called by the Java SE WebSocket package.
 */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/kotlin/IO.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/kotlin/IO.qll
@@ -1,4 +1,6 @@
 /** Provides classes and predicates related to `kotlin.io`. */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/kotlin/Kotlin.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/kotlin/Kotlin.qll
@@ -1,4 +1,6 @@
 /** Provides classes and predicates related to `kotlin`. */
+overlay[local?]
+module;

 import java

--- a/java/ql/lib/semmle/code/java/frameworks/kotlin/Serialization.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/kotlin/Serialization.qll
@@ -1,6 +1,8 @@
 /**
 * Provides classes and predicates for working with the `kotlinx.serialization` plugin.
 */
+overlay[local?]
+module;

 import java

--- a/Show More
+++ b/Show More