add test

haby0 · haby0 · commit be40b54b9fd0 · 2022-02-28T20:34:58.000+08:00
diff --git a/python/ql/lib/semmle/python/frameworks/Aiohttp.qll b/python/ql/lib/semmle/python/frameworks/Aiohttp.qll
@@ -644,7 +644,7 @@ module AiohttpWebModel {
  * Provides models for the web server part (`aiohttp.client`) of the `aiohttp` PyPI package.
  * See https://docs.aiohttp.org/en/stable/client.html
  */
-module AiohttpClientModel {
+private module AiohttpClientModel {
   /**
    * Provides models for the `aiohttp.ClientSession` class
    *
@@ -668,7 +668,7 @@ module AiohttpClientModel {
         this = instance().getMember(methodName).getACall()
       }
 
-      DataFlow::Node getUrlArg() {
+      override DataFlow::Node getAUrlPart() {
         result = this.getArgByName("url")
         or
         not methodName = "request" and
@@ -678,13 +678,12 @@ module AiohttpClientModel {
         result = this.getArg(1)
       }
 
-      override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }
-
       override string getFramework() { result = "aiohttp.ClientSession" }
 
       override predicate disablesCertificateValidation(
         DataFlow::Node disablingNode, DataFlow::Node argumentOrigin
       ) {
+        // TODO: Look into disabling certificate validation
         none()
       }
     }
diff --git a/python/ql/lib/semmle/python/frameworks/Httpx.qll b/python/ql/lib/semmle/python/frameworks/Httpx.qll
@@ -20,7 +20,7 @@ module HttpxModel {
       this = API::moduleImport("httpx").getMember(methodName).getACall()
     }
 
-    DataFlow::Node getUrlArg() {
+    override DataFlow::Node getAUrlPart() {
       result = this.getArgByName("url")
       or
       not methodName = "request" and
@@ -30,13 +30,12 @@ module HttpxModel {
       result = this.getArg(1)
     }
 
-    override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }
-
     override string getFramework() { result = "httpx" }
 
     override predicate disablesCertificateValidation(
       DataFlow::Node disablingNode, DataFlow::Node argumentOrigin
     ) {
+      // TODO: Look into disabling certificate validation
       none()
     }
   }
@@ -64,7 +63,7 @@ module HttpxModel {
         this = instance().getMember(methodName).getACall()
       }
 
-      DataFlow::Node getUrlArg() {
+      override DataFlow::Node getAUrlPart() {
         result = this.getArgByName("url")
         or
         not methodName = "request" and
@@ -74,13 +73,12 @@ module HttpxModel {
         result = this.getArg(1)
       }
 
-      override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }
-
       override string getFramework() { result = "httpx.[Async]Client" }
 
       override predicate disablesCertificateValidation(
         DataFlow::Node disablingNode, DataFlow::Node argumentOrigin
       ) {
+        // TODO: Look into disabling certificate validation
         none()
       }
     }
diff --git a/python/ql/lib/semmle/python/frameworks/Libtaxii.qll b/python/ql/lib/semmle/python/frameworks/Libtaxii.qll
@@ -22,15 +22,14 @@ module Libtaxii {
       this.getArgByName("allow_url").asExpr().toString() = "True"
     }
 
-    DataFlow::Node getUrlArg() { result in [this.getArg(0), this.getArgByName("s")] }
-
-    override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }
+    override DataFlow::Node getAUrlPart() { result in [this.getArg(0), this.getArgByName("s")] }
 
     override string getFramework() { result = "libtaxii.common.parse" }
 
     override predicate disablesCertificateValidation(
       DataFlow::Node disablingNode, DataFlow::Node argumentOrigin
     ) {
+      // TODO: Look into disabling certificate validation
       none()
     }
   }
diff --git a/python/ql/lib/semmle/python/frameworks/Pycurl.qll b/python/ql/lib/semmle/python/frameworks/Pycurl.qll
@@ -25,7 +25,7 @@ module Pycurl {
     private API::Node instance() { result = classRef().getReturn() }
 
