├── .editorconfig ├── .eslintrc.js ├── .github ├── CODEOWNERS └── workflows │ ├── cleanup-artifacts.yml │ ├── pr-check.yml │ └── release.yml ├── .gitignore ├── .jscpd.json ├── .prettierrc ├── CODE_OF_CONDUCT.md ├── CONTRIBUTING.md ├── LEGAL.md ├── LICENSE ├── README.md ├── README_ZH.md ├── docs ├── guide │ └── README.md └── user-practice │ ├── README.md │ └── README_ZH.md ├── folder-img ├── Structure-ZH.png ├── Structure.jpg ├── contactus.png ├── logo.png ├── newLanguage-ZH.jpg ├── newLanguage.jpg ├── xastTest-ZH.jpg └── xastTest.jpg ├── install_deps.sh ├── js.editorconfig ├── package.json ├── resource ├── checker │ ├── checker-config.json │ └── checker-pack-config.json ├── example-rule-config │ ├── rule_config_demo_with_entrypoints.json │ ├── rule_config_go.json │ ├── rule_config_go_for_real_sinks.json │ ├── rule_config_java.json │ ├── rule_config_js.json │ ├── rule_config_python.json │ ├── rule_config_sanitizer_for_java_example.json │ └── rule_config_test.json ├── java │ └── class-hierarchy-and-modeling.json ├── python │ └── python-default-rule.json └── tag-propagation │ └── lib-func-tag-propagation-rule.json ├── src ├── checker │ ├── antql │ │ ├── rules │ │ │ ├── antql-getbaseclass.ts │ │ │ ├── antql-getdefinition.ts │ │ │ ├── antql-getsubclass.ts │ │ │ ├── antql-hasflow.ts │ │ │ ├── antql-hasfunctioncall.ts │ │ │ └── antql-hasproperty.ts │ │ └── util │ │ │ ├── entrypoint-util.ts │ │ │ ├── location-util.ts │ │ │ ├── qid-unify-util.ts │ │ │ └── symbol-util.ts │ ├── callgraph │ │ └── callgraph-checker.ts │ ├── common │ │ ├── checker-kit.ts │ │ ├── checker.ts │ │ ├── full-callgraph-file-entrypoint.ts │ │ ├── output │ │ │ ├── callgraph-output-strategy.ts │ │ │ ├── interactive-output-strategy.ts │ │ │ └── taint-output-strategy.ts │ │ ├── ql-uast-convert │ │ │ └── converter.ts │ │ ├── rules-basic-handler.ts │ │ └── value │ │ │ ├── nd-result-with-matched-sanitizer-tag.ts │ │ │ ├── sanitizer-callstack-element.ts │ │ │ ├── sanitizer-result.ts │ │ │ └── sanitizer-tag.ts │ ├── sanitizer │ │ └── sanitizer-checker.ts │ ├── sdk │ │ ├── get-ast-source-code-checker.ts │ │ └── get-file-ast-checker.ts │ └── taint │ │ ├── common-kit │ │ ├── entry-points-util.ts │ │ ├── sink-util.ts │ │ ├── source-util.ts │ │ └── taint-finding-util.ts │ │ ├── go │ │ ├── cobra-command-checker.ts │ │ ├── echo-entrypoint-collect-checker.ts │ │ ├── gRpc-entrypoint-collect-checker.ts │ │ ├── gin-default-taint-checker.ts │ │ ├── gin-taint-checker.ts │ │ ├── go-default-taint-checker.ts │ │ ├── gorilla-mux-entrypoint-collect-checker.ts │ │ ├── main-entrypoint-collect-checker.ts │ │ ├── restful-entrypoint-collect-checker.ts │ │ ├── sync-once-do-checker.ts │ │ ├── urfave-cli-checker.ts │ │ └── util.ts │ │ ├── java │ │ ├── java-default-taint-checker.ts │ │ ├── java-taint-abstract-checker.ts │ │ └── java-taint-checker.ts │ │ ├── js │ │ ├── egg-taint-checker.ts │ │ ├── express │ │ │ └── express-taint-checker.ts │ │ ├── js-taint-checker.ts │ │ └── source-util-for-egg.ts │ │ ├── python │ │ ├── django-taint-checker.ts │ │ ├── python-default-taint-checker.ts │ │ ├── python-taint-abstract-checker.ts │ │ └── python-taint-checker.ts │ │ ├── taint-checker.ts │ │ └── test-taint-checker.ts ├── client.ts ├── config.ts ├── engine │ ├── analyzer │ │ ├── common │ │ │ ├── analyzer.ts │ │ │ ├── checker-manager.ts │ │ │ ├── common-types.ts │ │ │ ├── current-entrypoint.ts │ │ │ ├── entrypoint.ts │ │ │ ├── exception-handler.ts │ │ │ ├── index.ts │ │ │ ├── initializer.ts │ │ │ ├── memSpace.ts │ │ │ ├── memState.ts │ │ │ ├── memStateBVT.ts │ │ │ ├── native-resolver.ts │ │ │ ├── output-strategy-auto-register.ts │ │ │ ├── output-strategy.ts │ │ │ ├── result-manager.ts │ │ │ ├── sarif.ts │ │ │ ├── scope.ts │ │ │ ├── source-line.ts │ │ │ ├── sym-address.ts │ │ │ ├── tags.ts │ │ │ └── value │ │ │ │ ├── bvt.ts │ │ │ │ ├── constructor.ts │ │ │ │ ├── function.ts │ │ │ │ ├── object.ts │ │ │ │ ├── package.ts │ │ │ │ ├── primitive.ts │ │ │ │ ├── scoped.ts │ │ │ │ ├── symbolic.ts │ │ │ │ ├── undefine.ts │ │ │ │ ├── uninit.ts │ │ │ │ ├── union.ts │ │ │ │ ├── unit.js │ │ │ │ ├── unkown.ts │ │ │ │ └── valueUtil.ts │ │ ├── golang │ │ │ ├── common │ │ │ │ ├── entrypoint-collector │ │ │ │ │ └── go-default-entrypoint.ts │ │ │ │ └── go-analyzer.ts │ │ │ └── gin │ │ │ │ └── entrypoint-collector │ │ │ │ └── gin-default-entrypoint.ts │ │ ├── java │ │ │ ├── common │ │ │ │ ├── builtins │ │ │ │ │ ├── atomicreference-builtins.ts │ │ │ │ │ ├── buffer.ts │ │ │ │ │ ├── collection-builtins.ts │ │ │ │ │ ├── completablefuture-builtins.ts │ │ │ │ │ ├── executor-builtins.ts │ │ │ │ │ ├── hashmap-builtins.ts │ │ │ │ │ ├── hashset-builtins.ts │ │ │ │ │ ├── list-builtins.ts │ │ │ │ │ ├── lombok.ts │ │ │ │ │ ├── map-builtins.ts │ │ │ │ │ ├── queue-builtins.ts │ │ │ │ │ ├── set-builtins.ts │ │ │ │ │ ├── stack-builtins.ts │ │ │ │ │ ├── stringbuffer-builtins.ts │ │ │ │ │ ├── stringbuilder-builtins.ts │ │ │ │ │ └── timer-builtins.ts │ │ │ │ ├── entrypoint-collector │ │ │ │ │ └── java-default-entrypoint.ts │ │ │ │ ├── java-analyzer.ts │ │ │ │ └── java-initializer.ts │ │ │ └── spring │ │ │ │ ├── entrypoint-collector │ │ │ │ └── spring-default-entrypoint.ts │ │ │ │ ├── spring-analyzer.ts │ │ │ │ └── spring-initializer.ts │ │ ├── javascript │ │ │ ├── common │ │ │ │ ├── builtins │ │ │ │ │ ├── array-builtins.ts │ │ │ │ │ ├── function.ts │ │ │ │ │ ├── map-builtins.ts │ │ │ │ │ ├── operator-builtins.ts │ │ │ │ │ ├── promise.ts │ │ │ │ │ ├── reflect-builtins.ts │ │ │ │ │ ├── require.ts │ │ │ │ │ └── set-builtins.ts │ │ │ │ ├── js-analyzer.ts │ │ │ │ └── js-initializer.ts │ │ │ └── egg │ │ │ │ ├── egg-analyzer.ts │ │ │ │ ├── egg-common.ts │ │ │ │ ├── egg-initializer.ts │ │ │ │ └── entrypoint-collector │ │ │ │ └── egg-http.ts │ │ └── python │ │ │ ├── common │ │ │ ├── entrypoint-collector │ │ │ │ ├── python-entrypoint-source.ts │ │ │ │ └── python-entrypoint.ts │ │ │ ├── python-analyzer.ts │ │ │ └── python-import-resolver.ts │ │ │ ├── fastapi │ │ │ └── entrypoint-collector │ │ │ │ └── fastapi-entrypoint.ts │ │ │ ├── flask │ │ │ └── entrypoint-collector │ │ │ │ └── flask-default-entrypoint.ts │ │ │ ├── inference │ │ │ └── entrypoint-collector │ │ │ │ └── inference-default-entrypoint.ts │ │ │ └── mcp │ │ │ └── entrypoint-collector │ │ │ └── mcp-default-entrypoint.ts │ ├── parser │ │ ├── golang │ │ │ └── go-ast-builder.ts │ │ ├── java │ │ │ └── java-ast-builder.ts │ │ ├── javascript │ │ │ └── js-ast-builder.ts │ │ ├── parsing.ts │ │ ├── python │ │ │ └── python-ast-builder.ts │ │ └── uast-sanity.ts │ └── util │ │ ├── state-util.ts │ │ ├── type-util.ts │ │ └── value-util.ts ├── interface │ ├── gulpfile-cli.ts │ └── starter.ts ├── main.ts ├── report │ └── report.sarif ├── resolver │ ├── common │ │ ├── type-related-info-resolver.ts │ │ ├── value │ │ │ ├── ast-and-scope.ts │ │ │ ├── class-hierarchy.ts │ │ │ ├── declaration.ts │ │ │ ├── invocation.ts │ │ │ └── type-related-info-result.ts │ │ └── visitor.ts │ ├── go │ │ └── go-type-related-info-resolver.ts │ └── java │ │ └── java-type-related-info-resolver.ts └── util │ ├── ast-util.ts │ ├── bigraph.ts │ ├── bitset.ts │ ├── clone-util.ts │ ├── common-util.ts │ ├── constant.ts │ ├── diagnostics-log-util.ts │ ├── error-code.ts │ ├── file-util.ts │ ├── finding-util.ts │ ├── format-util.ts │ ├── framework-util.ts │ ├── graph.ts │ ├── hash-util.ts │ ├── loader.ts │ ├── logger.ts │ ├── memory-util.ts │ ├── olist.ts │ ├── performance-tracker.ts │ ├── statistics.ts │ ├── value-formatter.ts │ └── variable-util.ts ├── test.js ├── test ├── go │ ├── expect │ │ └── gobenchmark-expect.json │ ├── prepare-go-benchmark.ts │ ├── rule_config.json │ └── test-go-benchmark.ts ├── java │ ├── expect │ │ └── sast-java-expect.result │ ├── prepare-java-benchmark.ts │ ├── rule_config_xast_java.json │ └── test-java-benchmark.ts ├── javascript │ ├── expect │ │ └── jsbenchmark-expect.json │ ├── prepare-js-benchmark.ts │ ├── rule_config.json │ └── test-js-benchmark.ts ├── python │ ├── expect │ │ └── pythonbenchmark-expect.result │ ├── prepare-python-benchmark.ts │ ├── rule_config_xast_python3.json │ └── test-python-benchmark.ts └── test-utils.js └── tsconfig.json /.editorconfig: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/.editorconfig -------------------------------------------------------------------------------- /.eslintrc.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/.eslintrc.js -------------------------------------------------------------------------------- /.github/CODEOWNERS: -------------------------------------------------------------------------------- 1 | * @AntJiuFo @Arielwyy @alipaydeshui 2 | -------------------------------------------------------------------------------- /.github/workflows/cleanup-artifacts.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/.github/workflows/cleanup-artifacts.yml -------------------------------------------------------------------------------- /.github/workflows/pr-check.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/.github/workflows/pr-check.yml -------------------------------------------------------------------------------- /.github/workflows/release.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/.github/workflows/release.yml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/.gitignore -------------------------------------------------------------------------------- /.jscpd.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/.jscpd.json -------------------------------------------------------------------------------- /.prettierrc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/.prettierrc -------------------------------------------------------------------------------- /CODE_OF_CONDUCT.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/CODE_OF_CONDUCT.md -------------------------------------------------------------------------------- /CONTRIBUTING.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/CONTRIBUTING.md -------------------------------------------------------------------------------- /LEGAL.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/LEGAL.md -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/README.md -------------------------------------------------------------------------------- /README_ZH.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/README_ZH.md -------------------------------------------------------------------------------- /docs/guide/README.md: -------------------------------------------------------------------------------- 1 | # Resource 2 | [Official Documentation](https://www.yuque.com/u22090306/bebf6g) -------------------------------------------------------------------------------- /docs/user-practice/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/docs/user-practice/README.md -------------------------------------------------------------------------------- /docs/user-practice/README_ZH.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/docs/user-practice/README_ZH.md -------------------------------------------------------------------------------- /folder-img/Structure-ZH.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/folder-img/Structure-ZH.png -------------------------------------------------------------------------------- /folder-img/Structure.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/folder-img/Structure.jpg -------------------------------------------------------------------------------- /folder-img/contactus.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/folder-img/contactus.png -------------------------------------------------------------------------------- /folder-img/logo.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/folder-img/logo.png -------------------------------------------------------------------------------- /folder-img/newLanguage-ZH.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/folder-img/newLanguage-ZH.jpg -------------------------------------------------------------------------------- /folder-img/newLanguage.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/folder-img/newLanguage.jpg -------------------------------------------------------------------------------- /folder-img/xastTest-ZH.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/folder-img/xastTest-ZH.jpg -------------------------------------------------------------------------------- /folder-img/xastTest.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/folder-img/xastTest.jpg -------------------------------------------------------------------------------- /install_deps.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/install_deps.sh -------------------------------------------------------------------------------- /js.editorconfig: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/js.editorconfig -------------------------------------------------------------------------------- /package.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/package.json -------------------------------------------------------------------------------- /resource/checker/checker-config.