mirror of
https://github.com/github/codeql.git
synced 2025-12-21 11:16:30 +01:00
13 lines
385 B
Plaintext
13 lines
385 B
Plaintext
import javascript
|
|
|
|
class TrackedStringLiteral extends DataFlow::TrackedNode {
|
|
TrackedStringLiteral() { this.asExpr() instanceof ConstantString }
|
|
}
|
|
|
|
from TrackedStringLiteral source, DataFlow::Node sink, SsaExplicitDefinition def
|
|
where
|
|
source.flowsTo(sink) and
|
|
sink = DataFlow::ssaDefinitionNode(def) and
|
|
def.getSourceVariable().getName().toLowerCase() = "password"
|
|
select sink
|