microsoft
diff --git a/‎javascript/ql/lib/semmle/javascript/security/dataflow/BrokenCryptoAlgorithmQuery.qll
Lines changed: 2 additions & 0 deletions b/‎javascript/ql/lib/semmle/javascript/security/dataflow/BrokenCryptoAlgorithmQuery.qll
Lines changed: 2 additions & 0 deletions
diff --git a/‎javascript/ql/lib/semmle/javascript/security/dataflow/BuildArtifactLeakQuery.qll
Lines changed: 2 additions & 0 deletions b/‎javascript/ql/lib/semmle/javascript/security/dataflow/BuildArtifactLeakQuery.qll
Lines changed: 2 additions & 0 deletions
diff --git a/‎javascript/ql/lib/semmle/javascript/security/dataflow/CleartextLoggingQuery.qll
Lines changed: 2 additions & 0 deletions b/‎javascript/ql/lib/semmle/javascript/security/dataflow/CleartextLoggingQuery.qll
Lines changed: 2 additions & 0 deletions
diff --git a/‎javascript/ql/lib/semmle/javascript/security/dataflow/CleartextStorageQuery.qll
Lines changed: 2 additions & 0 deletions b/‎javascript/ql/lib/semmle/javascript/security/dataflow/CleartextStorageQuery.qll
Lines changed: 2 additions & 0 deletions
diff --git a/‎javascript/ql/lib/semmle/javascript/security/dataflow/ClientSideRequestForgeryQuery.qll
Lines changed: 2 additions & 0 deletions b/‎javascript/ql/lib/semmle/javascript/security/dataflow/ClientSideRequestForgeryQuery.qll
Lines changed: 2 additions & 0 deletions
diff --git a/‎javascript/ql/lib/semmle/javascript/security/dataflow/ClientSideUrlRedirectQuery.qll
Lines changed: 2 additions & 0 deletions b/‎javascript/ql/lib/semmle/javascript/security/dataflow/ClientSideUrlRedirectQuery.qll
Lines changed: 2 additions & 0 deletions
diff --git a/‎javascript/ql/lib/semmle/javascript/security/dataflow/CodeInjectionQuery.qll
Lines changed: 2 additions & 0 deletions b/‎javascript/ql/lib/semmle/javascript/security/dataflow/CodeInjectionQuery.qll
Lines changed: 2 additions & 0 deletions
diff --git a/‎javascript/ql/lib/semmle/javascript/security/dataflow/CommandInjectionQuery.qll
Lines changed: 2 additions & 0 deletions b/‎javascript/ql/lib/semmle/javascript/security/dataflow/CommandInjectionQuery.qll
Lines changed: 2 additions & 0 deletions
diff --git a/‎javascript/ql/lib/semmle/javascript/security/dataflow/ConditionalBypassQuery.qll
Lines changed: 8 additions & 0 deletions b/‎javascript/ql/lib/semmle/javascript/security/dataflow/ConditionalBypassQuery.qll
Lines changed: 8 additions & 0 deletions
diff --git a/‎javascript/ql/lib/semmle/javascript/security/dataflow/CorsMisconfigurationForCredentialsQuery.qll
Lines changed: 2 additions & 0 deletions b/‎javascript/ql/lib/semmle/javascript/security/dataflow/CorsMisconfigurationForCredentialsQuery.qll
Lines changed: 2 additions & 0 deletions
@@ -25,6 +25,8 @@ module BrokenCryptoAlgorithmConfig implements DataFlow::ConfigSig {
   predicate isSink(DataFlow::Node sink) { sink instanceof Sink }
 
   predicate isBarrier(DataFlow::Node node) { node instanceof Sanitizer }
+
+  predicate observeDiffInformedIncrementalMode() { any() }
 }
 
 /**
 
@@ -30,6 +30,8 @@ module BuildArtifactLeakConfig implements DataFlow::ConfigSig {
     contents = DataFlow::ContentSet::anyProperty() and
     isSink(node)
   }
+
+  predicate observeDiffInformedIncrementalMode() { any() }
 }
 
 /**
 
@@ -41,6 +41,8 @@ module CleartextLoggingConfig implements DataFlow::ConfigSig {
     contents = DataFlow::ContentSet::anyProperty() and
     isSink(node)
   }
+
+  predicate observeDiffInformedIncrementalMode() { any() }
 }
 
