Merge pull request #18535 from GeekMasher/rust-sql-injection

Rust: Add Models As Data Sinks for SQL Injection

Author: geoffw0

rust/ql/lib/codeql/rust/security/SqlInjectionExtensions.qll

@@ -6,6 +6,7 @@
 
 import rust
 private import codeql.rust.dataflow.DataFlow
+private import codeql.rust.dataflow.internal.DataFlowImpl
 private import codeql.rust.Concepts
 private import codeql.util.Unit
 
@@ -47,4 +48,9 @@ module SqlInjection {
   class SqlExecutionAsSink extends Sink {
     SqlExecutionAsSink() { this = any(SqlExecution e).getSql() }
   }
+
+  /** A sink for sql-injection from model data. */
+  private class ModelsAsDataSinks extends Sink {
+    ModelsAsDataSinks() { sinkNode(this, "sql-injection") }
+  }
 }