github
diff --git a/‎cpp/ql/src/Critical/OverflowDestination.ql
Lines changed: 4 additions & 0 deletions b/‎cpp/ql/src/Critical/OverflowDestination.ql
Lines changed: 4 additions & 0 deletions
diff --git a/‎cpp/ql/src/Likely Bugs/Format/NonConstantFormat.ql
Lines changed: 4 additions & 0 deletions b/‎cpp/ql/src/Likely Bugs/Format/NonConstantFormat.ql
Lines changed: 4 additions & 0 deletions
diff --git a/‎cpp/ql/src/Likely Bugs/Leap Year/LeapYear.qll
Lines changed: 14 additions & 0 deletions b/‎cpp/ql/src/Likely Bugs/Leap Year/LeapYear.qll
Lines changed: 14 additions & 0 deletions
diff --git a/‎cpp/ql/src/Security/CWE/CWE-020/ExternalAPIsSpecific.qll
Lines changed: 4 additions & 0 deletions b/‎cpp/ql/src/Security/CWE/CWE-020/ExternalAPIsSpecific.qll
Lines changed: 4 additions & 0 deletions
diff --git a/‎cpp/ql/src/Security/CWE/CWE-020/ir/ExternalAPIsSpecific.qll
Lines changed: 4 additions & 0 deletions b/‎cpp/ql/src/Security/CWE/CWE-020/ir/ExternalAPIsSpecific.qll
Lines changed: 4 additions & 0 deletions
diff --git a/‎cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
Lines changed: 4 additions & 0 deletions b/‎cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
Lines changed: 4 additions & 0 deletions
diff --git a/‎cpp/ql/src/Security/CWE/CWE-078/ExecTainted.ql
Lines changed: 4 additions & 0 deletions b/‎cpp/ql/src/Security/CWE/CWE-078/ExecTainted.ql
Lines changed: 4 additions & 0 deletions
diff --git a/‎cpp/ql/src/Security/CWE/CWE-079/CgiXss.ql
Lines changed: 4 additions & 0 deletions b/‎cpp/ql/src/Security/CWE/CWE-079/CgiXss.ql
Lines changed: 4 additions & 0 deletions
diff --git a/‎cpp/ql/src/Security/CWE/CWE-089/SqlTainted.ql
Lines changed: 4 additions & 0 deletions b/‎cpp/ql/src/Security/CWE/CWE-089/SqlTainted.ql
Lines changed: 4 additions & 0 deletions
diff --git a/‎cpp/ql/src/Security/CWE/CWE-119/OverrunWriteProductFlow.ql
Lines changed: 8 additions & 0 deletions b/‎cpp/ql/src/Security/CWE/CWE-119/OverrunWriteProductFlow.ql
Lines changed: 8 additions & 0 deletions
@@ -82,6 +82,10 @@ module OverflowDestinationConfig implements DataFlow::ConfigSig {
       nodeIsBarrierEqualityCandidate(node, access, checkedVar)
     )
   }
+
+  predicate observeDiffInformedIncrementalMode() {
+    any() // TODO: Make sure that the location overrides match the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 91 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Critical/OverflowDestination.ql@93:8:93:9)
+  }
 }
 
 module OverflowDestination = TaintTracking::Global<OverflowDestinationConfig>;
 
@@ -168,6 +168,10 @@ module NonConstFlowConfig implements DataFlow::ConfigSig {
       cannotContainString(t)
     )
   }
+
+  predicate observeDiffInformedIncrementalMode() {
+    any() // TODO: Make sure that the location overrides match the query's select clause: Column 5 does not select a source or sink originating from the flow call on line 181 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Format/NonConstantFormat.ql@184:53:184:56)
+  }
 }
 
 module NonConstFlow = TaintTracking::Global<NonConstFlowConfig>;
 
