Rust: Add rust/summary/taint-sources query.

geoffw0 · geoffw0 · commit 3fa93e5ca9d3 · 2024-11-22T09:13:38.000Z
diff --git a/rust/ql/src/queries/summary/TaintSources.ql b/rust/ql/src/queries/summary/TaintSources.ql
@@ -0,0 +1,17 @@
+/**
+ * @name Taint Sources
+ * @description List all sources of untrusted input that have been idenfitied
+ *              in the database.
+ * @kind problem
+ * @problem.severity info
+ * @id rust/summary/taint-sources
+ * @tags summary
+ */
+
+import rust
+import codeql.rust.Concepts
+
+from ThreatModelSource s, string defaultString
+where
+  if s instanceof ActiveThreatModelSource then defaultString = ", DEFAULT" else defaultString = ""
+select s, s.getSourceType() + " (" + s.getThreatModel() + defaultString + ")"
