codeql icon indicating copy to clipboard operation
codeql copied to clipboard

Published 20 hours ago verified publisher icon github

Go: Implement `stdin` models

Open egregius313 opened this issue 1 year ago • 0 comments
trafficstars

Adds source models for the stdin threat model.

These models are implemented in QL instead of MaD due to limitations in MaD:

  • MaD does not currently handle variable arguments as well as getAnImplicitVarargsArgument
  • MaD has a way to access fields on structs, but not variables in a package. (This is generally not that important, but it is necessary for modeling os.Stdin).

egregius313 avatar Aug 29 '24 18:08 egregius313