Create 1.ql

Yangxl88 · Nov 13, 2024 · 28c35c8 · 28c35c8
1 parent b53ed57
commit 28c35c8
Showing 1 changed file with 22 additions and 0 deletions.
diff --git a/.github/workflows/1.ql b/.github/workflows/1.ql
@@ -0,0 +1,22 @@
+/**
+ * @name Untrusted data passed to external API
+ * @description Data provided remotely is used in this external API without sanitization, which could be a security risk.
+ * @id java/untrusted-data-to-external-api
+ * @kind path-problem
+ * @precision low
+ * @problem.severity error
+ * @security-severity 7.8
+ * @tags security external/cwe/cwe-20
+ */
+
+import java
+import semmle.code.java.dataflow.FlowSources
+import semmle.code.java.dataflow.TaintTracking
+import semmle.code.java.security.ExternalAPIs
+import UntrustedDataToExternalApiFlow::PathGraph
+
+from UntrustedDataToExternalApiFlow::PathNode source, UntrustedDataToExternalApiFlow::PathNode sink
+where UntrustedDataToExternalApiFlow::flowPath(source, sink)
+select sink, source, sink,
+  "Call to " + sink.getNode().(ExternalApiDataNode).getMethodDescription() +
+    " with untrusted data from $@.", source, source.toString()