mirror of
https://github.com/github/codeql.git
synced 2025-12-18 18:10:39 +01:00
f07a7bf8cf
Will need subsequent PRs fixing up test failures (due to deprecated methods moving around), but other than that everything should be straight-forward.
10 lines
295 B
Plaintext
10 lines
295 B
Plaintext
import python
|
|
import semmle.python.web.HttpRequest
|
|
import semmle.python.security.strings.Untrusted
|
|
|
|
from HttpRequestTaintSource source, TaintKind kind
|
|
where
|
|
source.isSourceOf(kind) and
|
|
source.getLocation().getFile().getShortName() != "cgi.py"
|
|
select source.(ControlFlowNode).getNode(), kind
|