mirror of
https://github.com/github/codeql.git
synced 2026-04-20 06:24:03 +02:00
7d79be71d1
Switch from using additional flow steps with a DataFlow::Configuration in DefaultTaintTracking to using a TaintTracking::Configuration. This makes future improvements to TaintTracking::Configuration reflected in DefaultTaintTracking without further effort. It also removes the predictability constraint in DefaultTaintTracking, which increases the number of results, with both new true positives and new false positives. Those may need to be addressed on a per-query basis. There are some additional regressions from losing pointer/object conflation for arguments. Those can be worked around by adding that conflation to TaintTracking::Configuration until precise indirect parameter flow is ready.