run format document

Author: boveus

ruby/ql/src/experimental/cwe-208/UnsafeHmacComparison.ql

@@ -2,7 +2,6 @@
  * @name Unsafe HMAC Comparison
  * @description An HMAC is being compared using the equality operator.  This may be vulnerable to a cryptographic timing attack
  *              because the equality operation does not occur in constant time."
-
  * @kind path-problem
  * @problem.severity error
  * @security-severity 6.0
@@ -12,7 +11,7 @@
  *       external/cwe/cwe-208
  */
 
-
+private import codeql.ruby.AST
 private import codeql.ruby.DataFlow
 import codeql.ruby.ApiGraphs
 import ruby
@@ -29,19 +28,17 @@ private class OpenSslHmacSource extends DataFlow::Node {
 
 private module UnsafeHmacComparison {
   private module Config implements DataFlow::ConfigSig {
-    predicate isSource(DataFlow::Node source) {
-      source instanceof OpenSslHmacSource
-    }
+    predicate isSource(DataFlow::Node source) { source instanceof OpenSslHmacSource }
 
-  // Holds if a given sink is an Equality Operation (== or !=)
-  predicate isSink(DataFlow::Node sink) {
-    any(EqualityOperation eqOp).getAnOperand() = sink.asExpr().getExpr()
-  }
+    // Holds if a given sink is an Equality Operation (== or !=)
+    predicate isSink(DataFlow::Node sink) {
+      any(EqualityOperation eqOp).getAnOperand() = sink.asExpr().getExpr()
+    }
   }
 
   import DataFlow::Global<Config>
 }
 
 from UnsafeHmacComparison::PathNode source, UnsafeHmacComparison::PathNode sink
 where UnsafeHmacComparison::flowPath(source, sink)
-select sink.getNode(), source, sink, "This comparison is potentially vulnerable to a timing attack."
+select sink.getNode(), source, sink, "This comparison is potentially vulnerable to a timing attack."