hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-01 19:55:15 +02:00
Code Issues Packages Projects Releases Wiki Activity

python: rewrite to separate configurations

Browse Source 
source nodes get duplicated, so perhaps flow states
are actually better for performance?
This commit is contained in:
Rasmus Lerchedahl Petersen
2022-02-01 14:36:11 +01:00
parent 7df5c70c6f
commit c2cd58edc4
4 changed files with 137 additions and 73 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
python/ql/src/Security/CWE-090/LdapInjection.ql
View File

@@ -16,7 +16,7 @@ import python
import semmle.python.security.dataflow.LdapInjection
import DataFlow::PathGraph
from LDAPInjectionFlowConfig config, DataFlow::PathNode source, DataFlow::PathNode sink
where config.hasFlowPath(source, sink)
from DataFlow::PathNode source, DataFlow::PathNode sink
where LdapInjection::ldapInjection(source, sink)
select sink.getNode(), source, sink, "$@ LDAP query parameter comes from $@.", sink.getNode(),
"This", source.getNode(), "a user-provided value"