michaelnebel
diff --git a/‎swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
Lines changed: 1 addition & 0 deletions b/‎swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
Lines changed: 1 addition & 0 deletions
diff --git a/‎swift/ql/lib/codeql/swift/frameworks/StandardLibrary/Data.qll
Lines changed: 0 additions & 2 deletions b/‎swift/ql/lib/codeql/swift/frameworks/StandardLibrary/Data.qll
Lines changed: 0 additions & 2 deletions
diff --git a/‎swift/ql/lib/codeql/swift/frameworks/StandardLibrary/Sequence.qll
Lines changed: 47 additions & 0 deletions b/‎swift/ql/lib/codeql/swift/frameworks/StandardLibrary/Sequence.qll
Lines changed: 47 additions & 0 deletions
diff --git a/‎swift/ql/lib/codeql/swift/frameworks/StandardLibrary/String.qll
Lines changed: 0 additions & 2 deletions b/‎swift/ql/lib/codeql/swift/frameworks/StandardLibrary/String.qll
Lines changed: 0 additions & 2 deletions
diff --git a/‎swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
Lines changed: 4 additions & 0 deletions b/‎swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
Lines changed: 4 additions & 0 deletions
@@ -84,6 +84,7 @@ private module Frameworks {
   private import codeql.swift.frameworks.StandardLibrary.InputStream
   private import codeql.swift.frameworks.StandardLibrary.NsData
   private import codeql.swift.frameworks.StandardLibrary.NsUrl
+  private import codeql.swift.frameworks.StandardLibrary.Sequence
   private import codeql.swift.frameworks.StandardLibrary.String
   private import codeql.swift.frameworks.StandardLibrary.Url
   private import codeql.swift.frameworks.StandardLibrary.UrlSession
 
@@ -37,8 +37,6 @@ private class DataSummaries extends SummaryModelCsv {
         ";Data;true;replaceSubrange(_:with:count:);;;Argument[1];Argument[-1];taint",
         ";Data;true;replacing(_:with:maxReplacements:);;;Argument[1];Argument[-1];taint",
         ";Data;true;replacing(_:with:subrange:maxReplacements:);;;Argument[1];Argument[-1];taint",
-        // TODO: this should be implemented by a model of BidirectionalCollection
-        // ";Data;true;reversed();;;Argument[-1];ReturnValue;taint",
         ";Data;true;sorted();;;Argument[-1];ReturnValue;taint",
         ";Data;true;sorted(by:);;;Argument[-1];ReturnValue;taint",
         ";Data;true;sorted(using:);;;Argument[-1];ReturnValue;taint",
 
@@ -0,0 +1,47 @@
+/**
+ * Provides models for the `Sequence` Swift class.
+ */
+
+import swift
+private import codeql.swift.dataflow.DataFlow
+private import codeql.swift.dataflow.ExternalFlow
+private import codeql.swift.dataflow.FlowSteps
+
+
+/**
+ * A model for `Sequence` members that permit taint flow.
+ */
+private class SequenceSummaries extends SummaryModelCsv {
+  override predicate row(string row) {
+    row =
+      [
+        ";Sequence;true;reversed();;;Argument[-1];ReturnValue;taint",
+        ";Sequence;true;prefix(_:);;;Argument[-1];ReturnValue;taint",
+        ";Sequence;true;prefix(while:);;;Argument[-1];ReturnValue;taint",
+        ";Sequence;true;suffix(_:);;;Argument[-1];ReturnValue;taint",
+        ";Sequence;true;dropFirst(_:);;;Argument[-1];ReturnValue;taint",
+        ";Sequence;true;dropLast(_:);;;Argument[-1];ReturnValue;taint",
+        ";Sequence;true;split(maxSplits:omittingEmptySubsequences:whereSeparator:);;;Argument[-1];ReturnValue;taint",
+        ";Sequence;true;split(separator:maxSplits:omittingEmptySubsequences:);;;Argument[-1];ReturnValue;taint",
+        ";Sequence;true;joined();;;Argument[-1];ReturnValue;taint",
+        ";Sequence;true;joined(separator:);;;Argument[-1..0];ReturnValue;taint",
+      ]
+  }
+}
+
+/**
+ * A content implying that, if a `Sequence` is tainted, certain fields are also
+ * tainted.
+ */
+private class SequenceFieldsInheritTaint extends TaintInheritingContent,
+  DataFlow::Content::FieldContent {
+  SequenceFieldsInheritTaint() {
+    exists(FieldDecl f | this.getField() = f |
+      (
+        f.getEnclosingDecl().(NominalTypeDecl).getName() = "Sequence" or
+        f.getEnclosingDecl().(ExtensionDecl).getExtendedTypeDecl().getName() = "Sequence"
+      ) and
+      f.getName() = "lazy"
+    )
+  }
+}
@@ -57,7 +57,6 @@ private class StringSummaries extends SummaryModelCsv {
         ";StringProtocol;true;replacingOccurrences(of:with:options:range);;;Argument[-1];ReturnValue;taint",
         ";StringProtocol;true;replacingOccurrences(of:with:options:range);;;Argument[1];ReturnValue;taint",
         ";StringProtocol;true;replacingPercentEscapes(using:);;;Argument[-1];ReturnValue;taint",
-        ";StringProtocol;true;split(separator:maxSplits:omittingEmptySubsequences:);;;Argument[-1];ReturnValue;taint",
         ";StringProtocol;true;substring(from:);;;Argument[-1];ReturnValue;taint",
         ";StringProtocol;true;substring(with:);;;Argument[-1];ReturnValue;taint",
         ";StringProtocol;true;trimmingCharacters(in:);;;Argument[-1];ReturnValue;taint",
@@ -120,7 +119,6 @@ private class StringSummaries extends SummaryModelCsv {
         ";String;true;randomElement();;;Argument[-1];ReturnValue;taint",
         ";String;true;randomElement(using:);;;Argument[-1];ReturnValue;taint",
         ";String;true;enumerated();;;Argument[-1];ReturnValue;taint",
-        ";String;true;reversed();;;Argument[-1];ReturnValue;taint",
         ";String;true;encode(to:);;;Argument[-1];Argument[0];taint"
       ]
   }
 
