Merge branch 'knewbury01/e2-pii-cap' of https://github.com/advanced-security/codeql-sap-js into knewbury01/e2-pii-cap

Author: knewbury01

javascript/frameworks/cap/ext/qlpack.yml

@@ -3,7 +3,5 @@ library: true
 name: advanced-security/javascript-sap-cap-models
 version: 0.2.0
 extensionTargets:
-  codeql/javascript-all: "^1.1.0"
-  codeql/javascript-queries: "^1.0.3"
-dataExtensions:
-  - "*.model.yml"
+  codeql/javascript-all: "^1.1.1"
+  codeql/javascript-queries: "^1.1.0"

javascript/frameworks/cap/lib/codeql-pack.lock.yml

@@ -2,23 +2,23 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/dataflow:
-    version: 1.0.3
+    version: 1.0.4
   codeql/javascript-all:
-    version: 1.1.0
+    version: 1.1.1
   codeql/mad:
-    version: 1.0.3
+    version: 1.0.4
   codeql/regex:
-    version: 1.0.3
+    version: 1.0.4
   codeql/ssa:
-    version: 1.0.3
+    version: 1.0.4
   codeql/tutorial:
-    version: 1.0.3
+    version: 1.0.4
   codeql/typetracking:
-    version: 1.0.3
+    version: 1.0.4
   codeql/util:
-    version: 1.0.3
+    version: 1.0.4
   codeql/xml:
-    version: 1.0.3
+    version: 1.0.4
   codeql/yaml:
-    version: 1.0.3
+    version: 1.0.4
 compiled: false

javascript/frameworks/cap/lib/qlpack.yml

@@ -5,5 +5,5 @@ version: 0.2.0
 suites: codeql-suites
 extractor: javascript
 dependencies:
-  codeql/javascript-all: "^1.1.0"
+  codeql/javascript-all: "^1.1.1"
   advanced-security/javascript-sap-cap-models: "^0.2.0"

javascript/frameworks/cap/src/codeql-pack.lock.yml

@@ -2,23 +2,23 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/dataflow:
-    version: 1.0.3
+    version: 1.0.4
   codeql/javascript-all:
-    version: 1.1.0
+    version: 1.1.1
   codeql/mad:
-    version: 1.0.3
+    version: 1.0.4
   codeql/regex:
-    version: 1.0.3
+    version: 1.0.4
   codeql/ssa:
-    version: 1.0.3
+    version: 1.0.4
   codeql/tutorial:
-    version: 1.0.3
+    version: 1.0.4
   codeql/typetracking:
-    version: 1.0.3
+    version: 1.0.4
   codeql/util:
-    version: 1.0.3
+    version: 1.0.4
   codeql/xml:
-    version: 1.0.3
+    version: 1.0.4
   codeql/yaml:
-    version: 1.0.3
+    version: 1.0.4
 compiled: false

javascript/frameworks/cap/src/qlpack.yml

@@ -5,7 +5,7 @@ version: 0.2.0
 suites: codeql-suites
 extractor: javascript
 dependencies:
-  codeql/javascript-all: "^1.1.0"
+  codeql/javascript-all: "^1.1.1"
   advanced-security/javascript-sap-cap-models: "^0.2.0"
   advanced-security/javascript-sap-cap-all: "^0.2.0"
 default-suite-file: codeql-suites/javascript-code-scanning.qls

