Skip to content

Commit 3e6bd5f

Browse files
d10cd10c
committed
Go: CommandInjection
1 parent 7d67719 commit 3e6bd5f

File tree

1 file changed

+2
-22
lines changed

1 file changed

+2
-22
lines changed

go/ql/lib/semmle/go/security/CommandInjection.qll

Lines changed: 2 additions & 22 deletions
Original file line numberDiff line numberDiff line change
@@ -25,17 +25,7 @@ module CommandInjection {
2525

2626
predicate isBarrier(DataFlow::Node node) { node instanceof Sanitizer }
2727

28-
predicate observeDiffInformedIncrementalMode() {
29-
any() // TODO: Make sure that the location overrides match the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 26 (/Users/d10c/src/semmle-code/ql/go/ql/src/Security/CWE-078/CommandInjection.ql@28:8:28:21), Column 5 does not select a source or sink originating from the flow call on line 26 (/Users/d10c/src/semmle-code/ql/go/ql/src/Security/CWE-078/CommandInjection.ql@28:71:28:86)
30-
}
31-
32-
Location getASelectedSourceLocation(DataFlow::Node source) {
33-
none() // TODO: Make sure that this source location matches the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 26 (/Users/d10c/src/semmle-code/ql/go/ql/src/Security/CWE-078/CommandInjection.ql@28:8:28:21), Column 5 does not select a source or sink originating from the flow call on line 26 (/Users/d10c/src/semmle-code/ql/go/ql/src/Security/CWE-078/CommandInjection.ql@28:71:28:86)
34-
}
35-
36-
Location getASelectedSinkLocation(DataFlow::Node sink) {
37-
none() // TODO: Make sure that this sink location matches the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 26 (/Users/d10c/src/semmle-code/ql/go/ql/src/Security/CWE-078/CommandInjection.ql@28:8:28:21), Column 5 does not select a source or sink originating from the flow call on line 26 (/Users/d10c/src/semmle-code/ql/go/ql/src/Security/CWE-078/CommandInjection.ql@28:71:28:86)
38-
}
28+
predicate observeDiffInformedIncrementalMode() { any() }
3929
}
4030

4131
/**
@@ -93,17 +83,7 @@ module CommandInjection {
9383
node = any(ArgumentArrayWithDoubleDash array).getASanitizedElement()
9484
}
9585

96-
predicate observeDiffInformedIncrementalMode() {
97-
any() // TODO: Make sure that the location overrides match the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 27 (/Users/d10c/src/semmle-code/ql/go/ql/src/Security/CWE-078/CommandInjection.ql@28:8:28:21), Column 5 does not select a source or sink originating from the flow call on line 27 (/Users/d10c/src/semmle-code/ql/go/ql/src/Security/CWE-078/CommandInjection.ql@28:71:28:86)
98-
}
99-
100-
Location getASelectedSourceLocation(DataFlow::Node source) {
101-
none() // TODO: Make sure that this source location matches the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 27 (/Users/d10c/src/semmle-code/ql/go/ql/src/Security/CWE-078/CommandInjection.ql@28:8:28:21), Column 5 does not select a source or sink originating from the flow call on line 27 (/Users/d10c/src/semmle-code/ql/go/ql/src/Security/CWE-078/CommandInjection.ql@28:71:28:86)
102-
}
103-
104-
Location getASelectedSinkLocation(DataFlow::Node sink) {
105-
none() // TODO: Make sure that this sink location matches the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 27 (/Users/d10c/src/semmle-code/ql/go/ql/src/Security/CWE-078/CommandInjection.ql@28:8:28:21), Column 5 does not select a source or sink originating from the flow call on line 27 (/Users/d10c/src/semmle-code/ql/go/ql/src/Security/CWE-078/CommandInjection.ql@28:71:28:86)
106-
}
86+
predicate observeDiffInformedIncrementalMode() { any() }
10787
}
10888

10989
/**

0 commit comments

Comments
 (0)