Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Commit 9eeeec3

Browse files
d10cd10c
committed
Java/ImproperValidationOfArrayConstructionCodeSpecifiedQuery
java/ql/src/Security/CWE/CWE-129/ImproperValidationOfArrayConstructionCodeSpecified.ql
1 parent dc1dff9 commit 9eeeec3

1 file changed

Lines changed: 2 additions & 0 deletions

File tree

java/ql/lib/semmle/code/java/security/ImproperValidationOfArrayConstructionCodeSpecifiedQuery.qll

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -21,6 +21,8 @@ module BoundedFlowSourceConfig implements DataFlow::ConfigSig {
2121
predicate observeDiffInformedIncrementalMode() { any() }
2222

2323
Location getASelectedSinkLocation(DataFlow::Node sink) {
24+
result = sink.getLocation()
25+
or
2426
exists(ArrayCreationExpr arrayCreation, CheckableArrayAccess arrayAccess |
2527
result = [arrayCreation, arrayAccess.getIndexExpr()].getLocation() and
2628
arrayAccess.canThrowOutOfBoundsDueToEmptyArray(sink.asExpr(), arrayCreation)

0 commit comments

Comments
 (0)