@@ -215,6 +215,18 @@ private module LeapYearCheckConfig implements DataFlow::ConfigSig {
   predicate isSink(DataFlow::Node sink) {
     exists(ChecksForLeapYearFunctionCall fc | sink.asExpr() = fc.getAnArgument())
   }
+
+  predicate observeDiffInformedIncrementalMode() {
+    any() // TODO: Make sure that the location overrides match the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 34 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@57:8:57:10), Column 1 does not select a source or sink originating from the flow call on line 41 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@57:8:57:10), Column 3 does not select a source or sink originating from the flow call on line 34 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:3:59:17), Column 3 does not select a source or sink originating from the flow call on line 41 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:3:59:17), Column 5 does not select a source or sink originating from the flow call on line 34 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:48:59:50), Column 5 does not select a source or sink originating from the flow call on line 41 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:48:59:50)
+  }
+
+  Location getASelectedSourceLocation(DataFlow::Node source) {
+    none() // TODO: Make sure that this source location matches the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 34 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@57:8:57:10), Column 1 does not select a source or sink originating from the flow call on line 41 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@57:8:57:10), Column 3 does not select a source or sink originating from the flow call on line 34 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:3:59:17), Column 3 does not select a source or sink originating from the flow call on line 41 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:3:59:17), Column 5 does not select a source or sink originating from the flow call on line 34 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:48:59:50), Column 5 does not select a source or sink originating from the flow call on line 41 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:48:59:50)
+  }
+
+  Location getASelectedSinkLocation(DataFlow::Node sink) {
+    none() // TODO: Make sure that this sink location matches the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 34 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@57:8:57:10), Column 1 does not select a source or sink originating from the flow call on line 41 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@57:8:57:10), Column 3 does not select a source or sink originating from the flow call on line 34 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:3:59:17), Column 3 does not select a source or sink originating from the flow call on line 41 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:3:59:17), Column 5 does not select a source or sink originating from the flow call on line 34 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:48:59:50), Column 5 does not select a source or sink originating from the flow call on line 41 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:48:59:50)
+  }
 }
 
 module LeapYearCheckFlow = DataFlow::Global<LeapYearCheckConfig>;
@@ -285,6 +297,8 @@ private module PossibleYearArithmeticOperationCheckConfig implements DataFlow::C
       aexpr.getLValue() = fa
     )
   }
+
+  predicate observeDiffInformedIncrementalMode() { any() }
 }
 
 module PossibleYearArithmeticOperationCheckFlow =
 
@@ -51,6 +51,10 @@ private module UntrustedDataToExternalApiConfig implements DataFlow::ConfigSig {
   }
 
   predicate isSink(DataFlow::Node sink) { sink instanceof ExternalApiDataNode }
+
+  predicate observeDiffInformedIncrementalMode() {
+    any() // TODO: Make sure that the location overrides match the query's select clause: Flow call outside 'select' clause (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-020/ExternalAPIs.qll@13:36:13:80), Flow call outside 'select' clause (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-020/ExternalAPIs.qll@16:43:16:92)
+  }
 }
 
 module UntrustedDataToExternalApiFlow = TaintTracking::Global<UntrustedDataToExternalApiConfig>;
@@ -46,6 +46,10 @@ private module UntrustedDataToExternalApiConfig implements DataFlow::ConfigSig {
   predicate isSource(DataFlow::Node source) { source instanceof RemoteFlowSource }
 
   predicate isSink(DataFlow::Node sink) { sink instanceof ExternalApiDataNode }
+
+  predicate observeDiffInformedIncrementalMode() {
+    any() // TODO: Make sure that the location overrides match the query's select clause: Flow call outside 'select' clause (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-020/ir/ExternalAPIs.qll@13:36:13:80), Flow call outside 'select' clause (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-020/ir/ExternalAPIs.qll@16:43:16:92)
+  }
 }
 
 module UntrustedDataToExternalApiFlow = TaintTracking::Global<UntrustedDataToExternalApiConfig>;
@@ -93,6 +93,10 @@ module TaintedPathConfig implements DataFlow::ConfigSig {
     // make sinks barriers so that we only report the closest instance
     isSink(node)
   }
+
+  predicate observeDiffInformedIncrementalMode() {
+    any() // TODO: Make sure that the location overrides match the query's select clause: Column 1 selects sink.asIndirectArgument (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql@108:8:108:17)
+  }
 }
 
 module TaintedPath = TaintTracking::Global<TaintedPathConfig>;
 
@@ -150,6 +150,10 @@ module ExecTaintConfig implements DataFlow::StateConfigSig {
   predicate isBarrierOut(DataFlow::Node node) {
     isSink(node, _) // Prevent duplicates along a call chain, since `shellCommand` will include wrappers
   }
+
+  predicate observeDiffInformedIncrementalMode() {
+    any() // TODO: Make sure that the location overrides match the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 161 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-078/ExecTainted.ql@165:8:165:14), Column 7 does not select a source or sink originating from the flow call on line 161 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-078/ExecTainted.ql@167:71:167:82)
+  }
 }
 
 module ExecTaint = TaintTracking::GlobalWithState<ExecTaintConfig>;
 
