hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-27 17:41:24 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
4ddc425156403bd565b6d166330dc2de3e32bfe1
codeql/powershell/ql/test/TestUtilities/InlineFlowTestUtil.qll
Mathias Vorreiter Pedersen d3b9e139c4 PS: Extend the set of sources in tests.
2024-10-16 18:54:24 +01:00

26 lines
759 B
Plaintext
Raw Blame History

/**
* Defines the default source and sink recognition for `InlineFlowTest.qll`.
*/
import powershell
import semmle.code.powershell.dataflow.DataFlow
predicate defaultSource(DataFlow::Node src) {
src.asStmt().getStmt().(Cmd).getCommandName() = ["Source", "Taint"]
or
src.asParameter().getName().matches(["Source%", "Taint%"])
}
predicate defaultSink(DataFlow::Node sink) {
exists(Cmd cmd | cmd.getCommandName() = "Sink" | sink.asExpr().getExpr() = cmd.getAnArgument())
}
string getSourceArgString(DataFlow::Node src) {
defaultSource(src) and
(
src.asStmt().getStmt().(Cmd).getAnArgument().(StringConstExpr).getValue().getValue() = result
or
src.asParameter().getName().regexpCapture(["Source(.+)", "Taint(.+)"], 1) = result
)
}
Reference in New Issue View Git Blame Copy Permalink