mirror of
https://github.com/github/codeql.git
synced 2026-04-23 15:55:18 +02:00
700604a1c2
These models are to cover the special cases where `append` can be used with a second argument which is a string followed by `...`, and `copy` can be used with a second argument which is a string. In this case the taint is carried by the whole string, rather than in array elements.
14 lines
1.2 KiB
YAML
14 lines
1.2 KiB
YAML
extensions:
|
|
- addsTo:
|
|
pack: codeql/go-all
|
|
extensible: summaryModel
|
|
data:
|
|
- ["", "", False, "append", "", "", "Argument[0]", "ReturnValue", "taint", "manual"] # special case for when arg[0] has core type []byte and second argument has core type bytestring and is followed by ...
|
|
- ["", "", False, "append", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
|
|
- ["", "", False, "append", "", "", "Argument[1]", "ReturnValue", "taint", "manual"] # special case for when arg[0] has core type []byte and second argument has core type bytestring and is followed by ...
|
|
- ["", "", False, "append", "", "", "Argument[1].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
|
|
- ["", "", False, "copy", "", "", "Argument[1]", "Argument[0]", "taint", "manual"] # special case for when arg[0] has core type []byte and second argument has core type bytestring
|
|
- ["", "", False, "copy", "", "", "Argument[1].ArrayElement", "Argument[0].ArrayElement", "value", "manual"]
|
|
- ["", "", False, "max", "", "", "Argument[0..1000]", "ReturnValue", "value", "manual"]
|
|
- ["", "", False, "min", "", "", "Argument[0..1000]", "ReturnValue", "value", "manual"]
|