     /**
-     * When the first parameter value of the `setopt` function is set to `pycurl.URL`, 
+     * When the first parameter value of the `setopt` function is set to `pycurl.URL`,
      * the second parameter value is the request resource link.
      *
      * See https://pycurl.io/docs/latest/curl.html#set_option.
@@ -36,15 +36,16 @@ module Pycurl {
         this.getArg(0).asCfgNode().(AttrNode).getName() = "URL"
       }
 
-      DataFlow::Node getUrlArg() { result in [this.getArg(1), this.getArgByName("value")] }
-
-      override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }
+      override DataFlow::Node getAUrlPart() {
+        result in [this.getArg(1), this.getArgByName("value")]
+      }
 
       override string getFramework() { result = "pycurl.Curl" }
 
       override predicate disablesCertificateValidation(
         DataFlow::Node disablingNode, DataFlow::Node argumentOrigin
       ) {
+        // TODO: Look into disabling certificate validation
         none()
       }
     }
diff --git a/python/ql/lib/semmle/python/frameworks/Urllib.qll b/python/ql/lib/semmle/python/frameworks/Urllib.qll
@@ -27,15 +27,14 @@ module Urllib {
         this = API::moduleImport("urllib").getMember("request").getMember("Request").getACall()
       }
 
-      DataFlow::Node getUrlArg() { result in [this.getArg(0), this.getArgByName("url")] }
-
-      override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }
+      override DataFlow::Node getAUrlPart() { result in [this.getArg(0), this.getArgByName("url")] }
 
       override string getFramework() { result = "urllib.request.Request" }
 
       override predicate disablesCertificateValidation(
         DataFlow::Node disablingNode, DataFlow::Node argumentOrigin
       ) {
+        // TODO: Look into disabling certificate validation
         none()
       }
     }
@@ -49,15 +48,14 @@ module Urllib {
         this = API::moduleImport("urllib").getMember("request").getMember("urlopen").getACall()
       }
 
-      DataFlow::Node getUrlArg() { result in [this.getArg(0), this.getArgByName("url")] }
-
-      override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }
+      override DataFlow::Node getAUrlPart() { result in [this.getArg(0), this.getArgByName("url")] }
 
       override string getFramework() { result = "urllib.request.urlopen" }
 
       override predicate disablesCertificateValidation(
         DataFlow::Node disablingNode, DataFlow::Node argumentOrigin
       ) {
+        // TODO: Look into disabling certificate validation
         none()
       }
     }
diff --git a/python/ql/lib/semmle/python/frameworks/Urllib2.qll b/python/ql/lib/semmle/python/frameworks/Urllib2.qll
@@ -17,19 +17,16 @@ module Urllib2 {
    * - https://docs.python.org/2/library/urllib2.html#urllib2.Request
    */
   private class RequestCall extends HTTP::Client::Request::Range, DataFlow::CallCfgNode {
-    RequestCall() {
-      this = API::moduleImport("urllib2").getMember("Request").getACall()
-    }
-
-    DataFlow::Node getUrlArg() { result in [this.getArg(0), this.getArgByName("url")] }
+    RequestCall() { this = API::moduleImport("urllib2").getMember("Request").getACall() }
 
-    override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }
+    override DataFlow::Node getAUrlPart() { result in [this.getArg(0), this.getArgByName("url")] }
 
     override string getFramework() { result = "urllib2.Request" }
 
     override predicate disablesCertificateValidation(
       DataFlow::Node disablingNode, DataFlow::Node argumentOrigin
     ) {
+      // TODO: Look into disabling certificate validation
       none()
     }
   }
@@ -41,15 +38,14 @@ module Urllib2 {
   private class UrlOpenCall extends HTTP::Client::Request::Range, DataFlow::CallCfgNode {
     UrlOpenCall() { this = API::moduleImport("urllib2").getMember("urlopen").getACall() }
 
