Swift: More modern (?) phrasing.

geoffw0 · geoffw0 · commit 24c6bb4c52d1 · 2022-10-14T14:41:02.000+01:00
diff --git a/swift/ql/src/queries/Security/CWE-089/SqlInjection.ql b/swift/ql/src/queries/Security/CWE-089/SqlInjection.ql
@@ -1,6 +1,6 @@
 /**
- * @name SQL query built from user-controlled sources
- * @description Building a SQL query from user-controlled sources is vulnerable to insertion of malicious SQL code by the user.
+ * @name Database query built from user-controlled sources
+ * @description Building a database query from user-controlled sources is vulnerable to insertion of malicious code by the user.
  * @kind path-problem
  * @problem.severity error
  * @security-severity 8.8
@@ -79,5 +79,5 @@ class SqlInjectionConfig extends TaintTracking::Configuration {
 
 from SqlInjectionConfig config, DataFlow::PathNode sourceNode, DataFlow::PathNode sinkNode
 where config.hasFlowPath(sourceNode, sinkNode)
-select sinkNode.getNode(), sourceNode, sinkNode, "This SQL query depends on $@.",
+select sinkNode.getNode(), sourceNode, sinkNode, "This query depends on $@.",
   sourceNode.getNode(), "a user-provided value"
diff --git a/swift/ql/test/query-tests/Security/CWE-089/SqlInjection.expected b/swift/ql/test/query-tests/Security/CWE-089/SqlInjection.expected
@@ -33,18 +33,18 @@ nodes
 | SQLite.swift:132:16:132:16 | remoteString | semmle.label | remoteString |
 subpaths
 #select
-| SQLite.swift:73:17:73:17 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:73:17:73:17 | unsafeQuery1 | This SQL query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
-| SQLite.swift:74:17:74:17 | unsafeQuery2 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:74:17:74:17 | unsafeQuery2 | This SQL query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
-| SQLite.swift:75:17:75:17 | unsafeQuery3 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:75:17:75:17 | unsafeQuery3 | This SQL query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
-| SQLite.swift:83:29:83:29 | unsafeQuery3 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:83:29:83:29 | unsafeQuery3 | This SQL query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
-| SQLite.swift:95:28:95:28 | remoteString | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:95:28:95:28 | remoteString | This SQL query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
-| SQLite.swift:100:29:100:29 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:100:29:100:29 | unsafeQuery1 | This SQL query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
-| SQLite.swift:103:29:103:29 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:103:29:103:29 | unsafeQuery1 | This SQL query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
-| SQLite.swift:106:29:106:29 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:106:29:106:29 | unsafeQuery1 | This SQL query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
-| SQLite.swift:109:9:109:9 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:109:9:109:9 | unsafeQuery1 | This SQL query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
-| SQLite.swift:111:9:111:9 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:111:9:111:9 | unsafeQuery1 | This SQL query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
-| SQLite.swift:113:9:113:9 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:113:9:113:9 | unsafeQuery1 | This SQL query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
-| SQLite.swift:115:12:115:12 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:115:12:115:12 | unsafeQuery1 | This SQL query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
-| SQLite.swift:117:12:117:12 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:117:12:117:12 | unsafeQuery1 | This SQL query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
-| SQLite.swift:119:12:119:12 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:119:12:119:12 | unsafeQuery1 | This SQL query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
-| SQLite.swift:132:16:132:16 | remoteString | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:132:16:132:16 | remoteString | This SQL query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
+| SQLite.swift:73:17:73:17 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:73:17:73:17 | unsafeQuery1 | This query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
+| SQLite.swift:74:17:74:17 | unsafeQuery2 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:74:17:74:17 | unsafeQuery2 | This query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
+| SQLite.swift:75:17:75:17 | unsafeQuery3 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:75:17:75:17 | unsafeQuery3 | This query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
+| SQLite.swift:83:29:83:29 | unsafeQuery3 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:83:29:83:29 | unsafeQuery3 | This query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
+| SQLite.swift:95:28:95:28 | remoteString | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:95:28:95:28 | remoteString | This query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
+| SQLite.swift:100:29:100:29 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:100:29:100:29 | unsafeQuery1 | This query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
+| SQLite.swift:103:29:103:29 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:103:29:103:29 | unsafeQuery1 | This query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
+| SQLite.swift:106:29:106:29 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:106:29:106:29 | unsafeQuery1 | This query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
+| SQLite.swift:109:9:109:9 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:109:9:109:9 | unsafeQuery1 | This query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
+| SQLite.swift:111:9:111:9 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:111:9:111:9 | unsafeQuery1 | This query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
+| SQLite.swift:113:9:113:9 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:113:9:113:9 | unsafeQuery1 | This query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
+| SQLite.swift:115:12:115:12 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:115:12:115:12 | unsafeQuery1 | This query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
+| SQLite.swift:117:12:117:12 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:117:12:117:12 | unsafeQuery1 | This query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
+| SQLite.swift:119:12:119:12 | unsafeQuery1 | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:119:12:119:12 | unsafeQuery1 | This query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
+| SQLite.swift:132:16:132:16 | remoteString | SQLite.swift:62:26:62:80 | call to init(contentsOf:) :  | SQLite.swift:132:16:132:16 | remoteString | This query depends on $@. | SQLite.swift:62:26:62:80 | call to init(contentsOf:) | a user-provided value |
