mirror of
https://github.com/github/codeql.git
synced 2026-04-12 10:34:02 +02:00
95e50cedad
This query finds cases where user input flows to an argument to `eval` or `send`, which can execute arbitrary Ruby code.
20 lines
710 B
Plaintext
20 lines
710 B
Plaintext
import codeql.ruby.frameworks.StandardLibrary
|
|
|
|
query predicate subshellLiteralExecutions(SubshellLiteralExecution e) { any() }
|
|
|
|
query predicate subshellHeredocExecutions(SubshellHeredocExecution e) { any() }
|
|
|
|
query predicate kernelSystemCallExecutions(KernelSystemCall c) { any() }
|
|
|
|
query predicate kernelExecCallExecutions(KernelExecCall c) { any() }
|
|
|
|
query predicate kernelSpawnCallExecutions(KernelSpawnCall c) { any() }
|
|
|
|
query predicate open3CallExecutions(Open3Call c) { any() }
|
|
|
|
query predicate open3PipelineCallExecutions(Open3PipelineCall c) { any() }
|
|
|
|
query predicate evalCallCodeExecutions(EvalCallCodeExecution e) { any() }
|
|
|
|
query predicate sendCallCodeExecutions(SendCallCodeExecution e) { any() }
|