Privacy markers and fixed imports

Author: egregius313

java/ql/lib/semmle/code/java/security/ArithmeticTaintedLocalQuery.qll

@@ -1,8 +1,8 @@
 /** Provides taint-tracking configurations to reason about arithmetic using local-user-controlled data. */
 
 import java
-import semmle.code.java.dataflow.FlowSources
-import semmle.code.java.security.ArithmeticCommon
+private import semmle.code.java.dataflow.FlowSources
+private import semmle.code.java.security.ArithmeticCommon
 
 /**
  * A taint-tracking configuration to reason about arithmetic overflow using local-user-controlled data.

java/ql/lib/semmle/code/java/security/ArithmeticUncontrolledQuery.qll

@@ -1,7 +1,7 @@
 /** Provides taint-tracking configuration to reason about arithmetic with uncontrolled values. */
 
 import java
-import semmle.code.java.dataflow.TaintTracking
+private import semmle.code.java.dataflow.TaintTracking
 private import semmle.code.java.security.RandomQuery
 private import semmle.code.java.security.SecurityTests
 private import semmle.code.java.security.ArithmeticCommon

java/ql/lib/semmle/code/java/security/ArithmeticWithExtremeValuesQuery.qll

@@ -1,8 +1,8 @@
 /** Provides predicates and classes for reasoning about arithmetic with extreme values. */
 
 import java
-import semmle.code.java.dataflow.DataFlow
-import ArithmeticCommon
+private import semmle.code.java.dataflow.DataFlow
+private import semmle.code.java.security.ArithmeticCommon
 
 /**
  * A field representing an extreme value.
@@ -14,12 +14,12 @@ abstract class ExtremeValueField extends Field {
 }
 
 /** A field representing the minimum value of a primitive type. */
-class MinValueField extends ExtremeValueField {
+private class MinValueField extends ExtremeValueField {
   MinValueField() { this.getName() = "MIN_VALUE" }
 }
 
 /** A field representing the maximum value of a primitive type. */
-class MaxValueField extends ExtremeValueField {
+private class MaxValueField extends ExtremeValueField {
   MaxValueField() { this.getName() = "MAX_VALUE" }
 }
 

java/ql/lib/semmle/code/java/security/BrokenCryptoAlgorithmQuery.qll

@@ -1,8 +1,8 @@
 /** Provides to taint-tracking configuration to reason about the use of broken or risky cryptographic algorithms. */
 
 import java
-import semmle.code.java.security.Encryption
-import semmle.code.java.dataflow.TaintTracking
+private import semmle.code.java.security.Encryption
+private import semmle.code.java.dataflow.TaintTracking
 
 private class ShortStringLiteral extends StringLiteral {
   ShortStringLiteral() { this.getValue().length() < 100 }

java/ql/lib/semmle/code/java/security/ExecTaintedLocalQuery.qll

@@ -6,7 +6,7 @@ private import semmle.code.java.security.ExternalProcess
 private import semmle.code.java.security.CommandArguments
 
 /** A taint-tracking configuration to reason about use of externally controlled strings to make command line commands. */
-module LocalUserInputToArgumentToExecFlowConfig implements DataFlow::ConfigSig {
+module ExecTaintedLocalConfig implements DataFlow::ConfigSig {
   predicate isSource(DataFlow::Node src) { src instanceof LocalUserInput }
 
   predicate isSink(DataFlow::Node sink) { sink.asExpr() instanceof ArgumentToExec }
@@ -23,5 +23,4 @@ module LocalUserInputToArgumentToExecFlowConfig implements DataFlow::ConfigSig {
 /**
  * Taint-tracking flow for use of externally controlled strings to make command line commands.
  */
-module LocalUserInputToArgumentToExecFlow =
-  TaintTracking::Global<LocalUserInputToArgumentToExecFlowConfig>;
+module ExecTaintedLocalFlow = TaintTracking::Global<ExecTaintedLocalConfig>;

java/ql/lib/semmle/code/java/security/ExternallyControlledFormatStringLocalQuery.qll

@@ -1,8 +1,8 @@
 /** Provides a taint-tracking configuration to reason about externally-controlled format strings from local sources. */
 
 import java
-import semmle.code.java.dataflow.FlowSources
-import semmle.code.java.StringFormat
+private import semmle.code.java.dataflow.FlowSources
+private import semmle.code.java.StringFormat
 
 /** A taint-tracking configuration to reason about externally-controlled format strings from local sources. */
 module ExternallyControlledFormatStringLocalConfig implements DataFlow::ConfigSig {

java/ql/lib/semmle/code/java/security/ImproperValidationOfArrayConstructionCodeSpecifiedQuery.qll

@@ -1,8 +1,8 @@
 /** Provides a dataflow configuration to reason about improper validation of code-specified size used for array construction. */
 
 import java
-import semmle.code.java.security.internal.ArraySizing
-import semmle.code.java.dataflow.TaintTracking
+private import semmle.code.java.security.internal.ArraySizing
+private import semmle.code.java.dataflow.TaintTracking
 
 /**
  * A dataflow configuration to reason about improper validation of code-specified size used for array construction.

java/ql/lib/semmle/code/java/security/ImproperValidationOfArrayConstructionLocalQuery.qll

@@ -1,8 +1,8 @@
 /** Provides a taint-tracking configuration to reason about improper validation of local user-provided size used for array construction. */
 
 import java
-import semmle.code.java.security.internal.ArraySizing
-import semmle.code.java.dataflow.FlowSources
+private import semmle.code.java.security.internal.ArraySizing
+private import semmle.code.java.dataflow.FlowSources
 
 /**
  * A taint-tracking configuration to reason about improper validation of local user-provided size used for array construction.

java/ql/lib/semmle/code/java/security/ImproperValidationOfArrayConstructionQuery.qll

@@ -1,13 +1,13 @@
 /** Provides a taint-tracking configuration to reason about improper validation of user-provided size used for array construction. */
 
 import java
-import semmle.code.java.security.internal.ArraySizing
-import semmle.code.java.dataflow.FlowSources
+private import semmle.code.java.security.internal.ArraySizing
+private import semmle.code.java.dataflow.FlowSources
 
 /**
  * A taint-tracking configuration to reason about improper validation of user-provided size used for array construction.
  */
-private module ImproperValidationOfArrayConstructionConfig implements DataFlow::ConfigSig {
+module ImproperValidationOfArrayConstructionConfig implements DataFlow::ConfigSig {
   predicate isSource(DataFlow::Node source) { source instanceof RemoteFlowSource }
 
   predicate isSink(DataFlow::Node sink) {

java/ql/lib/semmle/code/java/security/ImproperValidationOfArrayIndexCodeSpecifiedQuery.qll

@@ -1,9 +1,9 @@
 /** Provides a dataflow configuration to reason about improper validation of code-specified array index. */
 
 import java
-import semmle.code.java.security.internal.ArraySizing
-import semmle.code.java.security.internal.BoundingChecks
-import semmle.code.java.dataflow.TaintTracking
+private import semmle.code.java.security.internal.ArraySizing
+private import semmle.code.java.security.internal.BoundingChecks
+private import semmle.code.java.dataflow.DataFlow
 
 /**
  * A dataflow configuration to reason about improper validation of code-specified array index.