hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-23 18:33:42 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
edc93dfeb747225990b756f4df609f2e7d8d4f7a
codeql/ruby/ql/test/query-tests/security/cwe-300/InsecureDependency.ql

24 lines
615 B
Plaintext
Raw Blame History

import codeql.ruby.AST
import TestUtilities.InlineExpectationsTest
import codeql.ruby.security.InsecureDependencyQuery
module InsecureDependencyTest implements TestSig {
string getARelevantTag() { result = "result" }
predicate hasActualResult(Location location, string element, string tag, string value) {
tag = "result" and
value = "BAD" and
exists(Expr e |
insecureDependencyUrl(e, _) and
location = e.getLocation() and
element = e.toString()
)
}
}
import MakeTest<InsecureDependencyTest>
from Expr url, string msg
where insecureDependencyUrl(url, msg)
select url, msg
Reference in New Issue View Git Blame Copy Permalink