We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
There was an error while loading. Please reload this page.
1 parent 0704946 commit e259b25Copy full SHA for e259b25
2 files changed
java/ql/lib/semmle/code/java/security/SensitiveActions.qll
@@ -41,9 +41,12 @@ string getCommonSensitiveInfoRegex() {
41
* indicate the value being held does not contains sensitive information,
42
* but is a false positive for `getCommonSensitiveInfoRegex`.
43
*
44
+ * - "tokenizer" is often used for java.util.StringTokenizer.
45
* - "tokenImage" appears in parser code generated by JavaCC.
46
*/
-string getCommonSensitiveInfoFPRegex() { result = "(?i).*(null).*" or result = "tokenImage" }
47
+string getCommonSensitiveInfoFPRegex() {
48
+ result = "(?i).*(null|tokenizer).*" or result = "tokenImage"
49
+}
50
51
/** An expression that might contain sensitive data. */
52
abstract class SensitiveExpr extends Expr { }
java/ql/test/query-tests/security/CWE-532/Test.java
@@ -8,6 +8,6 @@ void test(String password, String authToken, String username, String nullToken,
8
logger.error("Auth failed for: " + authToken); // $ hasTaintFlow
9
logger.error("Auth failed for: " + username); // Safe
10
logger.error("Auth failed for: " + nullToken); // Safe
11
- logger.error("Auth failed for: " + stringTokenizer); // $ hasTaintFlow
+ logger.error("Auth failed for: " + stringTokenizer); // Safe
12
}
13
0 commit comments