SensitiveResultReceiverFlow needs to be public

2025-12-24 04:36:35 +01:00 · 2023-04-14 09:04:56 +02:00
parent 7b56383b52
commit f106783c39
1 changed files with 2 additions and 2 deletions
--- a/java/ql/lib/semmle/code/java/security/SensitiveResultReceiverQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/SensitiveResultReceiverQuery.qll
@@ -2,7 +2,6 @@

 import java
 import semmle.code.java.dataflow.TaintTracking
-private import semmle.code.java.dataflow.TaintTracking2
 import semmle.code.java.dataflow.FlowSources
 import semmle.code.java.security.SensitiveActions

@@ -64,7 +63,8 @@ private module SensitiveResultReceiverConfig implements DataFlow::ConfigSig {
  predicate allowImplicitRead(DataFlow::Node n, DataFlow::ContentSet c) { isSink(n) and exists(c) }
 }

-private module SensitiveResultReceiverFlow = TaintTracking::Global<SensitiveResultReceiverConfig>;
+/** Taint tracking flow for sensitive expressions flowing to untrusted result receivers. */
+module SensitiveResultReceiverFlow = TaintTracking::Global<SensitiveResultReceiverConfig>;

 /**
 * DEPRECATED: Use `isSensitiveResultReceiver` instead.