From 41cdb320827540d42e09ee8a7a8cc3eb7950393b Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= Date: Tue, 17 Jun 2025 15:22:47 +0200 Subject: [PATCH] JS: mass enable diff-informed data flow + none() overrides An auto-generated patch that enables diff-informed data flow in the obvious cases. Builds on github#18346 and github/codeql-patch#88 --- javascript/ql/src/experimental/Security/CWE-918/SSRF.qll | 2 ++ 1 file changed, 2 insertions(+) diff --git a/javascript/ql/src/experimental/Security/CWE-918/SSRF.qll b/javascript/ql/src/experimental/Security/CWE-918/SSRF.qll index 03bc9f990385..4bdbb9b69feb 100644 --- a/javascript/ql/src/experimental/Security/CWE-918/SSRF.qll +++ b/javascript/ql/src/experimental/Security/CWE-918/SSRF.qll @@ -34,6 +34,8 @@ module SsrfConfig implements DataFlow::ConfigSig { } predicate observeDiffInformedIncrementalMode() { any() } + + Location getASelectedSourceLocation(DataFlow::Node sink) { none() } } module SsrfFlow = TaintTracking::Global;