Swift: Add framework for SQL Injection query.

Author: geoffw0

swift/ql/src/queries/Security/CWE-089/SqlTainted.qhelp

@@ -0,0 +1,33 @@
+<!DOCTYPE qhelp PUBLIC
+  "-//Semmle//qhelp//EN"
+  "qhelp.dtd">
+<qhelp>
+<overview>
+
+<p>TODO</p>
+
+</overview>
+<recommendation>
+
+<p>TODO</p>
+
+</recommendation>
+<example>
+
+<p>TODO</p>
+
+<sample src="SqlTaintedBad.swift" />
+
+<p>TODO</p>
+
+<sample src="SqlTaintedGood.swift" />
+
+</example>
+<references>
+
+<li>
+  TODO
+</li>
+
+</references>
+</qhelp>

swift/ql/src/queries/Security/CWE-089/SqlTainted.ql

@@ -0,0 +1,15 @@
+/**
+ * @name TODO
+ * @description TODO
+ * @kind path-problem
+ * @problem.severity TODO
+ * @security-severity TODO
+ * @precision TODO
+ * @id swift/sql-injection
+ * @tags security
+ *       external/cwe/cwe-089
+ */
+
+import swift
+
+select "TODO"

swift/ql/src/queries/Security/CWE-089/SqlTaintedBad.swift

@@ -0,0 +1,2 @@
+
+TODO

swift/ql/src/queries/Security/CWE-089/SqlTaintedGood.swift

@@ -0,0 +1,2 @@
+
+TODO

swift/ql/test/query-tests/Security/CWE-089/SQLite.swift

@@ -0,0 +1,4 @@
+
+// --- stubs ---
+
+// --- tests ---

swift/ql/test/query-tests/Security/CWE-089/SqlTainted.expected

@@ -0,0 +1 @@
+| TODO |

swift/ql/test/query-tests/Security/CWE-089/SqlTainted.qlref

@@ -0,0 +1 @@
+queries/Security/CWE-089/SqlTainted.ql

swift/ql/test/query-tests/Security/CWE-089/sqlite3_c_api.swift

@@ -0,0 +1,4 @@
+
+// --- stubs ---
+
+// --- tests ---