hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-23 15:55:18 +02:00
Code Issues Packages Projects Releases Wiki Activity

Refactor to DataFlow::Global

Browse Source
This commit is contained in:
Ed Minnix
2023-03-24 10:04:46 -04:00
parent 899200a9c9
commit e7bad4cd90
28 changed files with 37 additions and 37 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
java/ql/src/Security/CWE/CWE-074/JndiInjection.ql
View File

@@ -16,6 +16,6 @@ import semmle.code.java.security.JndiInjectionQuery
import JndiInjectionFlow::PathGraph
from JndiInjectionFlow::PathNode source, JndiInjectionFlow::PathNode sink
where JndiInjectionFlow::hasFlowPath(source, sink)
where JndiInjectionFlow::flowPath(source, sink)
select sink.getNode(), source, sink, "JNDI lookup might include name from $@.", source.getNode(),
"this user input"

2
java/ql/src/Security/CWE/CWE-074/XsltInjection.ql
View File

@@ -16,6 +16,6 @@ import semmle.code.java.security.XsltInjectionQuery
import XsltInjectionFlow::PathGraph
from XsltInjectionFlow::PathNode source, XsltInjectionFlow::PathNode sink
where XsltInjectionFlow::hasFlowPath(source, sink)
where XsltInjectionFlow::flowPath(source, sink)
select sink.getNode(), source, sink, "XSLT transformation might include stylesheet from $@.",
source.getNode(), "this user input"

2
java/ql/src/Security/CWE/CWE-094/GroovyInjection.ql
View File

@@ -16,6 +16,6 @@ import semmle.code.java.security.GroovyInjectionQuery
import GroovyInjectionFlow::PathGraph
from GroovyInjectionFlow::PathNode source, GroovyInjectionFlow::PathNode sink
where GroovyInjectionFlow::hasFlowPath(source, sink)
where GroovyInjectionFlow::flowPath(source, sink)
select sink.getNode(), source, sink, "Groovy script depends on a $@.", source.getNode(),
"user-provided value"

2
java/ql/src/Security/CWE/CWE-094/JexlInjection.ql
View File

@@ -16,6 +16,6 @@ import semmle.code.java.security.JexlInjectionQuery
import JexlInjectionFlow::PathGraph
from JexlInjectionFlow::PathNode source, JexlInjectionFlow::PathNode sink
where JexlInjectionFlow::hasFlowPath(source, sink)
where JexlInjectionFlow::flowPath(source, sink)
select sink.getNode(), source, sink, "JEXL expression depends on a $@.", source.getNode(),
"user-provided value"

2
java/ql/src/Security/CWE/CWE-094/MvelInjection.ql
View File

@@ -16,6 +16,6 @@ import semmle.code.java.security.MvelInjectionQuery
import MvelInjectionFlow::PathGraph
from MvelInjectionFlow::PathNode source, MvelInjectionFlow::PathNode sink
where MvelInjectionFlow::hasFlowPath(source, sink)
where MvelInjectionFlow::flowPath(source, sink)
select sink.getNode(), source, sink, "MVEL expression depends on a $@.", source.getNode(),
"user-provided value"

2
java/ql/src/Security/CWE/CWE-094/SpelInjection.ql
View File

@@ -17,6 +17,6 @@ import semmle.code.java.dataflow.DataFlow
import SpelInjectionFlow::PathGraph
from SpelInjectionFlow::PathNode source, SpelInjectionFlow::PathNode sink
where SpelInjectionFlow::hasFlowPath(source, sink)
where SpelInjectionFlow::flowPath(source, sink)
select sink.getNode(), source, sink, "SpEL expression depends on a $@.", source.getNode(),
"user-provided value"

2
java/ql/src/Security/CWE/CWE-094/TemplateInjection.ql
View File

@@ -16,6 +16,6 @@ import semmle.code.java.security.TemplateInjectionQuery
import TemplateInjectionFlow::PathGraph
from TemplateInjectionFlow::PathNode source, TemplateInjectionFlow::PathNode sink
where TemplateInjectionFlow::hasFlowPath(source, sink)
where TemplateInjectionFlow::flowPath(source, sink)
select sink.getNode(), source, sink, "Template, which may contain code, depends on a $@.",
source.getNode(), "user-provided value"

2
java/ql/src/Security/CWE/CWE-730/RegexInjection.ql
View File

@@ -18,6 +18,6 @@ import semmle.code.java.security.regexp.RegexInjectionQuery
import RegexInjectionFlow::PathGraph
from RegexInjectionFlow::PathNode source, RegexInjectionFlow::PathNode sink
where RegexInjectionFlow::hasFlowPath(source, sink)
where RegexInjectionFlow::flowPath(source, sink)
select sink.getNode(), source, sink, "This regular expression is constructed from a $@.",
source.getNode(), "user-provided value"

2
java/ql/src/Security/CWE/CWE-917/OgnlInjection.ql
View File

@@ -16,6 +16,6 @@ import semmle.code.java.security.OgnlInjectionQuery
import OgnlInjectionFlow::PathGraph
from OgnlInjectionFlow::PathNode source, OgnlInjectionFlow::PathNode sink
where OgnlInjectionFlow::hasFlowPath(source, sink)
where OgnlInjectionFlow::flowPath(source, sink)
select sink.getNode(), source, sink, "OGNL Expression Language statement depends on a $@.",
source.getNode(), "user-provided value"