 /**
 
@@ -25,6 +25,8 @@ module ClearTextStorageConfig implements DataFlow::ConfigSig {
   predicate isSink(DataFlow::Node sink) { sink instanceof Sink }
 
   predicate isBarrier(DataFlow::Node node) { node instanceof Sanitizer }
+
+  predicate observeDiffInformedIncrementalMode() { any() }
 }
 
 module ClearTextStorageFlow = TaintTracking::Global<ClearTextStorageConfig>;
 
@@ -31,6 +31,8 @@ module ClientSideRequestForgeryConfig implements DataFlow::ConfigSig {
   predicate isAdditionalFlowStep(DataFlow::Node node1, DataFlow::Node node2) {
     isAdditionalRequestForgeryStep(node1, node2)
   }
+
+  predicate observeDiffInformedIncrementalMode() { any() }
 }
 
 /**
 
@@ -54,6 +54,8 @@ module ClientSideUrlRedirectConfig implements DataFlow::StateConfigSig {
       state1 = state2
     )
   }
+
+  predicate observeDiffInformedIncrementalMode() { any() }
 }
 
 /**
 
@@ -24,6 +24,8 @@ module CodeInjectionConfig implements DataFlow::ConfigSig {
     // HTML sanitizers are insufficient protection against code injection
     node1 = node2.(HtmlSanitizerCall).getInput()
   }
+
+  predicate observeDiffInformedIncrementalMode() { any() }
 }
 
 /**
 
@@ -30,6 +30,8 @@ module CommandInjectionConfig implements DataFlow::ConfigSig {
   predicate isSink(DataFlow::Node sink) { isSinkWithHighlight(sink, _) }
 
   predicate isBarrier(DataFlow::Node node) { node instanceof Sanitizer }
+
+  predicate observeDiffInformedIncrementalMode() { any() }
 }
 
 /**
 
@@ -24,6 +24,14 @@ module ConditionalBypassConfig implements DataFlow::ConfigSig {
     // comparing a tainted expression against a constant gives a tainted result
     node2.asExpr().(Comparison).hasOperands(node1.asExpr(), any(ConstantExpr c))
   }
+
+  predicate observeDiffInformedIncrementalMode() {
+    // TODO(diff-informed): Manually verify if config can be diff-informed.
+    // ql/lib/semmle/javascript/security/dataflow/ConditionalBypassQuery.qll:104: Flow call outside 'select' clause
+    // ql/lib/semmle/javascript/security/dataflow/ConditionalBypassQuery.qll:113: Flow call outside 'select' clause
+    // ql/lib/semmle/javascript/security/dataflow/ConditionalBypassQuery.qll:115: Flow call outside 'select' clause
+    none()
+  }
 }
 
 /**
 
@@ -23,6 +23,8 @@ module CorsMisconfigurationConfig implements DataFlow::ConfigSig {
     node instanceof Sanitizer or
     node = TaintTracking::AdHocWhitelistCheckSanitizer::getABarrierNode()
   }
+
+  predicate observeDiffInformedIncrementalMode() { any() }
 }
 