@@ -39,6 +39,10 @@ module Config implements DataFlow::ConfigSig {
     or
     node.asCertainDefinition().getUnspecifiedType() instanceof ArithmeticType
   }
+
+  predicate observeDiffInformedIncrementalMode() {
+    any() // TODO: Make sure that the location overrides match the query's select clause: Column 5 selects source.asIndirectExpr (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-079/CgiXss.ql@51:3:51:7)
+  }
 }
 
 module Flow = TaintTracking::Global<Config>;
 
@@ -54,6 +54,10 @@ module SqlTaintedConfig implements DataFlow::ConfigSig {
       sql.barrierSqlArgument(input, _)
     )
   }
+
+  predicate observeDiffInformedIncrementalMode() {
+    any() // TODO: Make sure that the location overrides match the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 74 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-089/SqlTainted.ql@77:8:77:17)
+  }
 }
 
 module SqlTainted = TaintTracking::Global<SqlTaintedConfig>;
 
@@ -223,6 +223,14 @@ module StringSizeConfig implements ProductFlow::StateConfigSig {
       state1 = state2 + delta
     )
   }
+
+  predicate observeDiffInformedIncrementalMode() {
+    any() // TODO: Make sure that the location overrides match the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 263 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-119/OverrunWriteProductFlow.ql@269:8:269:41), Column 5 does not select a source or sink originating from the flow call on line 263 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-119/OverrunWriteProductFlow.ql@270:58:270:63), Flow call outside 'select' clause (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-119/OverrunWriteProductFlow.ql@249:5:249:76)
+  }
+
+  Location getASelectedSinkLocation(DataFlow::Node sink) {
+    none() // TODO: Make sure that this sink location matches the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 263 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-119/OverrunWriteProductFlow.ql@269:8:269:41), Column 5 does not select a source or sink originating from the flow call on line 263 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-119/OverrunWriteProductFlow.ql@270:58:270:63), Flow call outside 'select' clause (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-119/OverrunWriteProductFlow.ql@249:5:249:76)
+  }
 }
 