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/resource/checker/checker-config.json -------------------------------------------------------------------------------- /resource/checker/checker-pack-config.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/resource/checker/checker-pack-config.json -------------------------------------------------------------------------------- /resource/example-rule-config/rule_config_demo_with_entrypoints.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/resource/example-rule-config/rule_config_demo_with_entrypoints.json -------------------------------------------------------------------------------- /resource/example-rule-config/rule_config_go.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/resource/example-rule-config/rule_config_go.json -------------------------------------------------------------------------------- /resource/example-rule-config/rule_config_go_for_real_sinks.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/resource/example-rule-config/rule_config_go_for_real_sinks.json -------------------------------------------------------------------------------- /resource/example-rule-config/rule_config_java.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/resource/example-rule-config/rule_config_java.json -------------------------------------------------------------------------------- /resource/example-rule-config/rule_config_js.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/resource/example-rule-config/rule_config_js.json -------------------------------------------------------------------------------- /resource/example-rule-config/rule_config_python.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/resource/example-rule-config/rule_config_python.json -------------------------------------------------------------------------------- /resource/example-rule-config/rule_config_sanitizer_for_java_example.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/resource/example-rule-config/rule_config_sanitizer_for_java_example.json -------------------------------------------------------------------------------- /resource/example-rule-config/rule_config_test.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/resource/example-rule-config/rule_config_test.json -------------------------------------------------------------------------------- /resource/java/class-hierarchy-and-modeling.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/resource/java/class-hierarchy-and-modeling.json -------------------------------------------------------------------------------- /resource/python/python-default-rule.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/resource/python/python-default-rule.json -------------------------------------------------------------------------------- /resource/tag-propagation/lib-func-tag-propagation-rule.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/resource/tag-propagation/lib-func-tag-propagation-rule.json -------------------------------------------------------------------------------- /src/checker/antql/rules/antql-getbaseclass.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/antql/rules/antql-getbaseclass.ts -------------------------------------------------------------------------------- /src/checker/antql/rules/antql-getdefinition.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/antql/rules/antql-getdefinition.ts -------------------------------------------------------------------------------- /src/checker/antql/rules/antql-getsubclass.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/antql/rules/antql-getsubclass.ts -------------------------------------------------------------------------------- /src/checker/antql/rules/antql-hasflow.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/antql/rules/antql-hasflow.ts -------------------------------------------------------------------------------- /src/checker/antql/rules/antql-hasfunctioncall.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/antql/rules/antql-hasfunctioncall.ts -------------------------------------------------------------------------------- /src/checker/antql/rules/antql-hasproperty.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/antql/rules/antql-hasproperty.ts -------------------------------------------------------------------------------- /src/checker/antql/util/entrypoint-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/antql/util/entrypoint-util.ts -------------------------------------------------------------------------------- /src/checker/antql/util/location-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/antql/util/location-util.ts -------------------------------------------------------------------------------- /src/checker/antql/util/qid-unify-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/antql/util/qid-unify-util.ts -------------------------------------------------------------------------------- /src/checker/antql/util/symbol-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/antql/util/symbol-util.ts -------------------------------------------------------------------------------- /src/checker/callgraph/callgraph-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/callgraph/callgraph-checker.ts -------------------------------------------------------------------------------- /src/checker/common/checker-kit.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/common/checker-kit.ts -------------------------------------------------------------------------------- /src/checker/common/checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/common/checker.ts -------------------------------------------------------------------------------- /src/checker/common/full-callgraph-file-entrypoint.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/common/full-callgraph-file-entrypoint.ts -------------------------------------------------------------------------------- /src/checker/common/output/callgraph-output-strategy.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/common/output/callgraph-output-strategy.ts -------------------------------------------------------------------------------- /src/checker/common/output/interactive-output-strategy.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/common/output/interactive-output-strategy.ts -------------------------------------------------------------------------------- /src/checker/common/output/taint-output-strategy.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/common/output/taint-output-strategy.ts -------------------------------------------------------------------------------- /src/checker/common/ql-uast-convert/converter.