@@ -297,6 +297,7 @@
 | data.swift:228:45:228:52 | call to source() | data.swift:228:10:228:10 | [post] dataTainted33 |
 | data.swift:232:6:232:6 | SSA def(dataTainted34) | data.swift:233:12:233:12 | dataTainted34 |
 | data.swift:232:22:232:29 | call to source() | data.swift:232:6:232:6 | SSA def(dataTainted34) |
+| data.swift:233:12:233:12 | dataTainted34 | data.swift:233:12:233:35 | call to reversed() |
 | data.swift:236:6:236:6 | SSA def(dataTainted35) | data.swift:237:12:237:12 | dataTainted35 |
 | data.swift:236:22:236:29 | call to source() | data.swift:236:6:236:6 | SSA def(dataTainted35) |
 | data.swift:237:12:237:12 | dataTainted35 | data.swift:237:12:237:33 | call to sorted() |
@@ -1212,6 +1213,7 @@
 | string.swift:238:13:238:13 | tainted | string.swift:238:13:238:42 | call to capitalized(with:) |
 | string.swift:238:13:238:13 | tainted | string.swift:239:13:239:13 | tainted |
 | string.swift:239:13:239:13 | [post] tainted | string.swift:241:13:241:13 | tainted |
+| string.swift:239:13:239:13 | tainted | string.swift:239:13:239:30 | call to reversed() |
 | string.swift:239:13:239:13 | tainted | string.swift:241:13:241:13 | tainted |
 | string.swift:241:13:241:13 | [post] tainted | string.swift:242:13:242:13 | tainted |
 | string.swift:241:13:241:13 | tainted | string.swift:242:13:242:13 | tainted |
@@ -1301,8 +1303,10 @@
 | string.swift:280:13:280:13 | tainted | string.swift:280:13:280:21 | .utf8CString |
 | string.swift:280:13:280:13 | tainted | string.swift:282:13:282:13 | tainted |
 | string.swift:281:13:281:13 | [post] clean | string.swift:283:13:283:13 | clean |
+| string.swift:281:13:281:13 | clean | string.swift:281:13:281:19 | .lazy |
 | string.swift:281:13:281:13 | clean | string.swift:283:13:283:13 | clean |
 | string.swift:282:13:282:13 | [post] tainted | string.swift:284:13:284:13 | tainted |
+| string.swift:282:13:282:13 | tainted | string.swift:282:13:282:21 | .lazy |
 | string.swift:282:13:282:13 | tainted | string.swift:284:13:284:13 | tainted |
 | string.swift:283:13:283:13 | [post] clean | string.swift:285:13:285:13 | clean |
 | string.swift:283:13:283:13 | clean | string.swift:283:13:283:19 | .capitalized |