github
diff --git a/‎csharp/ql/lib/semmle/code/csharp/dataflow/CsvValidation.qll‎
Lines changed: 0 additions & 140 deletions b/‎csharp/ql/lib/semmle/code/csharp/dataflow/CsvValidation.qll‎
Lines changed: 0 additions & 140 deletions
diff --git a/‎csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll‎
Lines changed: 136 additions & 0 deletions b/‎csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll‎
Lines changed: 136 additions & 0 deletions
diff --git a/‎csharp/ql/test/library-tests/dataflow/external-models/ExternalFlow.expected‎
Lines changed: 1 addition & 1 deletion b/‎csharp/ql/test/library-tests/dataflow/external-models/ExternalFlow.expected‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎csharp/ql/test/library-tests/dataflow/external-models/ExternalFlow.ql‎
Lines changed: 1 addition & 1 deletion b/‎csharp/ql/test/library-tests/dataflow/external-models/ExternalFlow.ql‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎csharp/ql/test/library-tests/dataflow/external-models/negativesummaries.ql‎
Lines changed: 2 additions & 1 deletion b/‎csharp/ql/test/library-tests/dataflow/external-models/negativesummaries.ql‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎csharp/ql/test/library-tests/dataflow/external-models/sinks.ql‎
Lines changed: 1 addition & 1 deletion b/‎csharp/ql/test/library-tests/dataflow/external-models/sinks.ql‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎csharp/ql/test/library-tests/dataflow/external-models/srcs.ql‎
Lines changed: 1 addition & 1 deletion b/‎csharp/ql/test/library-tests/dataflow/external-models/srcs.ql‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎csharp/ql/test/library-tests/dataflow/external-models/steps.ql‎
Lines changed: 1 addition & 1 deletion b/‎csharp/ql/test/library-tests/dataflow/external-models/steps.ql‎
Lines changed: 1 addition & 1 deletion
@@ -315,6 +315,142 @@ predicate modelCoverage(string namespace, int namespaces, string kind, string pa
   )
 }
 
+/** Provides a query predicate to check the CSV data for validation errors. */
+module CsvValidation {
+  private string getInvalidModelInput() {
+    exists(string pred, AccessPath input, string part |
+      sinkModel(_, _, _, _, _, _, input, _, _) and pred = "sink"
+      or
+      summaryModel(_, _, _, _, _, _, input, _, _, _) and pred = "summary"
+    |
+      (
+        invalidSpecComponent(input, part) and
+        not part = "" and
+        not (part = "Argument" and pred = "sink") and
+        not parseArg(part, _)
+        or
+        part = input.getToken(_) and
+        parseParam(part, _)
+      ) and
+      result = "Unrecognized input specification \"" + part + "\" in " + pred + " model."
+    )
+  }
+
+  private string getInvalidModelOutput() {
+    exists(string pred, string output, string part |
+      sourceModel(_, _, _, _, _, _, output, _, _) and pred = "source"
+      or
+      summaryModel(_, _, _, _, _, _, _, output, _, _) and pred = "summary"
+    |
+      invalidSpecComponent(output, part) and
+      not part = "" and
+      not (part = ["Argument", "Parameter"] and pred = "source") and
+      result = "Unrecognized output specification \"" + part + "\" in " + pred + " model."
+    )
+  }
+
+  private string getInvalidModelKind() {
+    exists(string row, string kind | summaryModel(row) |
+      kind = row.splitAt(";", 8) and
+      not kind = ["taint", "value"] and
+      result = "Invalid kind \"" + kind + "\" in summary model."
+    )
+    or
+    exists(string row, string kind | sinkModel(row) |
+      kind = row.splitAt(";", 7) and
+      not kind = ["code", "sql", "xss", "remote", "html"] and
+      result = "Invalid kind \"" + kind + "\" in sink model."
+    )
+    or
+    exists(string row, string kind | sourceModel(row) |
+      kind = row.splitAt(";", 7) and
+      not kind = "local" and
+      result = "Invalid kind \"" + kind + "\" in source model."
+    )
+  }
+
+  private string getInvalidModelSubtype() {
+    exists(string pred, string row, int expect |
+      sourceModel(row) and expect = 9 and pred = "source"
+      or
+      sinkModel(row) and expect = 9 and pred = "sink"
+      or
+      summaryModel(row) and expect = 10 and pred = "summary"
+    |
+      exists(string b |
+        b = row.splitAt(";", 2) and
+        not b = ["true", "false"] and
+        result = "Invalid boolean \"" + b + "\" in " + pred + " model."
+      )
+    )
+  }
+
+  private string getInvalidModelColumnCount() {
+    exists(string pred, string row, int expect |
+      sourceModel(row) and expect = 9 and pred = "source"
+      or
+      sinkModel(row) and expect = 9 and pred = "sink"
+      or
+      summaryModel(row) and expect = 10 and pred = "summary"
+      or
+      negativeSummaryModel(row) and expect = 5 and pred = "negative summary"
+    |
+      exists(int cols |
+        cols = 1 + max(int n | exists(row.splitAt(";", n))) and
+        cols != expect and
+        result =
+          "Wrong number of columns in " + pred + " model row, expected " + expect + ", got " + cols +
+            " in " + row + "."
+      )
+    )
+  }
+
+  private string getInvalidModelSignature() {
+    exists(
+      string pred, string namespace, string type, string name, string signature, string ext,
+      string provenance
+    |
+      sourceModel(namespace, type, _, name, signature, ext, _, _, provenance) and pred = "source"
+      or
+      sinkModel(namespace, type, _, name, signature, ext, _, _, provenance) and pred = "sink"
+      or
+      summaryModel(namespace, type, _, name, signature, ext, _, _, _, provenance) and
+      pred = "summary"
+      or
+      negativeSummaryModel(namespace, type, name, signature, provenance) and
+      ext = "" and
+      pred = "negative summary"
+    |
+      not namespace.regexpMatch("[a-zA-Z0-9_\\.]+") and
+      result = "Dubious namespace \"" + namespace + "\" in " + pred + " model."
+      or
+      not type.regexpMatch("[a-zA-Z0-9_<>,\\+]+") and
+      result = "Dubious type \"" + type + "\" in " + pred + " model."
+      or
+      not name.regexpMatch("[a-zA-Z0-9_<>,]*") and
+      result = "Dubious member name \"" + name + "\" in " + pred + " model."
+      or
+      not signature.regexpMatch("|\\([a-zA-Z0-9_<>\\.\\+\\*,\\[\\]]*\\)") and
+      result = "Dubious signature \"" + signature + "\" in " + pred + " model."
+      or
+      not ext.regexpMatch("|Attribute") and
+      result = "Unrecognized extra API graph element \"" + ext + "\" in " + pred + " model."
+      or
+      not provenance = ["manual", "generated"] and
+      result = "Unrecognized provenance description \"" + provenance + "\" in " + pred + " model."
+    )
+  }
+
+  /** Holds if some row in a CSV-based flow model appears to contain typos. */
+  query predicate invalidModelRow(string msg) {
+    msg =
+      [
+        getInvalidModelSignature(), getInvalidModelInput(), getInvalidModelOutput(),
+        getInvalidModelSubtype(), getInvalidModelColumnCount(), getInvalidModelKind()
+      ]
+  }
+}
+
 private predicate elementSpec(
   string namespace, string type, boolean subtypes, string name, string signature, string ext
 ) {
 
