Added modeling of client-s3 v2 and v3

2026-05-05 05:35:13 +02:00 · 2025-07-29 09:52:49 +02:00
parent 5e6118ef3f
commit ee1af432fe
3 changed files with 69 additions and 5 deletions
--- a/javascript/ql/lib/ext/client-s3.model.yml
+++ b/javascript/ql/lib/ext/client-s3.model.yml
@@ -0,0 +1,20 @@
+extensions:
+  - addsTo:
+      pack: codeql/javascript-all
+      extensible: sinkModel
+    data:
+      - ["S3ClientV3", "ReturnValue.Member[send].Argument[0]", "sql-injection"]
+      - ["S3ClientV2", "ReturnValue.Member[selectObjectContent].Argument[0].Member[Expression]", "sql-injection"]
+
+  - addsTo:
+      pack: codeql/javascript-all
+      extensible: summaryModel
+    data:
+      - ["@aws-sdk/client-s3", "Member[SelectObjectContentCommand]", "Argument[0].Member[Expression]", "ReturnValue", "taint"]
+
+  - addsTo:
+      pack: codeql/javascript-all
+      extensible: typeModel
+    data:
+      - ["S3ClientV3", "@aws-sdk/client-s3", "Member[S3Client]"]
+      - ["S3ClientV2", "aws-sdk", "Member[S3]"]