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/common/ql-uast-convert/converter.ts -------------------------------------------------------------------------------- /src/checker/common/rules-basic-handler.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/common/rules-basic-handler.ts -------------------------------------------------------------------------------- /src/checker/common/value/nd-result-with-matched-sanitizer-tag.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/common/value/nd-result-with-matched-sanitizer-tag.ts -------------------------------------------------------------------------------- /src/checker/common/value/sanitizer-callstack-element.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/common/value/sanitizer-callstack-element.ts -------------------------------------------------------------------------------- /src/checker/common/value/sanitizer-result.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/common/value/sanitizer-result.ts -------------------------------------------------------------------------------- /src/checker/common/value/sanitizer-tag.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/common/value/sanitizer-tag.ts -------------------------------------------------------------------------------- /src/checker/sanitizer/sanitizer-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/sanitizer/sanitizer-checker.ts -------------------------------------------------------------------------------- /src/checker/sdk/get-ast-source-code-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/sdk/get-ast-source-code-checker.ts -------------------------------------------------------------------------------- /src/checker/sdk/get-file-ast-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/sdk/get-file-ast-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/common-kit/entry-points-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/common-kit/entry-points-util.ts -------------------------------------------------------------------------------- /src/checker/taint/common-kit/sink-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/common-kit/sink-util.ts -------------------------------------------------------------------------------- /src/checker/taint/common-kit/source-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/common-kit/source-util.ts -------------------------------------------------------------------------------- /src/checker/taint/common-kit/taint-finding-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/common-kit/taint-finding-util.ts -------------------------------------------------------------------------------- /src/checker/taint/go/cobra-command-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/go/cobra-command-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/go/echo-entrypoint-collect-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/go/echo-entrypoint-collect-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/go/gRpc-entrypoint-collect-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/go/gRpc-entrypoint-collect-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/go/gin-default-taint-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/go/gin-default-taint-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/go/gin-taint-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/go/gin-taint-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/go/go-default-taint-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/go/go-default-taint-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/go/gorilla-mux-entrypoint-collect-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/go/gorilla-mux-entrypoint-collect-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/go/main-entrypoint-collect-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/go/main-entrypoint-collect-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/go/restful-entrypoint-collect-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/go/restful-entrypoint-collect-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/go/sync-once-do-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/go/sync-once-do-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/go/urfave-cli-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/go/urfave-cli-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/go/util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/go/util.ts -------------------------------------------------------------------------------- /src/checker/taint/java/java-default-taint-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/java/java-default-taint-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/java/java-taint-abstract-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/java/java-taint-abstract-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/java/java-taint-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/java/java-taint-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/js/egg-taint-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/js/egg-taint-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/js/express/express-taint-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/js/express/express-taint-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/js/js-taint-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/js/js-taint-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/js/source-util-for-egg.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/js/source-util-for-egg.ts -------------------------------------------------------------------------------- /src/checker/taint/python/django-taint-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/python/django-taint-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/python/python-default-taint-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/python/python-default-taint-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/python/python-taint-abstract-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/python/python-taint-abstract-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/python/python-taint-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/python/python-taint-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/taint-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/taint-checker.ts -------------------------------------------------------------------------------- /src/checker/taint/test-taint-checker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/checker/taint/test-taint-checker.ts -------------------------------------------------------------------------------- /src/client.