hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-24 04:36:35 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
hmac/command-injection-from-library-inputs
codeql/javascript/ql/test/library-tests/Security/heuristics/HeuristicSource.ql

14 lines
436 B
Plaintext
Raw Permalink Blame History

import javascript
private import semmle.javascript.heuristics.AdditionalSources
import testUtilities.ConsistencyChecking
class Taint extends TaintTracking::Configuration {
Taint() { this = "Taint" }
override predicate isSource(DataFlow::Node node) { node instanceof HeuristicSource }
override predicate isSink(DataFlow::Node node) {
node = any(DataFlow::CallNode call | call.getCalleeName() = "sink").getAnArgument()
}
}
Reference in New Issue View Git Blame Copy Permalink