 module StringSizeFlow = ProductFlow::GlobalWithState<StringSizeConfig>;
Original file line number	Diff line number	Diff line change
`@@ -82,6 +82,10 @@ module OverflowDestinationConfig implements DataFlow::ConfigSig {`
`82`	`82`	`nodeIsBarrierEqualityCandidate(node, access, checkedVar)`
`83`	`83`	`)`
`84`	`84`	`}`
	`85`	`+`
	`86`	`+ predicate observeDiffInformedIncrementalMode() {`
	`87`	`+ any() // TODO: Make sure that the location overrides match the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 91 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Critical/OverflowDestination.ql@93:8:93:9)`
	`88`	`+ }`
`85`	`89`	`}`
`86`	`90`
`87`	`91`	`module OverflowDestination = TaintTracking::Global<OverflowDestinationConfig>;`
Original file line number	Diff line number	Diff line change
`@@ -168,6 +168,10 @@ module NonConstFlowConfig implements DataFlow::ConfigSig {`
`168`	`168`	`cannotContainString(t)`
`169`	`169`	`)`
`170`	`170`	`}`
	`171`	`+`
	`172`	`+ predicate observeDiffInformedIncrementalMode() {`
	`173`	`+ any() // TODO: Make sure that the location overrides match the query's select clause: Column 5 does not select a source or sink originating from the flow call on line 181 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Format/NonConstantFormat.ql@184:53:184:56)`
	`174`	`+ }`
`171`	`175`	`}`
`172`	`176`
`173`	`177`	`module NonConstFlow = TaintTracking::Global<NonConstFlowConfig>;`
Original file line number	Diff line number	Diff line change
`@@ -215,6 +215,18 @@ private module LeapYearCheckConfig implements DataFlow::ConfigSig {`
`215`	`215`	`predicate isSink(DataFlow::Node sink) {`
`216`	`216`	`exists(ChecksForLeapYearFunctionCall fc \| sink.asExpr() = fc.getAnArgument())`
`217`	`217`	`}`
	`218`	`+`
	`219`	`+ predicate observeDiffInformedIncrementalMode() {`
	`220`	+ any() // TODO: Make sure that the location overrides match the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 34 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@57:8:57:10), Column 1 does not select a source or sink originating from the flow call on line 41 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@57:8:57:10), Column 3 does not select a source or sink originating from the flow call on line 34 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:3:59:17), Column 3 does not select a source or sink originating from the flow call on line 41 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:3:59:17), Column 5 does not select a source or sink originating from the flow call on line 34 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:48:59:50), Column 5 does not select a source or sink originating from the flow call on line 41 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:48:59:50)
	`221`	`+ }`
	`222`	`+`
	`223`	`+ Location getASelectedSourceLocation(DataFlow::Node source) {`
	`224`	+ none() // TODO: Make sure that this source location matches the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 34 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@57:8:57:10), Column 1 does not select a source or sink originating from the flow call on line 41 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@57:8:57:10), Column 3 does not select a source or sink originating from the flow call on line 34 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:3:59:17), Column 3 does not select a source or sink originating from the flow call on line 41 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:3:59:17), Column 5 does not select a source or sink originating from the flow call on line 34 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:48:59:50), Column 5 does not select a source or sink originating from the flow call on line 41 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:48:59:50)
	`225`	`+ }`
	`226`	`+`
	`227`	`+ Location getASelectedSinkLocation(DataFlow::Node sink) {`
	`228`	+ none() // TODO: Make sure that this sink location matches the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 34 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@57:8:57:10), Column 1 does not select a source or sink originating from the flow call on line 41 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@57:8:57:10), Column 3 does not select a source or sink originating from the flow call on line 34 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:3:59:17), Column 3 does not select a source or sink originating from the flow call on line 41 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:3:59:17), Column 5 does not select a source or sink originating from the flow call on line 34 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:48:59:50), Column 5 does not select a source or sink originating from the flow call on line 41 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Likely Bugs/Leap Year/UncheckedLeapYearAfterYearModification.ql@59:48:59:50)
	`229`	`+ }`
`218`	`230`	`}`
`219`	`231`
`220`	`232`	`module LeapYearCheckFlow = DataFlow::Global<LeapYearCheckConfig>;`
`@@ -285,6 +297,8 @@ private module PossibleYearArithmeticOperationCheckConfig implements DataFlow::C`
`285`	`297`	`aexpr.getLValue() = fa`
`286`	`298`	`)`
`287`	`299`	`}`
	`300`	`+`
	`301`	`+ predicate observeDiffInformedIncrementalMode() { any() }`
`288`	`302`	`}`
`289`	`303`
`290`	`304`	`module PossibleYearArithmeticOperationCheckFlow =`
Original file line number	Diff line number	Diff line change
`@@ -51,6 +51,10 @@ private module UntrustedDataToExternalApiConfig implements DataFlow::ConfigSig {`
`51`	`51`	`}`
`52`	`52`
`53`	`53`	`predicate isSink(DataFlow::Node sink) { sink instanceof ExternalApiDataNode }`
	`54`	`+`
	`55`	`+ predicate observeDiffInformedIncrementalMode() {`