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/client.ts -------------------------------------------------------------------------------- /src/config.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/config.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/analyzer.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/analyzer.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/checker-manager.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/checker-manager.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/common-types.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/common-types.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/current-entrypoint.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/current-entrypoint.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/entrypoint.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/entrypoint.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/exception-handler.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/exception-handler.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/index.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/index.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/initializer.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/initializer.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/memSpace.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/memSpace.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/memState.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/memState.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/memStateBVT.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/memStateBVT.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/native-resolver.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/native-resolver.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/output-strategy-auto-register.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/output-strategy-auto-register.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/output-strategy.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/output-strategy.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/result-manager.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/result-manager.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/sarif.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/sarif.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/scope.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/scope.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/source-line.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/source-line.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/sym-address.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/sym-address.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/tags.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/tags.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/value/bvt.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/value/bvt.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/value/constructor.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/value/constructor.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/value/function.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/value/function.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/value/object.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/value/object.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/value/package.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/value/package.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/value/primitive.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/value/primitive.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/value/scoped.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/value/scoped.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/value/symbolic.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/value/symbolic.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/value/undefine.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/value/undefine.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/value/uninit.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/value/uninit.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/value/union.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/value/union.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/value/unit.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/value/unit.js -------------------------------------------------------------------------------- /src/engine/analyzer/common/value/unkown.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/value/unkown.ts -------------------------------------------------------------------------------- /src/engine/analyzer/common/value/valueUtil.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/common/value/valueUtil.ts -------------------------------------------------------------------------------- /src/engine/analyzer/golang/common/entrypoint-collector/go-default-entrypoint.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/golang/common/entrypoint-collector/go-default-entrypoint.ts -------------------------------------------------------------------------------- /src/engine/analyzer/golang/common/go-analyzer.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/golang/common/go-analyzer.ts -------------------------------------------------------------------------------- /src/engine/analyzer/golang/gin/entrypoint-collector/gin-default-entrypoint.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/golang/gin/entrypoint-collector/gin-default-entrypoint.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/builtins/atomicreference-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/builtins/atomicreference-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/builtins/buffer.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/builtins/buffer.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/builtins/collection-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/builtins/collection-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/builtins/completablefuture-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/builtins/completablefuture-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/builtins/executor-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/builtins/executor-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/builtins/hashmap-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/builtins/hashmap-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/builtins/hashset-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/builtins/hashset-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/builtins/list-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/builtins/list-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/builtins/lombok.