hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-01-29 22:32:58 +01:00
Code Issues Packages Projects Releases Wiki Activity

Match gopkg.in import of squirrel for SQLi query

Browse Source
This commit is contained in:
Luke Young
2022-02-03 13:29:38 -08:00
committed by GitHub
parent e3feece94e
commit dea1959e21
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
ql/lib/semmle/go/frameworks/SQL.qll
View File

@@ -83,7 +83,7 @@ module SQL {
SquirrelQueryString() {
exists(Function fn |
exists(string sq |
sq = package(["github.com/Masterminds", "github.com/lann"], "squirrel")
sq = package(["github.com/Masterminds/squirrel", "gopkg.in/Masterminds/squirrel.v1", "github.com/lann/squirrel"], "")
|
// first argument to `squirrel.Expr`
fn.hasQualifiedName(sq, "Expr")