mirror of
https://github.com/github/codeql.git
synced 2025-12-20 18:56:32 +01:00
12 lines
495 B
Plaintext
12 lines
495 B
Plaintext
import python
|
|
import semmle.python.dataflow.new.FlowSummary
|
|
import semmle.python.dataflow.new.internal.FlowSummaryImpl
|
|
|
|
from SummarizedCallable sc, string s, string c, string attr
|
|
where
|
|
(sc.propagatesFlow(s, _, _) or sc.propagatesFlow(_, s, _)) and
|
|
Private::External::invalidSpecComponent(s, c) and
|
|
c = "Attribute[" + attr + "]"
|
|
select "The attribute \"" + attr +
|
|
"\" is not a valid TAttributeContent, please add it to the hardcoded list of TAttributeContent in the dataflow library."
|