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/builtins/lombok.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/builtins/map-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/builtins/map-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/builtins/queue-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/builtins/queue-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/builtins/set-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/builtins/set-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/builtins/stack-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/builtins/stack-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/builtins/stringbuffer-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/builtins/stringbuffer-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/builtins/stringbuilder-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/builtins/stringbuilder-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/builtins/timer-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/builtins/timer-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/entrypoint-collector/java-default-entrypoint.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/entrypoint-collector/java-default-entrypoint.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/java-analyzer.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/java-analyzer.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/common/java-initializer.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/common/java-initializer.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/spring/entrypoint-collector/spring-default-entrypoint.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/spring/entrypoint-collector/spring-default-entrypoint.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/spring/spring-analyzer.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/spring/spring-analyzer.ts -------------------------------------------------------------------------------- /src/engine/analyzer/java/spring/spring-initializer.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/java/spring/spring-initializer.ts -------------------------------------------------------------------------------- /src/engine/analyzer/javascript/common/builtins/array-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/javascript/common/builtins/array-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/javascript/common/builtins/function.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/javascript/common/builtins/function.ts -------------------------------------------------------------------------------- /src/engine/analyzer/javascript/common/builtins/map-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/javascript/common/builtins/map-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/javascript/common/builtins/operator-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/javascript/common/builtins/operator-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/javascript/common/builtins/promise.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/javascript/common/builtins/promise.ts -------------------------------------------------------------------------------- /src/engine/analyzer/javascript/common/builtins/reflect-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/javascript/common/builtins/reflect-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/javascript/common/builtins/require.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/javascript/common/builtins/require.ts -------------------------------------------------------------------------------- /src/engine/analyzer/javascript/common/builtins/set-builtins.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/javascript/common/builtins/set-builtins.ts -------------------------------------------------------------------------------- /src/engine/analyzer/javascript/common/js-analyzer.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/javascript/common/js-analyzer.ts -------------------------------------------------------------------------------- /src/engine/analyzer/javascript/common/js-initializer.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/javascript/common/js-initializer.ts -------------------------------------------------------------------------------- /src/engine/analyzer/javascript/egg/egg-analyzer.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/javascript/egg/egg-analyzer.ts -------------------------------------------------------------------------------- /src/engine/analyzer/javascript/egg/egg-common.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/javascript/egg/egg-common.ts -------------------------------------------------------------------------------- /src/engine/analyzer/javascript/egg/egg-initializer.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/javascript/egg/egg-initializer.ts -------------------------------------------------------------------------------- /src/engine/analyzer/javascript/egg/entrypoint-collector/egg-http.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/javascript/egg/entrypoint-collector/egg-http.ts -------------------------------------------------------------------------------- /src/engine/analyzer/python/common/entrypoint-collector/python-entrypoint-source.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/python/common/entrypoint-collector/python-entrypoint-source.ts -------------------------------------------------------------------------------- /src/engine/analyzer/python/common/entrypoint-collector/python-entrypoint.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/python/common/entrypoint-collector/python-entrypoint.ts -------------------------------------------------------------------------------- /src/engine/analyzer/python/common/python-analyzer.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/python/common/python-analyzer.ts -------------------------------------------------------------------------------- /src/engine/analyzer/python/common/python-import-resolver.