codeql/java/ql/test/query-tests/security/CWE-089/semmle/examples/sbQuery.ql

import semmle.code.java.security.SqlConcatenatedLib

from StringBuilderVar sbv, Expr uncontrolled, Method method, int methodLine
where
  uncontrolledStringBuilderQuery(sbv, uncontrolled) and
  method = uncontrolled.getEnclosingCallable() and
  methodLine = method.getLocation().getStartLine()
select method.getName(), sbv.getLocation().getStartLine() - methodLine, sbv,
  uncontrolled.getLocation().getStartLine() - methodLine, uncontrolled