-    DataFlow::Node getUrlArg() { result in [this.getArg(0), this.getArgByName("url")] }
-
-    override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }
+    override DataFlow::Node getAUrlPart() { result in [this.getArg(0), this.getArgByName("url")] }
 
     override string getFramework() { result = "urllib2.urlopen" }
 
     override predicate disablesCertificateValidation(
       DataFlow::Node disablingNode, DataFlow::Node argumentOrigin
     ) {
+      // TODO: Look into disabling certificate validation
       none()
     }
   }
diff --git a/python/ql/lib/semmle/python/frameworks/Urllib3.qll b/python/ql/lib/semmle/python/frameworks/Urllib3.qll
@@ -30,31 +30,29 @@ module Urllib3 {
           instance().getMember(["request", "request_encode_url", "request_encode_body"]).getACall()
       }
 
-      DataFlow::Node getUrlArg() { result in [this.getArg(1), this.getArgByName("url")] }
-
-      override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }
+      override DataFlow::Node getAUrlPart() { result in [this.getArg(1), this.getArgByName("url")] }
 
       override string getFramework() { result = "urllib3.PoolManager" }
 
       override predicate disablesCertificateValidation(
         DataFlow::Node disablingNode, DataFlow::Node argumentOrigin
       ) {
+        // TODO: Look into disabling certificate validation
         none()
       }
     }
 
     private class UrlOpenCall extends HTTP::Client::Request::Range, DataFlow::CallCfgNode {
       UrlOpenCall() { this = instance().getMember("urlopen").getACall() }
 
-      DataFlow::Node getUrlArg() { result in [this.getArg(1), this.getArgByName("url")] }
-
-      override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }
+      override DataFlow::Node getAUrlPart() { result in [this.getArg(1), this.getArgByName("url")] }
 
