/**
 * Surfaces endpoints are sinks with high confidence, for use as positive examples in the prompt.
 *
 * @name Positive examples (experimental)
 * @kind problem
 * @id java/ml-powered/known-sink
 * @tags experimental security
 */

private import java
import semmle.code.java.dataflow.TaintTracking
private import experimental.adaptivethreatmodeling.EndpointCharacteristics as EndpointCharacteristics
private import experimental.adaptivethreatmodeling.ATMConfig as AtmConfig
private import experimental.adaptivethreatmodeling.SqlInjectionATM as SqlInjectionAtm

from
  DataFlow::Node sink, AtmConfig::AtmConfig config,
  EndpointCharacteristics::EndpointCharacteristic characteristic, float confidence
where
  characteristic.appliesToEndpoint(sink) and
  confidence >= characteristic.maximalConfidence() and
  characteristic.hasImplications(config.getASinkEndpointType(), true, confidence)
select sink, "Sink of type " + characteristic + " with confidence " + confidence.toString()