joern
joern copied to clipboard
joernio
Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.gg/vv4MH284Hc
Method/type `BINDING` edges are missing. In Ruby, there is a helper method that looks as follows: ```scala protected def createMethodTypeBindings(method: NewMethod, typeDecl: NewTypeDecl): Unit = { val binding = bindingNode("",...
val source = cpg.call.code("\$_.*") val sink = cpg.call("unlink").argument val flows = sink.reachableByFlows(source) flows.p How can I filter out the preg_match function in flows? 
For the following code, I cannot accurately locate the callee of the test method. How should I solve it? Or can I manually connect through statements? ``` package main import...
i want to add a custom data-flow sematic in joern shell with following code: ``` val parser = new io.joern.dataflowengineoss.semanticsloader.FullNameSemanticsParser() val flowtransfer = """"strncpy" 4 -> 4""" val rule =...
**Describe the bug** The function signature does not match the prototype in the code (see below). **To Reproduce** Steps to reproduce the behavior: [vuln.zip](https://github.com/user-attachments/files/20094171/vuln.zip) 0. unzip the attached zip file...
**Describe the bug** Project directory:  File content: **vis.py:**  **__init__.py:**  **inference_coco.py:**  The "methodFullName" attribute of the "run" call node in vis.py does not match the "fullName" attribute...
PHP APIs are case-insensitive, like `echo` is the same as `eCHo`. Add `(?i)` in the queries to realize this.
**Is your feature request related to a problem? Please describe.** I'm writing an import optimization script for java programs, yet when I have more than one wildcard import in java...
I've been using joern-parse.bat whose version is 4.0.36 to generate CPGs for C# for taint analysis, but today when I tried version 4.0.336, I found that the generated CPG couldn't...
I'm currently replicating the workflow from a research paper which requires exporting node.csv and edge.csv. It seems that older versions of Joern supported exporting these files. Is this functionality still...
