hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-20 18:56:32 +01:00
Code Issues Packages Projects Releases Wiki Activity

Swift: Add CSV extension points.

Browse Source
This commit is contained in:
Geoffrey White
2023-02-27 22:55:47 +00:00
parent c533334470
commit ea4c2e4321
3 changed files with 24 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
swift/ql/lib/codeql/swift/security/CleartextStorageDatabaseExtensions.qll
View File

@@ -6,6 +6,7 @@
import swift import swift
import codeql.swift.security.SensitiveExprs import codeql.swift.security.SensitiveExprs
import codeql.swift.dataflow.DataFlow import codeql.swift.dataflow.DataFlow
import codeql.swift.dataflow.ExternalFlow
/** /**
* A dataflow sink for cleartext database storage vulnerabilities. That is, * A dataflow sink for cleartext database storage vulnerabilities. That is,
@@ -150,3 +151,10 @@ private class CleartextStorageDatabaseArrayAdditionalTaintStep extends Cleartext
) )
} }
} }
/**
* A sink defined in a CSV model.
*/
private class DefaultCleartextStorageDatabaseSink extends CleartextStorageDatabaseSink {
DefaultCleartextStorageDatabaseSink() { sinkNode(this, "database-store") }
}

8
swift/ql/lib/codeql/swift/security/CleartextStoragePreferencesExtensions.qll
View File

@@ -6,6 +6,7 @@
import swift import swift
import codeql.swift.security.SensitiveExprs import codeql.swift.security.SensitiveExprs
import codeql.swift.dataflow.DataFlow import codeql.swift.dataflow.DataFlow
import codeql.swift.dataflow.ExternalFlow
/** /**
* A dataflow sink for cleartext preferences storage vulnerabilities. That is, * A dataflow sink for cleartext preferences storage vulnerabilities. That is,
@@ -78,3 +79,10 @@ private class CleartextStoragePreferencesEncryptionSanitizer extends CleartextSt
this.asExpr() instanceof EncryptedExpr this.asExpr() instanceof EncryptedExpr
} }
} }
/**
* A sink defined in a CSV model.
*/
private class DefaultCleartextStoragePreferencesSink extends CleartextStoragePreferencesSink {
DefaultCleartextStoragePreferencesSink() { sinkNode(this, "preferences-store") }
}

8
swift/ql/lib/codeql/swift/security/CleartextTransmissionExtensions.qll
View File

@@ -6,6 +6,7 @@
import swift import swift
import codeql.swift.security.SensitiveExprs import codeql.swift.security.SensitiveExprs
import codeql.swift.dataflow.DataFlow import codeql.swift.dataflow.DataFlow
import codeql.swift.dataflow.ExternalFlow
/** /**
* A dataflow sink for cleartext transmission vulnerabilities. That is, * A dataflow sink for cleartext transmission vulnerabilities. That is,
@@ -87,3 +88,10 @@ private class CleartextTransmissionEncryptionSanitizer extends CleartextTransmis
this.asExpr() instanceof EncryptedExpr this.asExpr() instanceof EncryptedExpr
} }
} }
/**
* A sink defined in a CSV model.
*/
private class DefaultCleartextTransmissionSink extends CleartextTransmissionSink {
DefaultCleartextTransmissionSink() { sinkNode(this, "transmission") }
}