mirror of
https://github.com/github/codeql.git
synced 2025-12-20 18:56:32 +01:00
9cb83fcdc9
copy, pop, get, getitem, setdefault
Also add read steps to taint tracking.
Reading from a tainted collection can be done in two situations:
1. There is an acces path
In this case a read step (possibly from a flow summary)
gives rise to a taint step.
2. There is no access path
In this case an explicit taint step (possibly via a flow
summary) should exist.
5 lines
153 B
Plaintext
5 lines
153 B
Plaintext
| hmac.new [keyword msg] | 1 | 1 |
|
|
| hmac.new [position 1] | 1 | 1 |
|
|
| unknown.lib.func [keyword kw] | 2 | 1 |
|
|
| unknown.lib.func [position 0] | 2 | 1 |
|