update-codeql-query-dataflow-java

What problem does it solve?

Java and Kotlin CodeQL queries often rely on the legacy v1 dataflow API, which makes maintenance and modernization difficult. This skill provides a clear migration path to the modern v2 API using DataFlow::ConfigSig modules while preserving query results.

Core Features & Use Cases

• Convert v1 DataFlow::Configuration implementations to v2 DataFlow::ConfigSig modules.
• Rename predicates: isSanitizer to isBarrier and isAdditionalTaintStep to isAdditionalFlowStep, with behavior preserved.
• Replace cfg.hasFlow calls with module-based flow predicates (e.g., MyFlow::flow) and update path queries accordingly.
• Enable a TDD-driven migration workflow: establish baselines, run migrations, verify exact result equivalence, and update query metadata.
• Address Java/Kotlin-specific patterns (RemoteFlowSource, Spring/Servlet sources, lambdas, streams) during migration.

Quick Start

Perform a mechanical migration of a sample Java/Kotlin dataflow query from v1 to v2, convert configuration classes to modules, and run tests to verify equivalence with the original baseline.