File tree Expand file tree Collapse file tree 1 file changed +3
-0
lines changed
ruby/ql/src/queries/meta/internal Expand file tree Collapse file tree 1 file changed +3
-0
lines changed Original file line number Diff line number Diff line change @@ -8,6 +8,7 @@ private import codeql.ruby.security.PathInjectionCustomizations
88private import codeql.ruby.security.ServerSideRequestForgeryCustomizations
99private import codeql.ruby.security.UnsafeDeserializationCustomizations
1010private import codeql.ruby.security.UrlRedirectCustomizations
11+ private import codeql.ruby.security.SqlInjectionCustomizations
1112
1213class RelevantFile extends File {
1314 RelevantFile ( ) { not getRelativePath ( ) .regexpMatch ( ".*/test(case)?s?/.*" ) }
@@ -34,6 +35,8 @@ DataFlow::Node relevantTaintSink(string kind) {
3435 kind = "UnsafeDeserialization" and result instanceof UnsafeDeserialization:: Sink
3536 or
3637 kind = "UrlRedirect" and result instanceof UrlRedirect:: Sink
38+ or
39+ kind = "SqlInjection" and result instanceof SqlInjection:: Sink
3740 ) and
3841 // the sink is not a string literal
3942 not exists ( Ast:: StringLiteral str |
You can’t perform that action at this time.
0 commit comments