codeql icon indicating copy to clipboard operation
codeql copied to clipboard

Published 20 hours ago verified publisher icon github

multiple databases

Open leila97 opened this issue 3 years ago • 1 comments
trafficstars

A data flow involves multiple databases, can their data flows be linked together?

For example, partial filtering is done at python, and eventually the functionality is implemented at the go repository. Writing only the go data stream without considering the python data stream will generate a lot of false positives.

leila97 avatar Sep 27 '22 06:09 leila97

A database can only support one language. If the interface between the 2 languages is well specified (i.e data passed is always user controlled data or must not be user controlled) then you could add the interface as either a source or a sink and get the place where the problem occurs.

For more complex interfaces It is also possible to write a query that generates data that you then use in the source of another query.

alexet avatar Sep 27 '22 11:09 alexet

How do I correlate query results from two databases? Or is it only possible to troubleshoot manually.

leila97 avatar Oct 31 '22 11:10 leila97

You would need to export results as either CSV or SARIF according to your needs (https://codeql.github.com/docs/codeql-cli/analyzing-databases-with-the-codeql-cli/) and relate them outside of CodeQL.

smowton avatar Oct 31 '22 12:10 smowton