javascript/frameworks/cap/test/codeql-pack.lock.yml

@@ -2,29 +2,29 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/dataflow:
-    version: 1.0.3
+    version: 1.0.4
   codeql/javascript-all:
-    version: 1.1.0
+    version: 1.1.1
   codeql/javascript-queries:
-    version: 1.0.3
+    version: 1.1.0
   codeql/mad:
-    version: 1.0.3
+    version: 1.0.4
   codeql/regex:
-    version: 1.0.3
+    version: 1.0.4
   codeql/ssa:
-    version: 1.0.3
+    version: 1.0.4
   codeql/suite-helpers:
-    version: 1.0.3
+    version: 1.0.4
   codeql/tutorial:
-    version: 1.0.3
+    version: 1.0.4
   codeql/typetracking:
-    version: 1.0.3
+    version: 1.0.4
   codeql/typos:
-    version: 1.0.3
+    version: 1.0.4
   codeql/util:
-    version: 1.0.3
+    version: 1.0.4
   codeql/xml:
-    version: 1.0.3
+    version: 1.0.4
   codeql/yaml:
-    version: 1.0.3
+    version: 1.0.4
 compiled: false

javascript/frameworks/cap/test/qlpack.yml

@@ -3,8 +3,8 @@ name: advanced-security/javascript-sap-cap-queries-tests
 version: 0.2.0
 extractor: javascript
 dependencies:
-  codeql/javascript-all: "^1.1.0"
-  codeql/javascript-queries: "^1.0.3"
+  codeql/javascript-all: "^1.1.1"
+  codeql/javascript-queries: "^1.1.0"
   advanced-security/javascript-sap-cap-queries: "^0.2.0"
   advanced-security/javascript-sap-cap-models: "^0.2.0"
   advanced-security/javascript-sap-cap-all: "^0.2.0"

javascript/frameworks/ui5/ext/qlpack.yml

@@ -3,6 +3,6 @@ library: true
 name: advanced-security/javascript-sap-ui5-models
 version: 0.6.0
 extensionTargets:
-  codeql/javascript-all: "^1.1.0"
+  codeql/javascript-all: "^1.1.1"
 dataExtensions:
   - "*.model.yml"

javascript/frameworks/ui5/lib/advanced_security/javascript/frameworks/ui5/UI5View.qll

@@ -956,8 +956,6 @@ class UI5Handler extends FunctionNode {
  * Models controller references in event handlers as types
  */
 class ControlTypeInHandlerModel extends ModelInput::TypeModel {
-  // TODO (see https://github.com/github/codeql/pull/14120)
-  // override predicate isTypeUsed(string type) { type = any(UI5Control c).getImportPath() }
   override DataFlow::CallNode getASource(string type) {
     // oEvent.getSource() is of the type of the Control calling the handler
     exists(UI5Handler h |
@@ -972,14 +970,10 @@ class ControlTypeInHandlerModel extends ModelInput::TypeModel {
       result = c.getAReference()
     )
   }
-}
 
-/**
- * A workaround for the interfearence of pruning with TypeModel
- * TODO remove after https://github.com/github/codeql/pull/14120
- */
-class DisablePruning extends ModelInput::TypeModelCsv {
-  override predicate row(string row) {
-    row = any(UI5Control c).getImportPath() + ";global;DummyAccessPathForPruning"
-  }
+  /**
+   * Prevents model pruning for `ControlType`types
+   */
+  bindingset[type]
+  override predicate isTypeUsed(string type) { any() }
 }

javascript/frameworks/ui5/lib/codeql-pack.lock.yml

@@ -2,23 +2,23 @@
 lockVersion: 1.0.0
 dependencies:
   codeql/dataflow:
-    version: 1.0.3
+    version: 1.0.4
   codeql/javascript-all:
-    version: 1.1.0
+    version: 1.1.1
   codeql/mad:
-    version: 1.0.3
+    version: 1.0.4
   codeql/regex:
-    version: 1.0.3
+    version: 1.0.4
   codeql/ssa:
-    version: 1.0.3
+    version: 1.0.4
   codeql/tutorial:
-    version: 1.0.3
+    version: 1.0.4
   codeql/typetracking:
-    version: 1.0.3
+    version: 1.0.4
   codeql/util:
-    version: 1.0.3
+    version: 1.0.4
   codeql/xml:
-    version: 1.0.3
+    version: 1.0.4
   codeql/yaml:
-    version: 1.0.3
+    version: 1.0.4
 compiled: false