	`56`	`+ any() // TODO: Make sure that the location overrides match the query's select clause: Flow call outside 'select' clause (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-020/ExternalAPIs.qll@13:36:13:80), Flow call outside 'select' clause (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-020/ExternalAPIs.qll@16:43:16:92)`
	`57`	`+ }`
`54`	`58`	`}`
`55`	`59`
`56`	`60`	`module UntrustedDataToExternalApiFlow = TaintTracking::Global<UntrustedDataToExternalApiConfig>;`
Original file line number	Diff line number	Diff line change
`@@ -46,6 +46,10 @@ private module UntrustedDataToExternalApiConfig implements DataFlow::ConfigSig {`
`46`	`46`	`predicate isSource(DataFlow::Node source) { source instanceof RemoteFlowSource }`
`47`	`47`
`48`	`48`	`predicate isSink(DataFlow::Node sink) { sink instanceof ExternalApiDataNode }`
	`49`	`+`
	`50`	`+ predicate observeDiffInformedIncrementalMode() {`
	`51`	`+ any() // TODO: Make sure that the location overrides match the query's select clause: Flow call outside 'select' clause (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-020/ir/ExternalAPIs.qll@13:36:13:80), Flow call outside 'select' clause (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-020/ir/ExternalAPIs.qll@16:43:16:92)`
	`52`	`+ }`
`49`	`53`	`}`
`50`	`54`
`51`	`55`	`module UntrustedDataToExternalApiFlow = TaintTracking::Global<UntrustedDataToExternalApiConfig>;`
Original file line number	Diff line number	Diff line change
`@@ -93,6 +93,10 @@ module TaintedPathConfig implements DataFlow::ConfigSig {`
`93`	`93`	`// make sinks barriers so that we only report the closest instance`
`94`	`94`	`isSink(node)`
`95`	`95`	`}`
	`96`	`+`
	`97`	`+ predicate observeDiffInformedIncrementalMode() {`
	`98`	`+ any() // TODO: Make sure that the location overrides match the query's select clause: Column 1 selects sink.asIndirectArgument (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql@108:8:108:17)`
	`99`	`+ }`
`96`	`100`	`}`
`97`	`101`
`98`	`102`	`module TaintedPath = TaintTracking::Global<TaintedPathConfig>;`
Original file line number	Diff line number	Diff line change
`@@ -150,6 +150,10 @@ module ExecTaintConfig implements DataFlow::StateConfigSig {`
`150`	`150`	`predicate isBarrierOut(DataFlow::Node node) {`
`151`	`151`	isSink(node, _) // Prevent duplicates along a call chain, since `shellCommand` will include wrappers
`152`	`152`	`}`
	`153`	`+`
	`154`	`+ predicate observeDiffInformedIncrementalMode() {`
	`155`	`+ any() // TODO: Make sure that the location overrides match the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 161 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-078/ExecTainted.ql@165:8:165:14), Column 7 does not select a source or sink originating from the flow call on line 161 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-078/ExecTainted.ql@167:71:167:82)`
	`156`	`+ }`
`153`	`157`	`}`
`154`	`158`
`155`	`159`	`module ExecTaint = TaintTracking::GlobalWithState<ExecTaintConfig>;`
Original file line number	Diff line number	Diff line change
`@@ -39,6 +39,10 @@ module Config implements DataFlow::ConfigSig {`
`39`	`39`	`or`
`40`	`40`	`node.asCertainDefinition().getUnspecifiedType() instanceof ArithmeticType`
`41`	`41`	`}`
	`42`	`+`
	`43`	`+ predicate observeDiffInformedIncrementalMode() {`
	`44`	`+ any() // TODO: Make sure that the location overrides match the query's select clause: Column 5 selects source.asIndirectExpr (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-079/CgiXss.ql@51:3:51:7)`
	`45`	`+ }`
`42`	`46`	`}`
`43`	`47`
`44`	`48`	`module Flow = TaintTracking::Global<Config>;`
Original file line number	Diff line number	Diff line change
`@@ -54,6 +54,10 @@ module SqlTaintedConfig implements DataFlow::ConfigSig {`
`54`	`54`	`sql.barrierSqlArgument(input, _)`
`55`	`55`	`)`
`56`	`56`	`}`
	`57`	`+`
	`58`	`+ predicate observeDiffInformedIncrementalMode() {`
	`59`	`+ any() // TODO: Make sure that the location overrides match the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 74 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-089/SqlTainted.ql@77:8:77:17)`
	`60`	`+ }`
`57`	`61`	`}`
`58`	`62`
`59`	`63`	`module SqlTainted = TaintTracking::Global<SqlTaintedConfig>;`
Original file line number	Diff line number	Diff line change
`@@ -223,6 +223,14 @@ module StringSizeConfig implements ProductFlow::StateConfigSig {`
`223`	`223`	`state1 = state2 + delta`
`224`	`224`	`)`
`225`	`225`	`}`
	`226`	`+`
	`227`	`+ predicate observeDiffInformedIncrementalMode() {`
	`228`	+ any() // TODO: Make sure that the location overrides match the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 263 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-119/OverrunWriteProductFlow.ql@269:8:269:41), Column 5 does not select a source or sink originating from the flow call on line 263 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-119/OverrunWriteProductFlow.ql@270:58:270:63), Flow call outside 'select' clause (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-119/OverrunWriteProductFlow.ql@249:5:249:76)
	`229`	`+ }`
	`230`	`+`
	`231`	`+ Location getASelectedSinkLocation(DataFlow::Node sink) {`
	`232`	+ none() // TODO: Make sure that this sink location matches the query's select clause: Column 1 does not select a source or sink originating from the flow call on line 263 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-119/OverrunWriteProductFlow.ql@269:8:269:41), Column 5 does not select a source or sink originating from the flow call on line 263 (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-119/OverrunWriteProductFlow.ql@270:58:270:63), Flow call outside 'select' clause (/Users/d10c/src/semmle-code/ql/cpp/ql/src/Security/CWE/CWE-119/OverrunWriteProductFlow.ql@249:5:249:76)
	`233`	`+ }`
`226`	`234`	`}`
`227`	`235`
`228`	`236`	`module StringSizeFlow = ProductFlow::GlobalWithState<StringSizeConfig>;`