hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-01-05 18:50:23 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
0928fa6e1f9ff8358ba19a1ce73a10cd387320fa
codeql/ruby/ql/test/library-tests/dataflow/local
History
Harry Maclean 72356d1515 Ruby: track flow from *args to positional params 
This models flow in the following case:

    def foo(x, y)
      sink x # 1
      sink y # 2
    end

    args = [source 1, source 2]
    foo(*args)

We do this by introducing a SynthSplatParameterNode which accepts
content from the splat argument, if one is given at the callsite.
From this node we add read steps to each positional parameter.
2023-08-09 15:01:40 +01:00
..
DataflowStep.expected
Ruby: Include all assignments in data flow paths
2023-03-24 10:09:30 +01:00
DataflowStep.ql
Ruby: Do not expose AST layer through ruby.qll
2022-09-13 19:59:56 +02:00
InlineFlowTest.expected
Ruby: Rewrite InlineFlowTest as a parameterized module
2023-06-15 10:52:23 +02:00
InlineFlowTest.ql
Ruby: Rewrite InlineFlowTest as a parameterized module
2023-06-15 10:52:23 +02:00
local_dataflow.rb
Ruby: Add more local flow tests for use-use flow
2022-11-15 11:45:31 +01:00
Nodes.expected
Ruby: Add use-use stress test
2022-12-07 15:28:51 +01:00
Nodes.ql
Ruby: Fix tests.
2023-06-09 15:39:18 +02:00
TaintStep.expected
Ruby: track flow from *args to positional params
2023-08-09 15:01:40 +01:00
TaintStep.ql
Ruby: add test of TaintTracking::localFlowStep
2022-10-21 16:04:04 +01:00
UseUseExplosion.rb
Ruby: Add use-use stress test
2022-12-07 15:28:51 +01:00