Which feature describes the flow of information between a source and a sink in your code?

Prepare for the GitHub Advanced Security Certification Test. Practice with multiple choice questions, detailed explanations, and hints. Achieve success on your first attempt!

Multiple Choice

Which feature describes the flow of information between a source and a sink in your code?

Explanation:
Path queries best describe the flow of information between a source and a sink in your code. They analyze the sequence of statements and function calls data can traverse from where it enters (the source) to where a sensitive action occurs (the sink). This focus on end-to-end data movement makes them ideal for identifying unsafe data flows, such as tainted input reaching a database query or file write without proper sanitization. The other options don’t center on mapping that complete path: alert queries trigger on specific conditions but don’t inherently trace data from source to sink; query suites are just collections of queries; and QL packs are packaging for queries rather than mechanisms to model data flow.

Path queries best describe the flow of information between a source and a sink in your code. They analyze the sequence of statements and function calls data can traverse from where it enters (the source) to where a sensitive action occurs (the sink). This focus on end-to-end data movement makes them ideal for identifying unsafe data flows, such as tainted input reaching a database query or file write without proper sanitization. The other options don’t center on mapping that complete path: alert queries trigger on specific conditions but don’t inherently trace data from source to sink; query suites are just collections of queries; and QL packs are packaging for queries rather than mechanisms to model data flow.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy