From 1e2579bc32b20c5e67cde47ca0e9595d1e0615f1 Mon Sep 17 00:00:00 2001 From: Luke Cartey Date: Fri, 7 Mar 2025 11:17:01 +0000 Subject: [PATCH] Add Customizations.qll files These files enable the packs to be added to a CodeQL CLI bundle as customization packs, enabling them to modify out-of-the-box queries. --- .../javascript_sap_cap_all/Customizations.qll | 6 ++++++ javascript/frameworks/cap/lib/qlpack.yml | 1 - .../javascript_sap_ui5_all/Customizations.qll | 6 ++++++ javascript/frameworks/ui5/lib/qlpack.yml | 1 - 4 files changed, 12 insertions(+), 2 deletions(-) create mode 100644 javascript/frameworks/cap/lib/advanced_security/javascript_sap_cap_all/Customizations.qll create mode 100644 javascript/frameworks/ui5/lib/advanced_security/javascript_sap_ui5_all/Customizations.qll diff --git a/javascript/frameworks/cap/lib/advanced_security/javascript_sap_cap_all/Customizations.qll b/javascript/frameworks/cap/lib/advanced_security/javascript_sap_cap_all/Customizations.qll new file mode 100644 index 000000000..81f31da81 --- /dev/null +++ b/javascript/frameworks/cap/lib/advanced_security/javascript_sap_cap_all/Customizations.qll @@ -0,0 +1,6 @@ +// This file is included for use in custom CodeQL bundles (https://github.com/advanced-security/codeql-bundle). +// The contents of this file will be included in the standard library `Customizations.qll`, and will therefore +// be included in the out-of-the-box security queries. +// +// We import under alias to avoid any potential naming conflicts +import advanced_security.javascript.frameworks.cap.RemoteFlowSources as CAPRemoteFlowSources diff --git a/javascript/frameworks/cap/lib/qlpack.yml b/javascript/frameworks/cap/lib/qlpack.yml index f17f2704e..56378c6c5 100644 --- a/javascript/frameworks/cap/lib/qlpack.yml +++ b/javascript/frameworks/cap/lib/qlpack.yml @@ -6,4 +6,3 @@ suites: codeql-suites extractor: javascript dependencies: codeql/javascript-all: "^2.4.0" - advanced-security/javascript-sap-cap-models: "^0.4.0" diff --git a/javascript/frameworks/ui5/lib/advanced_security/javascript_sap_ui5_all/Customizations.qll b/javascript/frameworks/ui5/lib/advanced_security/javascript_sap_ui5_all/Customizations.qll new file mode 100644 index 000000000..e6f989590 --- /dev/null +++ b/javascript/frameworks/ui5/lib/advanced_security/javascript_sap_ui5_all/Customizations.qll @@ -0,0 +1,6 @@ +// This file is included for use in custom CodeQL bundles (https://github.com/advanced-security/codeql-bundle). +// The contents of this file will be included in the standard library `Customizations.qll`, and will therefore +// be included in the out-of-the-box security queries. +// +// We import under alias to avoid any potential naming conflicts +import advanced_security.javascript.frameworks.ui5.RemoteFlowSources as UI5RemoteFlowSources diff --git a/javascript/frameworks/ui5/lib/qlpack.yml b/javascript/frameworks/ui5/lib/qlpack.yml index 51e9a6f91..b7e6f20d3 100644 --- a/javascript/frameworks/ui5/lib/qlpack.yml +++ b/javascript/frameworks/ui5/lib/qlpack.yml @@ -6,4 +6,3 @@ suites: codeql-suites extractor: javascript dependencies: codeql/javascript-all: "^2.4.0" - advanced-security/javascript-sap-ui5-models: "^0.7.0"