mirror of
https://github.com/github/codeql.git
synced 2025-12-24 04:36:35 +01:00
14 lines
383 B
Plaintext
14 lines
383 B
Plaintext
import semmle.code.csharp.frameworks.Sql
|
|
import semmle.code.csharp.dataflow.internal.ExternalFlow
|
|
import semmle.code.csharp.dataflow.internal.DataFlowPublic
|
|
|
|
query predicate sqlExpressions(SqlExpr se, Expr e) { se.getSql() = e }
|
|
|
|
query predicate sqlCsvSinks(Element p, Expr e) {
|
|
p = e.getParent() and
|
|
exists(Node n |
|
|
sinkNode(n, "sql-injection") and
|
|
n.asExpr() = e
|
|
)
|
|
}
|