       override string getFramework() { result = "urllib3.PoolManager" }
 
       override predicate disablesCertificateValidation(
         DataFlow::Node disablingNode, DataFlow::Node argumentOrigin
       ) {
+        // TODO: Look into disabling certificate validation
         none()
       }
     }
diff --git a/python/ql/test/library-tests/frameworks/aiohttp/client_request.py b/python/ql/test/library-tests/frameworks/aiohttp/client_request.py
@@ -0,0 +1,16 @@
+import aiohttp
+import asyncio
+
+s = aiohttp.ClientSession()
+resp = s.request("method", "url") # $ clientRequestUrlPart="url"
+resp = s.request("method", url="url") # $ clientRequestUrlPart="url"
+
+with aiohttp.ClientSession() as session:
+    resp = session.get("url") # $ clientRequestUrlPart="url"
+    resp = session.request(method="GET", url="url") # $ clientRequestUrlPart="url"
+
+# other methods than GET
+s = aiohttp.ClientSession()
+resp = s.post("url") # $ clientRequestUrlPart="url"
+resp = s.patch("url") # $ clientRequestUrlPart="url"
+resp = s.options("url") # $ clientRequestUrlPart="url"
diff --git a/python/ql/test/library-tests/frameworks/httpx/ConceptsTest.expected b/python/ql/test/library-tests/frameworks/httpx/ConceptsTest.expected
diff --git a/python/ql/test/library-tests/frameworks/httpx/ConceptsTest.ql b/python/ql/test/library-tests/frameworks/httpx/ConceptsTest.ql
@@ -0,0 +1,2 @@
+import python
+import experimental.meta.ConceptsTest
diff --git a/python/ql/test/library-tests/frameworks/httpx/test.py b/python/ql/test/library-tests/frameworks/httpx/test.py
@@ -0,0 +1,24 @@
+import httpx
+
+httpx.get("url") # $ clientRequestUrlPart="url"
+httpx.post("url") # $ clientRequestUrlPart="url"
+httpx.patch("url") # $ clientRequestUrlPart="url"
+httpx.options("url") # $ clientRequestUrlPart="url"
+httpx.request("method", url="url") # $ clientRequestUrlPart="url"
+httpx.stream("method", url="url") # $ clientRequestUrlPart="url"
+
+client = httpx.Client()
+response = client.get("url") # $ clientRequestUrlPart="url"
+response = client.post("url") # $ clientRequestUrlPart="url"
+response = client.patch("url") # $ clientRequestUrlPart="url"
+response = client.options("url") # $ clientRequestUrlPart="url"
+response = client.request("method", url="url") # $ clientRequestUrlPart="url"
+response = client.stream("method", url="url") # $ clientRequestUrlPart="url"
+
+client = httpx.AsyncClient()
+response = client.get("url") # $ clientRequestUrlPart="url"
+response = client.post("url") # $ clientRequestUrlPart="url"
+response = client.patch("url") # $ clientRequestUrlPart="url"
+response = client.options("url") # $ clientRequestUrlPart="url"
+response = client.request("method", url="url") # $ clientRequestUrlPart="url"
+response = client.stream("method", url="url") # $ clientRequestUrlPart="url"
diff --git a/python/ql/test/library-tests/frameworks/libtaxii/ConceptsTest.expected b/python/ql/test/library-tests/frameworks/libtaxii/ConceptsTest.expected
diff --git a/python/ql/test/library-tests/frameworks/libtaxii/ConceptsTest.ql b/python/ql/test/library-tests/frameworks/libtaxii/ConceptsTest.ql
@@ -0,0 +1,2 @@
+import python
+import experimental.meta.ConceptsTest
diff --git a/python/ql/test/library-tests/frameworks/libtaxii/test.py b/python/ql/test/library-tests/frameworks/libtaxii/test.py
