Ruby: fix missing qldoc

Author: alexrford

ruby/ql/lib/codeql/ruby/security/CodeInjectionCustomizations.qll

@@ -31,6 +31,9 @@ module CodeInjection {
 
     /** A flow state used to distinguish whether an attacker controls the entire string. */
     class State extends TState {
+      /**
+       * Gets a string representation of this state.
+       */
       string toString() { result = this.getStringRepresentation() }
 
       /**

ruby/ql/lib/codeql/ruby/security/HardcodedDataInterpretedAsCodeCustomizations.qll

@@ -35,7 +35,9 @@ module HardcodedDataInterpretedAsCode {
      * Flow states used to distinguish value-preserving flow from taint flow.
      */
     newtype State =
+      /** Flow state used to track value-preserving flow. */
       Data() or
+      /** Flow state used to tainted data (non-value preserving flow). */
       Taint()
   }
 

ruby/ql/lib/codeql/ruby/security/InsecureDownloadCustomizations.qll

@@ -25,6 +25,9 @@ module InsecureDownload {
      */
     abstract deprecated DataFlow::FlowState getALabel();
 
+    /**
+     * Gets a flow-label for this source.
+     */
     abstract Label::State getAFlowLabel();
   }
 
@@ -43,6 +46,9 @@ module InsecureDownload {
      */
     abstract deprecated DataFlow::FlowState getALabel();
 
+    /**
+     * Gets a flow-label where this sink is vulnerable.
+     */
     abstract Label::State getAFlowLabel();
   }
 
@@ -83,8 +89,11 @@ module InsecureDownload {
      * Flow-labels for reasoning about download of sensitive file through insecure connection.
      */
     newtype State =
+      /** A flow-label for a URL that is downloaded over an insecure connection. */
       InsecureState() or
+      /** A flow-label for a URL that is sensitive. */
       SensitiveState() or
+      /** A flow-label for file URLs that are both sensitive and downloaded over an insecure connection. */
       SensitiveInsecureState()
   }