 /**
Original file line number	Diff line number	Diff line change
`@@ -25,6 +25,8 @@ module BrokenCryptoAlgorithmConfig implements DataFlow::ConfigSig {`
`25`	`25`	`predicate isSink(DataFlow::Node sink) { sink instanceof Sink }`
`26`	`26`
`27`	`27`	`predicate isBarrier(DataFlow::Node node) { node instanceof Sanitizer }`
	`28`	`+`
	`29`	`+ predicate observeDiffInformedIncrementalMode() { any() }`
`28`	`30`	`}`
`29`	`31`
`30`	`32`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -30,6 +30,8 @@ module BuildArtifactLeakConfig implements DataFlow::ConfigSig {`
`30`	`30`	`contents = DataFlow::ContentSet::anyProperty() and`
`31`	`31`	`isSink(node)`
`32`	`32`	`}`
	`33`	`+`
	`34`	`+ predicate observeDiffInformedIncrementalMode() { any() }`
`33`	`35`	`}`
`34`	`36`
`35`	`37`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -41,6 +41,8 @@ module CleartextLoggingConfig implements DataFlow::ConfigSig {`
`41`	`41`	`contents = DataFlow::ContentSet::anyProperty() and`
`42`	`42`	`isSink(node)`
`43`	`43`	`}`
	`44`	`+`
	`45`	`+ predicate observeDiffInformedIncrementalMode() { any() }`
`44`	`46`	`}`
`45`	`47`
`46`	`48`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -25,6 +25,8 @@ module ClearTextStorageConfig implements DataFlow::ConfigSig {`
`25`	`25`	`predicate isSink(DataFlow::Node sink) { sink instanceof Sink }`
`26`	`26`
`27`	`27`	`predicate isBarrier(DataFlow::Node node) { node instanceof Sanitizer }`
	`28`	`+`
	`29`	`+ predicate observeDiffInformedIncrementalMode() { any() }`
`28`	`30`	`}`
`29`	`31`
`30`	`32`	`module ClearTextStorageFlow = TaintTracking::Global<ClearTextStorageConfig>;`
Original file line number	Diff line number	Diff line change
`@@ -31,6 +31,8 @@ module ClientSideRequestForgeryConfig implements DataFlow::ConfigSig {`
`31`	`31`	`predicate isAdditionalFlowStep(DataFlow::Node node1, DataFlow::Node node2) {`
`32`	`32`	`isAdditionalRequestForgeryStep(node1, node2)`
`33`	`33`	`}`
	`34`	`+`
	`35`	`+ predicate observeDiffInformedIncrementalMode() { any() }`
`34`	`36`	`}`
`35`	`37`
`36`	`38`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -54,6 +54,8 @@ module ClientSideUrlRedirectConfig implements DataFlow::StateConfigSig {`
`54`	`54`	`state1 = state2`
`55`	`55`	`)`
`56`	`56`	`}`
	`57`	`+`
	`58`	`+ predicate observeDiffInformedIncrementalMode() { any() }`
`57`	`59`	`}`
`58`	`60`
`59`	`61`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -24,6 +24,8 @@ module CodeInjectionConfig implements DataFlow::ConfigSig {`
`24`	`24`	`// HTML sanitizers are insufficient protection against code injection`
`25`	`25`	`node1 = node2.(HtmlSanitizerCall).getInput()`
`26`	`26`	`}`
	`27`	`+`
	`28`	`+ predicate observeDiffInformedIncrementalMode() { any() }`
`27`	`29`	`}`
`28`	`30`
`29`	`31`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -30,6 +30,8 @@ module CommandInjectionConfig implements DataFlow::ConfigSig {`
`30`	`30`	`predicate isSink(DataFlow::Node sink) { isSinkWithHighlight(sink, _) }`
`31`	`31`
`32`	`32`	`predicate isBarrier(DataFlow::Node node) { node instanceof Sanitizer }`
	`33`	`+`
	`34`	`+ predicate observeDiffInformedIncrementalMode() { any() }`
`33`	`35`	`}`
`34`	`36`
`35`	`37`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -24,6 +24,14 @@ module ConditionalBypassConfig implements DataFlow::ConfigSig {`
`24`	`24`	`// comparing a tainted expression against a constant gives a tainted result`
`25`	`25`	`node2.asExpr().(Comparison).hasOperands(node1.asExpr(), any(ConstantExpr c))`
`26`	`26`	`}`
	`27`	`+`
	`28`	`+ predicate observeDiffInformedIncrementalMode() {`
	`29`	`+ // TODO(diff-informed): Manually verify if config can be diff-informed.`
	`30`	`+ // ql/lib/semmle/javascript/security/dataflow/ConditionalBypassQuery.qll:104: Flow call outside 'select' clause`
	`31`	`+ // ql/lib/semmle/javascript/security/dataflow/ConditionalBypassQuery.qll:113: Flow call outside 'select' clause`
	`32`	`+ // ql/lib/semmle/javascript/security/dataflow/ConditionalBypassQuery.qll:115: Flow call outside 'select' clause`
	`33`	`+ none()`
	`34`	`+ }`
`27`	`35`	`}`
`28`	`36`
`29`	`37`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -23,6 +23,8 @@ module CorsMisconfigurationConfig implements DataFlow::ConfigSig {`
`23`	`23`	`node instanceof Sanitizer or`
`24`	`24`	`node = TaintTracking::AdHocWhitelistCheckSanitizer::getABarrierNode()`
`25`	`25`	`}`
	`26`	`+`
	`27`	`+ predicate observeDiffInformedIncrementalMode() { any() }`
`26`	`28`	`}`
`27`	`29`
`28`	`30`	`/**`