@@ -0,0 +1,4 @@
+from libtaxii.common import parse
+
+result = parse("url", allow_url=True) # $ clientRequestUrlPart="url"
+result = parse(s="url", allow_url=True) # $ clientRequestUrlPart="url"
diff --git a/python/ql/test/library-tests/frameworks/pycurl/ConceptsTest.expected b/python/ql/test/library-tests/frameworks/pycurl/ConceptsTest.expected
diff --git a/python/ql/test/library-tests/frameworks/pycurl/ConceptsTest.ql b/python/ql/test/library-tests/frameworks/pycurl/ConceptsTest.ql
@@ -0,0 +1,2 @@
+import python
+import experimental.meta.ConceptsTest
diff --git a/python/ql/test/library-tests/frameworks/pycurl/test.py b/python/ql/test/library-tests/frameworks/pycurl/test.py
@@ -0,0 +1,4 @@
+import pycurl
+
+c = pycurl.Curl()
+c.setopt(pycurl.URL, "url") # $ clientRequestUrlPart="url"
diff --git a/python/ql/test/library-tests/frameworks/urllib/ConceptsTest.expected b/python/ql/test/library-tests/frameworks/urllib/ConceptsTest.expected
diff --git a/python/ql/test/library-tests/frameworks/urllib/ConceptsTest.ql b/python/ql/test/library-tests/frameworks/urllib/ConceptsTest.ql
@@ -0,0 +1,2 @@
+import python
+import experimental.meta.ConceptsTest
diff --git a/python/ql/test/library-tests/frameworks/urllib/test.py b/python/ql/test/library-tests/frameworks/urllib/test.py
@@ -0,0 +1,7 @@
+from urllib.request import Request, urlopen
+
+Request("url") # $ clientRequestUrlPart="url"
+Request(url="url") # $ clientRequestUrlPart="url"
+
+urlopen("url") # $ clientRequestUrlPart="url"
+urlopen(url="url") # $ clientRequestUrlPart="url"
diff --git a/python/ql/test/library-tests/frameworks/urllib2/ConceptsTest.expected b/python/ql/test/library-tests/frameworks/urllib2/ConceptsTest.expected
diff --git a/python/ql/test/library-tests/frameworks/urllib2/ConceptsTest.ql b/python/ql/test/library-tests/frameworks/urllib2/ConceptsTest.ql
@@ -0,0 +1,2 @@
+import python
+import experimental.meta.ConceptsTest
diff --git a/python/ql/test/library-tests/frameworks/urllib2/test.py b/python/ql/test/library-tests/frameworks/urllib2/test.py
@@ -0,0 +1,7 @@
+import urllib2
+
+resp = urllib2.Request("url") # $ clientRequestUrlPart="url"
+resp = urllib2.Request(url="url") # $ clientRequestUrlPart="url"
+
+resp = urllib2.urlopen("url") # $ clientRequestUrlPart="url"
+resp = urllib2.urlopen(url="url") # $ clientRequestUrlPart="url"
diff --git a/python/ql/test/library-tests/frameworks/urllib3/ConceptsTest.expected b/python/ql/test/library-tests/frameworks/urllib3/ConceptsTest.expected
diff --git a/python/ql/test/library-tests/frameworks/urllib3/ConceptsTest.ql b/python/ql/test/library-tests/frameworks/urllib3/ConceptsTest.ql
@@ -0,0 +1,2 @@
+import python
+import experimental.meta.ConceptsTest
diff --git a/python/ql/test/library-tests/frameworks/urllib3/test.py b/python/ql/test/library-tests/frameworks/urllib3/test.py
@@ -0,0 +1,8 @@
+import urllib3
+
+http = urllib3.PoolManager()
+
+resp = http.request("method", "url") # $ clientRequestUrlPart="url"
+resp = http.request("method", url="url") # $ clientRequestUrlPart="url"
+resp = http.urlopen("method", "url") # $ clientRequestUrlPart="url"
+resp = http.urlopen("method", url="url") # $ clientRequestUrlPart="url"