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/python/common/python-import-resolver.ts -------------------------------------------------------------------------------- /src/engine/analyzer/python/fastapi/entrypoint-collector/fastapi-entrypoint.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/python/fastapi/entrypoint-collector/fastapi-entrypoint.ts -------------------------------------------------------------------------------- /src/engine/analyzer/python/flask/entrypoint-collector/flask-default-entrypoint.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/python/flask/entrypoint-collector/flask-default-entrypoint.ts -------------------------------------------------------------------------------- /src/engine/analyzer/python/inference/entrypoint-collector/inference-default-entrypoint.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/python/inference/entrypoint-collector/inference-default-entrypoint.ts -------------------------------------------------------------------------------- /src/engine/analyzer/python/mcp/entrypoint-collector/mcp-default-entrypoint.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/analyzer/python/mcp/entrypoint-collector/mcp-default-entrypoint.ts -------------------------------------------------------------------------------- /src/engine/parser/golang/go-ast-builder.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/parser/golang/go-ast-builder.ts -------------------------------------------------------------------------------- /src/engine/parser/java/java-ast-builder.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/parser/java/java-ast-builder.ts -------------------------------------------------------------------------------- /src/engine/parser/javascript/js-ast-builder.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/parser/javascript/js-ast-builder.ts -------------------------------------------------------------------------------- /src/engine/parser/parsing.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/parser/parsing.ts -------------------------------------------------------------------------------- /src/engine/parser/python/python-ast-builder.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/parser/python/python-ast-builder.ts -------------------------------------------------------------------------------- /src/engine/parser/uast-sanity.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/parser/uast-sanity.ts -------------------------------------------------------------------------------- /src/engine/util/state-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/util/state-util.ts -------------------------------------------------------------------------------- /src/engine/util/type-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/util/type-util.ts -------------------------------------------------------------------------------- /src/engine/util/value-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/engine/util/value-util.ts -------------------------------------------------------------------------------- /src/interface/gulpfile-cli.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/interface/gulpfile-cli.ts -------------------------------------------------------------------------------- /src/interface/starter.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/interface/starter.ts -------------------------------------------------------------------------------- /src/main.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/main.ts -------------------------------------------------------------------------------- /src/report/report.sarif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/report/report.sarif -------------------------------------------------------------------------------- /src/resolver/common/type-related-info-resolver.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/resolver/common/type-related-info-resolver.ts -------------------------------------------------------------------------------- /src/resolver/common/value/ast-and-scope.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/resolver/common/value/ast-and-scope.ts -------------------------------------------------------------------------------- /src/resolver/common/value/class-hierarchy.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/resolver/common/value/class-hierarchy.ts -------------------------------------------------------------------------------- /src/resolver/common/value/declaration.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/resolver/common/value/declaration.ts -------------------------------------------------------------------------------- /src/resolver/common/value/invocation.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/resolver/common/value/invocation.ts -------------------------------------------------------------------------------- /src/resolver/common/value/type-related-info-result.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/resolver/common/value/type-related-info-result.ts -------------------------------------------------------------------------------- /src/resolver/common/visitor.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/resolver/common/visitor.ts -------------------------------------------------------------------------------- /src/resolver/go/go-type-related-info-resolver.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/resolver/go/go-type-related-info-resolver.ts -------------------------------------------------------------------------------- /src/resolver/java/java-type-related-info-resolver.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/resolver/java/java-type-related-info-resolver.ts -------------------------------------------------------------------------------- /src/util/ast-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/ast-util.ts -------------------------------------------------------------------------------- /src/util/bigraph.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/bigraph.ts -------------------------------------------------------------------------------- /src/util/bitset.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/bitset.ts -------------------------------------------------------------------------------- /src/util/clone-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/clone-util.ts -------------------------------------------------------------------------------- /src/util/common-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/common-util.ts -------------------------------------------------------------------------------- /src/util/constant.