github
diff --git a/‎java/ql/lib/semmle/code/java/security/ImproperValidationOfArrayConstructionLocalQuery.qll
Lines changed: 4 additions & 2 deletions b/‎java/ql/lib/semmle/code/java/security/ImproperValidationOfArrayConstructionLocalQuery.qll
Lines changed: 4 additions & 2 deletions
diff --git a/‎java/ql/lib/semmle/code/java/security/ImproperValidationOfArrayIndexLocalQuery.qll
Lines changed: 4 additions & 2 deletions b/‎java/ql/lib/semmle/code/java/security/ImproperValidationOfArrayIndexLocalQuery.qll
Lines changed: 4 additions & 2 deletions
diff --git a/‎java/ql/src/Security/CWE/CWE-129/ImproperValidationOfArrayConstructionLocal.qhelp
Lines changed: 0 additions & 5 deletions b/‎java/ql/src/Security/CWE/CWE-129/ImproperValidationOfArrayConstructionLocal.qhelp
Lines changed: 0 additions & 5 deletions
diff --git a/‎java/ql/src/Security/CWE/CWE-129/ImproperValidationOfArrayConstructionLocal.ql
Lines changed: 0 additions & 29 deletions b/‎java/ql/src/Security/CWE/CWE-129/ImproperValidationOfArrayConstructionLocal.ql
Lines changed: 0 additions & 29 deletions
diff --git a/‎java/ql/src/Security/CWE/CWE-129/ImproperValidationOfArrayIndexLocal.qhelp
Lines changed: 0 additions & 5 deletions b/‎java/ql/src/Security/CWE/CWE-129/ImproperValidationOfArrayIndexLocal.qhelp
Lines changed: 0 additions & 5 deletions
diff --git a/‎java/ql/src/Security/CWE/CWE-129/ImproperValidationOfArrayIndexLocal.ql
Lines changed: 0 additions & 27 deletions b/‎java/ql/src/Security/CWE/CWE-129/ImproperValidationOfArrayIndexLocal.ql
Lines changed: 0 additions & 27 deletions
diff --git a/‎java/ql/test/query-tests/security/CWE-129/semmle/tests/ImproperValidationOfArrayConstructionLocal.expected renamed to ‎java/ql/test/query-tests/security/CWE-129/semmle/tests/ImproperValidationOfArrayConstruction.expected b/‎java/ql/test/query-tests/security/CWE-129/semmle/tests/ImproperValidationOfArrayConstructionLocal.expected renamed to ‎java/ql/test/query-tests/security/CWE-129/semmle/tests/ImproperValidationOfArrayConstruction.expected
diff --git a/‎java/ql/test/query-tests/security/CWE-129/semmle/tests/ImproperValidationOfArrayConstruction.ext.yml
Lines changed: 6 additions & 0 deletions b/‎java/ql/test/query-tests/security/CWE-129/semmle/tests/ImproperValidationOfArrayConstruction.ext.yml
Lines changed: 6 additions & 0 deletions
diff --git a/‎java/ql/test/query-tests/security/CWE-129/semmle/tests/ImproperValidationOfArrayConstruction.qlref
Lines changed: 1 addition & 0 deletions b/‎java/ql/test/query-tests/security/CWE-129/semmle/tests/ImproperValidationOfArrayConstruction.qlref
Lines changed: 1 addition & 0 deletions
diff --git a/‎java/ql/test/query-tests/security/CWE-129/semmle/tests/ImproperValidationOfArrayConstructionLocal.qlref
Lines changed: 0 additions & 1 deletion b/‎java/ql/test/query-tests/security/CWE-129/semmle/tests/ImproperValidationOfArrayConstructionLocal.qlref
Lines changed: 0 additions & 1 deletion
@@ -7,7 +7,7 @@ private import semmle.code.java.dataflow.FlowSources
 /**
  * A taint-tracking configuration to reason about improper validation of local user-provided size used for array construction.
  */
-module ImproperValidationOfArrayConstructionLocalConfig implements DataFlow::ConfigSig {
+deprecated module ImproperValidationOfArrayConstructionLocalConfig implements DataFlow::ConfigSig {
   predicate isSource(DataFlow::Node source) { source instanceof LocalUserInput }
 
   predicate isSink(DataFlow::Node sink) {
@@ -16,7 +16,9 @@ module ImproperValidationOfArrayConstructionLocalConfig implements DataFlow::Con
 }
 
 /**
+ * DEPRECATED: Use `ImproperValidationOfArrayConstructionFlow` instead and configure threat model sources to include `local`.
+ *
  * Taint-tracking flow for improper validation of local user-provided size used for array construction.
  */
-module ImproperValidationOfArrayConstructionLocalFlow =
+deprecated module ImproperValidationOfArrayConstructionLocalFlow =
   TaintTracking::Global<ImproperValidationOfArrayConstructionLocalConfig>;
@@ -7,7 +7,7 @@ private import semmle.code.java.dataflow.FlowSources
 /**
  * A taint-tracking configuration to reason about improper validation of local user-provided array index.
  */
-module ImproperValidationOfArrayIndexLocalConfig implements DataFlow::ConfigSig {
+deprecated module ImproperValidationOfArrayIndexLocalConfig implements DataFlow::ConfigSig {
   predicate isSource(DataFlow::Node source) { source instanceof LocalUserInput }
 
   predicate isSink(DataFlow::Node sink) {
@@ -20,7 +20,9 @@ module ImproperValidationOfArrayIndexLocalConfig implements DataFlow::ConfigSig
 }
 
 /**
+ * DEPRECATED: Use `ImproperValidationOfArrayIndexFlow` instead and configure threat model sources to include `local`.
+ *
  * Taint-tracking flow for improper validation of local user-provided array index.
  */
-module ImproperValidationOfArrayIndexLocalFlow =
+deprecated module ImproperValidationOfArrayIndexLocalFlow =
   TaintTracking::Global<ImproperValidationOfArrayIndexLocalConfig>;
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/threat-models
+      extensible: threatModelConfiguration
+    data:
+      - ["local", true, 0]
@@ -0,0 +1 @@
+Security/CWE/CWE-129/ImproperValidationOfArrayConstruction.ql
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1 @@`
	`1`	`+Security/CWE/CWE-129/ImproperValidationOfArrayConstruction.ql`