Original file line number	Diff line number	Diff line change
`@@ -644,7 +644,7 @@ module AiohttpWebModel {`
`644`	`644`	* Provides models for the web server part (`aiohttp.client`) of the `aiohttp` PyPI package.
`645`	`645`	`* See https://docs.aiohttp.org/en/stable/client.html`
`646`	`646`	`*/`
`647`		`-module AiohttpClientModel {`
	`647`	`+private module AiohttpClientModel {`
`648`	`648`	`/**`
`649`	`649`	* Provides models for the `aiohttp.ClientSession` class
`650`	`650`	`*`
`@@ -668,7 +668,7 @@ module AiohttpClientModel {`
`668`	`668`	`this = instance().getMember(methodName).getACall()`
`669`	`669`	`}`
`670`	`670`
`671`		`- DataFlow::Node getUrlArg() {`
	`671`	`+ override DataFlow::Node getAUrlPart() {`
`672`	`672`	`result = this.getArgByName("url")`
`673`	`673`	`or`
`674`	`674`	`not methodName = "request" and`
`@@ -678,13 +678,12 @@ module AiohttpClientModel {`
`678`	`678`	`result = this.getArg(1)`
`679`	`679`	`}`
`680`	`680`
`681`		`- override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }`
`682`		`-`
`683`	`681`	`override string getFramework() { result = "aiohttp.ClientSession" }`
`684`	`682`
`685`	`683`	`override predicate disablesCertificateValidation(`
`686`	`684`	`DataFlow::Node disablingNode, DataFlow::Node argumentOrigin`
`687`	`685`	`) {`
	`686`	`+ // TODO: Look into disabling certificate validation`
`688`	`687`	`none()`
`689`	`688`	`}`
`690`	`689`	`}`
Original file line number	Diff line number	Diff line change
`@@ -20,7 +20,7 @@ module HttpxModel {`
`20`	`20`	`this = API::moduleImport("httpx").getMember(methodName).getACall()`
`21`	`21`	`}`
`22`	`22`
`23`		`- DataFlow::Node getUrlArg() {`
	`23`	`+ override DataFlow::Node getAUrlPart() {`
`24`	`24`	`result = this.getArgByName("url")`
`25`	`25`	`or`
`26`	`26`	`not methodName = "request" and`
`@@ -30,13 +30,12 @@ module HttpxModel {`
`30`	`30`	`result = this.getArg(1)`
`31`	`31`	`}`
`32`	`32`
`33`		`- override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }`
`34`		`-`
`35`	`33`	`override string getFramework() { result = "httpx" }`
`36`	`34`
`37`	`35`	`override predicate disablesCertificateValidation(`
`38`	`36`	`DataFlow::Node disablingNode, DataFlow::Node argumentOrigin`
`39`	`37`	`) {`
	`38`	`+ // TODO: Look into disabling certificate validation`
`40`	`39`	`none()`
`41`	`40`	`}`
`42`	`41`	`}`
`@@ -64,7 +63,7 @@ module HttpxModel {`
`64`	`63`	`this = instance().getMember(methodName).getACall()`
`65`	`64`	`}`
`66`	`65`
`67`		`- DataFlow::Node getUrlArg() {`
	`66`	`+ override DataFlow::Node getAUrlPart() {`
`68`	`67`	`result = this.getArgByName("url")`
`69`	`68`	`or`
`70`	`69`	`not methodName = "request" and`
`@@ -74,13 +73,12 @@ module HttpxModel {`
`74`	`73`	`result = this.getArg(1)`
`75`	`74`	`}`
`76`	`75`
`77`		`- override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }`
`78`		`-`
`79`	`76`	`override string getFramework() { result = "httpx.[Async]Client" }`
`80`	`77`
`81`	`78`	`override predicate disablesCertificateValidation(`
`82`	`79`	`DataFlow::Node disablingNode, DataFlow::Node argumentOrigin`
`83`	`80`	`) {`
	`81`	`+ // TODO: Look into disabling certificate validation`
`84`	`82`	`none()`
`85`	`83`	`}`
`86`	`84`	`}`
Original file line number	Diff line number	Diff line change
`@@ -22,15 +22,14 @@ module Libtaxii {`
`22`	`22`	`this.getArgByName("allow_url").asExpr().toString() = "True"`
`23`	`23`	`}`
`24`	`24`
`25`		`- DataFlow::Node getUrlArg() { result in [this.getArg(0), this.getArgByName("s")] }`
`26`		`-`
`27`		`- override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }`
	`25`	`+ override DataFlow::Node getAUrlPart() { result in [this.getArg(0), this.getArgByName("s")] }`
`28`	`26`
`29`	`27`	`override string getFramework() { result = "libtaxii.common.parse" }`
`30`	`28`
`31`	`29`	`override predicate disablesCertificateValidation(`
`32`	`30`	`DataFlow::Node disablingNode, DataFlow::Node argumentOrigin`
`33`	`31`	`) {`
	`32`	`+ // TODO: Look into disabling certificate validation`
`34`	`33`	`none()`
`35`	`34`	`}`
`36`	`35`	`}`
Original file line number	Diff line number	Diff line change
`@@ -25,7 +25,7 @@ module Pycurl {`
`25`	`25`	`private API::Node instance() { result = classRef().getReturn() }`
`26`	`26`
`27`	`27`	`/**`
`28`		- * When the first parameter value of the `setopt` function is set to `pycurl.URL`,
	`28`	+ * When the first parameter value of the `setopt` function is set to `pycurl.URL`,
