mirror of
https://github.com/github/codeql.git
synced 2026-04-29 10:45:15 +02:00
7c04c59456
This makes it easy to extend the sources/sinks of the configuration and re-run the query from the query console on LGTM.com. File location in `semmle.<lang>.security.dataflow.<QueryName>.qll` is matching what we currently do in other languages (JS and C# sampled). I did not follow the pattern in other languages for wrapping all the code in a `module CodeInjection`, since I didn't understand the value in doing so -- I would like confirmation from the other teams if we _should_ actually do that, before merging.