mirror of
https://github.com/github/codeql.git
synced 2026-01-30 06:42:57 +01:00
ef94cde0b3
Make methods which add data to entries sinks in their own right, rather than trying to track the data flow of the entry to a later logging call. This may cause some false positives, but only in the situation that tainted data is added to an entry and that entry is never logged. It will save us from false negatives when tainted data is added to an entry which flows across a function boundary to a logging call.