`29`	`29`	`* the second parameter value is the request resource link.`
`30`	`30`	`*`
`31`	`31`	`* See https://pycurl.io/docs/latest/curl.html#set_option.`
`@@ -36,15 +36,16 @@ module Pycurl {`
`36`	`36`	`this.getArg(0).asCfgNode().(AttrNode).getName() = "URL"`
`37`	`37`	`}`
`38`	`38`
`39`		`- DataFlow::Node getUrlArg() { result in [this.getArg(1), this.getArgByName("value")] }`
`40`		`-`
`41`		`- override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }`
	`39`	`+ override DataFlow::Node getAUrlPart() {`
	`40`	`+ result in [this.getArg(1), this.getArgByName("value")]`
	`41`	`+ }`
`42`	`42`
`43`	`43`	`override string getFramework() { result = "pycurl.Curl" }`
`44`	`44`
`45`	`45`	`override predicate disablesCertificateValidation(`
`46`	`46`	`DataFlow::Node disablingNode, DataFlow::Node argumentOrigin`
`47`	`47`	`) {`
	`48`	`+ // TODO: Look into disabling certificate validation`
`48`	`49`	`none()`
`49`	`50`	`}`
`50`	`51`	`}`
Original file line number	Diff line number	Diff line change
`@@ -27,15 +27,14 @@ module Urllib {`
`27`	`27`	`this = API::moduleImport("urllib").getMember("request").getMember("Request").getACall()`
`28`	`28`	`}`
`29`	`29`
`30`		`- DataFlow::Node getUrlArg() { result in [this.getArg(0), this.getArgByName("url")] }`
`31`		`-`
`32`		`- override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }`
	`30`	`+ override DataFlow::Node getAUrlPart() { result in [this.getArg(0), this.getArgByName("url")] }`
`33`	`31`
`34`	`32`	`override string getFramework() { result = "urllib.request.Request" }`
`35`	`33`
`36`	`34`	`override predicate disablesCertificateValidation(`
`37`	`35`	`DataFlow::Node disablingNode, DataFlow::Node argumentOrigin`
`38`	`36`	`) {`
	`37`	`+ // TODO: Look into disabling certificate validation`
`39`	`38`	`none()`
`40`	`39`	`}`
`41`	`40`	`}`
`@@ -49,15 +48,14 @@ module Urllib {`
`49`	`48`	`this = API::moduleImport("urllib").getMember("request").getMember("urlopen").getACall()`
`50`	`49`	`}`
`51`	`50`
`52`		`- DataFlow::Node getUrlArg() { result in [this.getArg(0), this.getArgByName("url")] }`
`53`		`-`
`54`		`- override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }`
	`51`	`+ override DataFlow::Node getAUrlPart() { result in [this.getArg(0), this.getArgByName("url")] }`
`55`	`52`
`56`	`53`	`override string getFramework() { result = "urllib.request.urlopen" }`
`57`	`54`
`58`	`55`	`override predicate disablesCertificateValidation(`
`59`	`56`	`DataFlow::Node disablingNode, DataFlow::Node argumentOrigin`
`60`	`57`	`) {`
	`58`	`+ // TODO: Look into disabling certificate validation`
`61`	`59`	`none()`
`62`	`60`	`}`
`63`	`61`	`}`
Original file line number	Diff line number	Diff line change
`@@ -30,31 +30,29 @@ module Urllib3 {`
`30`	`30`	`instance().getMember(["request", "request_encode_url", "request_encode_body"]).getACall()`
`31`	`31`	`}`
`32`	`32`
`33`		`- DataFlow::Node getUrlArg() { result in [this.getArg(1), this.getArgByName("url")] }`
`34`		`-`
`35`		`- override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }`
	`33`	`+ override DataFlow::Node getAUrlPart() { result in [this.getArg(1), this.getArgByName("url")] }`
`36`	`34`
`37`	`35`	`override string getFramework() { result = "urllib3.PoolManager" }`
`38`	`36`
`39`	`37`	`override predicate disablesCertificateValidation(`
`40`	`38`	`DataFlow::Node disablingNode, DataFlow::Node argumentOrigin`
`41`	`39`	`) {`
	`40`	`+ // TODO: Look into disabling certificate validation`
`42`	`41`	`none()`
`43`	`42`	`}`
`44`	`43`	`}`
`45`	`44`
`46`	`45`	`private class UrlOpenCall extends HTTP::Client::Request::Range, DataFlow::CallCfgNode {`
`47`	`46`	`UrlOpenCall() { this = instance().getMember("urlopen").getACall() }`
`48`	`47`
`49`		`- DataFlow::Node getUrlArg() { result in [this.getArg(1), this.getArgByName("url")] }`
`50`		`-`
`51`		`- override DataFlow::Node getAUrlPart() { result = this.getUrlArg() }`
	`48`	`+ override DataFlow::Node getAUrlPart() { result in [this.getArg(1), this.getArgByName("url")] }`
`52`	`49`
`53`	`50`	`override string getFramework() { result = "urllib3.PoolManager" }`
`54`	`51`
`55`	`52`	`override predicate disablesCertificateValidation(`
`56`	`53`	`DataFlow::Node disablingNode, DataFlow::Node argumentOrigin`
`57`	`54`	`) {`
	`55`	`+ // TODO: Look into disabling certificate validation`
`58`	`56`	`none()`
`59`	`57`	`}`
`60`	`58`	`}`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,2 @@`
	`1`	`+import python`
	`2`	`+import experimental.meta.ConceptsTest`