Move RegexInjectionSink to query config (qll)

jorgectf · jorgectf · commit 18ce257fc8be · 2021-04-27T19:54:29.000+02:00
diff --git a/python/ql/src/experimental/semmle/python/Concepts.qll b/python/ql/src/experimental/semmle/python/Concepts.qll
@@ -76,16 +76,3 @@ class RegexEscape extends DataFlow::Node {
 
   DataFlow::CallCfgNode getEscapeMethod() { result = range.getEscapeMethod() }
 }
-
-class RegexInjectionSink extends DataFlow::Node {
-  Attribute regexMethod;
-
-  RegexInjectionSink() {
-    exists(RegexExecution reExec |
-      this = reExec.getRegexNode() and
-      regexMethod = reExec.getRegexMethod().getFunction().asExpr().(Attribute)
-    )
-  }
-
-  Attribute getRegexMethod() { result = regexMethod }
-}
diff --git a/python/ql/src/experimental/semmle/python/security/injection/RegexInjection.qll b/python/ql/src/experimental/semmle/python/security/injection/RegexInjection.qll
@@ -9,6 +9,19 @@ import semmle.python.dataflow.new.DataFlow
 import semmle.python.dataflow.new.TaintTracking
 import semmle.python.dataflow.new.RemoteFlowSources
 
+class RegexInjectionSink extends DataFlow::Node {
+  Attribute regexMethod;
+
+  RegexInjectionSink() {
+    exists(RegexExecution reExec |
+      this = reExec.getRegexNode() and
+      regexMethod = reExec.getRegexMethod().getFunction().asExpr().(Attribute)
+    )
+  }
+
+  Attribute getRegexMethod() { result = regexMethod }
+}
+
 /**
  * A taint-tracking configuration for detecting regular expression injections.
  */