@@ -1,4 +1,3 @@
-invalidModelRow
 edges
 | ExternalFlow.cs:9:27:9:38 | object creation of type Object : Object | ExternalFlow.cs:10:29:10:32 | access to local variable arg1 : Object |
 | ExternalFlow.cs:10:29:10:32 | access to local variable arg1 : Object | ExternalFlow.cs:10:18:10:33 | call to method StepArgRes |
@@ -152,6 +151,7 @@ nodes
 | ExternalFlow.cs:196:18:196:40 | call to method MixedFlowArgs | semmle.label | call to method MixedFlowArgs |
 | ExternalFlow.cs:196:38:196:39 | access to local variable o2 : Object | semmle.label | access to local variable o2 : Object |
 subpaths
+invalidModelRow
 #select
 | ExternalFlow.cs:10:18:10:33 | call to method StepArgRes | ExternalFlow.cs:9:27:9:38 | object creation of type Object : Object | ExternalFlow.cs:10:18:10:33 | call to method StepArgRes | $@ | ExternalFlow.cs:9:27:9:38 | object creation of type Object : Object | object creation of type Object : Object |
 | ExternalFlow.cs:18:18:18:24 | access to local variable argOut1 | ExternalFlow.cs:15:29:15:40 | object creation of type Object : Object | ExternalFlow.cs:18:18:18:24 | access to local variable argOut1 | $@ | ExternalFlow.cs:15:29:15:40 | object creation of type Object : Object | object creation of type Object : Object |
 
@@ -4,8 +4,8 @@
 
 import csharp
 import DataFlow::PathGraph
-import semmle.code.csharp.dataflow.CsvValidation
 import semmle.code.csharp.dataflow.ExternalFlow
+import CsvValidation
 
 class SummaryModelTest extends SummaryModelCsv {
   override predicate row(string row) {
 
@@ -3,5 +3,6 @@
  */
 
 import csharp
-import semmle.code.csharp.dataflow.CsvValidation
+import semmle.code.csharp.dataflow.ExternalFlow
 import semmle.code.csharp.dataflow.NegativeSummary
+import CsvValidation
@@ -1,8 +1,8 @@
 import csharp
 import DataFlow
-import semmle.code.csharp.dataflow.CsvValidation
 import semmle.code.csharp.dataflow.ExternalFlow
 import semmle.code.csharp.dataflow.internal.FlowSummaryImpl as FlowSummaryImpl
+import CsvValidation
 
 class SinkModelTest extends SinkModelCsv {
   override predicate row(string row) {
 
@@ -1,8 +1,8 @@
 import csharp
 import DataFlow
-import semmle.code.csharp.dataflow.CsvValidation
 import semmle.code.csharp.dataflow.ExternalFlow
 import semmle.code.csharp.dataflow.internal.FlowSummaryImpl as FlowSummaryImpl
+import CsvValidation
 
 class SourceModelTest extends SourceModelCsv {
   override predicate row(string row) {
 
@@ -1,10 +1,10 @@
 import csharp
 import DataFlow
-import semmle.code.csharp.dataflow.CsvValidation
 import semmle.code.csharp.dataflow.ExternalFlow
 import semmle.code.csharp.dataflow.FlowSummary
 import semmle.code.csharp.dataflow.internal.DataFlowDispatch as DataFlowDispatch
 import semmle.code.csharp.dataflow.internal.FlowSummaryImpl as FlowSummaryImpl
+import CsvValidation
 
 private class SummaryModelTest extends SummaryModelCsv {
   override predicate row(string row) {