hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-18 05:24:01 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
5f438e433d2bc2a129d8d326bd9fbbda280b28ac
codeql/ruby/ql/test/library-tests/frameworks/action_mailer/params-flow.ql
Nick Rolfe d61f0559a0 Ruby: add ActionMailer#params as a RemoteFlowSource
2022-10-10 10:23:48 +01:00

19 lines
479 B
Plaintext
Raw Blame History

/**
* @kind path-problem
*/
import ruby
import TestUtilities.InlineFlowTest
import PathGraph
import codeql.ruby.frameworks.Rails
class ParamsTaintFlowConf extends DefaultTaintFlowConf {
override predicate isSource(DataFlow::Node n) {
n.asExpr().getExpr() instanceof Rails::ParamsCall
}
}
from DataFlow::PathNode source, DataFlow::PathNode sink, ParamsTaintFlowConf conf
where conf.hasFlowPath(source, sink)
select sink, source, sink, "$@", source, source.toString()
Reference in New Issue View Git Blame Copy Permalink