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/constant.ts -------------------------------------------------------------------------------- /src/util/diagnostics-log-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/diagnostics-log-util.ts -------------------------------------------------------------------------------- /src/util/error-code.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/error-code.ts -------------------------------------------------------------------------------- /src/util/file-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/file-util.ts -------------------------------------------------------------------------------- /src/util/finding-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/finding-util.ts -------------------------------------------------------------------------------- /src/util/format-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/format-util.ts -------------------------------------------------------------------------------- /src/util/framework-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/framework-util.ts -------------------------------------------------------------------------------- /src/util/graph.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/graph.ts -------------------------------------------------------------------------------- /src/util/hash-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/hash-util.ts -------------------------------------------------------------------------------- /src/util/loader.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/loader.ts -------------------------------------------------------------------------------- /src/util/logger.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/logger.ts -------------------------------------------------------------------------------- /src/util/memory-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/memory-util.ts -------------------------------------------------------------------------------- /src/util/olist.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/olist.ts -------------------------------------------------------------------------------- /src/util/performance-tracker.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/performance-tracker.ts -------------------------------------------------------------------------------- /src/util/statistics.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/statistics.ts -------------------------------------------------------------------------------- /src/util/value-formatter.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/value-formatter.ts -------------------------------------------------------------------------------- /src/util/variable-util.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/src/util/variable-util.ts -------------------------------------------------------------------------------- /test.js: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /test/go/expect/gobenchmark-expect.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/test/go/expect/gobenchmark-expect.json -------------------------------------------------------------------------------- /test/go/prepare-go-benchmark.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/test/go/prepare-go-benchmark.ts -------------------------------------------------------------------------------- /test/go/rule_config.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/test/go/rule_config.json -------------------------------------------------------------------------------- /test/go/test-go-benchmark.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/test/go/test-go-benchmark.ts -------------------------------------------------------------------------------- /test/java/expect/sast-java-expect.result: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/test/java/expect/sast-java-expect.result -------------------------------------------------------------------------------- /test/java/prepare-java-benchmark.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/test/java/prepare-java-benchmark.ts -------------------------------------------------------------------------------- /test/java/rule_config_xast_java.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/test/java/rule_config_xast_java.json -------------------------------------------------------------------------------- /test/java/test-java-benchmark.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/test/java/test-java-benchmark.ts -------------------------------------------------------------------------------- /test/javascript/expect/jsbenchmark-expect.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/test/javascript/expect/jsbenchmark-expect.json -------------------------------------------------------------------------------- /test/javascript/prepare-js-benchmark.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/test/javascript/prepare-js-benchmark.ts -------------------------------------------------------------------------------- /test/javascript/rule_config.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/test/javascript/rule_config.json -------------------------------------------------------------------------------- /test/javascript/test-js-benchmark.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/test/javascript/test-js-benchmark.ts -------------------------------------------------------------------------------- /test/python/expect/pythonbenchmark-expect.result: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/test/python/expect/pythonbenchmark-expect.result -------------------------------------------------------------------------------- /test/python/prepare-python-benchmark.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/test/python/prepare-python-benchmark.ts -------------------------------------------------------------------------------- /test/python/rule_config_xast_python3.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/test/python/rule_config_xast_python3.json -------------------------------------------------------------------------------- /test/python/test-python-benchmark.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/test/python/test-python-benchmark.ts -------------------------------------------------------------------------------- /test/test-utils.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/test/test-utils.js -------------------------------------------------------------------------------- /tsconfig.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/antgroup/YASA-Engine/HEAD/tsconfig.json --------------------------------------------------------------------------------