From 102b187c35d50f1bd05fed5462fded90ba3200c8 Mon Sep 17 00:00:00 2001 From: Asger F Date: Thu, 23 Jan 2025 12:53:18 +0100 Subject: [PATCH] JS: Ignore experimental queries for now --- .../Security/CWE-099/EnvValueAndKeyInjection.ql | 6 ------ .../Security/CWE-347/decodeJwtWithoutVerification.ql | 6 ------ 2 files changed, 12 deletions(-) diff --git a/javascript/ql/src/experimental/Security/CWE-099/EnvValueAndKeyInjection.ql b/javascript/ql/src/experimental/Security/CWE-099/EnvValueAndKeyInjection.ql index 848e64b5d7d1..e66406f84053 100644 --- a/javascript/ql/src/experimental/Security/CWE-099/EnvValueAndKeyInjection.ql +++ b/javascript/ql/src/experimental/Security/CWE-099/EnvValueAndKeyInjection.ql @@ -33,12 +33,6 @@ module EnvValueAndKeyInjectionConfig implements DataFlow::ConfigSig { ) ) } - - predicate observeDiffInformedIncrementalMode() { - // TODO(diff-informed): Manually verify if config can be diff-informed. - // ql/src/experimental/Security/CWE-099/EnvValueAndKeyInjection.ql:71: Column 1 does not select a source or sink originating from the flow call on line 68 - none() - } } module EnvValueAndKeyInjectionFlow = TaintTracking::Global; diff --git a/javascript/ql/src/experimental/Security/CWE-347/decodeJwtWithoutVerification.ql b/javascript/ql/src/experimental/Security/CWE-347/decodeJwtWithoutVerification.ql index e566b0d74fce..429744bbbd1d 100644 --- a/javascript/ql/src/experimental/Security/CWE-347/decodeJwtWithoutVerification.ql +++ b/javascript/ql/src/experimental/Security/CWE-347/decodeJwtWithoutVerification.ql @@ -27,12 +27,6 @@ module VerifiedDecodeConfig implements DataFlow::ConfigSig { predicate isSource(DataFlow::Node source) { source instanceof ActiveThreatModelSource } predicate isSink(DataFlow::Node sink) { sink = verifiedDecode() } - - predicate observeDiffInformedIncrementalMode() { - // TODO(diff-informed): Manually verify if config can be diff-informed. - // ql/src/experimental/Security/CWE-347/decodeJwtWithoutVerification.ql:42: Column 5 does not select a source or sink originating from the flow call on line 41 - none() - } } module VerifiedDecodeFlow = TaintTracking::Global;