Merge pull request #47 from GitHubSecurityLab/ca-rw-summaries-sources

CA RW summaries and sources
microsoft · Apr 17, 2024 · a5d8a45 · a5d8a45
2 parents 9ecda65 + 764f6fb
commit a5d8a45
Show file tree

Hide file tree

Showing 608 changed files with 2,091 additions and 1,936 deletions.
diff --git a/ql/lib/ext/generated/composite-actions/actions_actions-runner-controller.model.yml b/ql/lib/ext/generated/composite-actions/actions_actions-runner-controller.model.yml
@@ -3,12 +3,12 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["actions/actions-runner-controller", "*", "inputs.image-tag", "code-injection", "generated"]
-     - ["actions/actions-runner-controller", "*", "inputs.image-name", "code-injection", "generated"]
-     - ["actions/actions-runner-controller", "*", "inputs.arc-controller-namespace", "code-injection", "generated"]
-     - ["actions/actions-runner-controller", "*", "inputs.arc-namespace", "code-injection", "generated"]
-     - ["actions/actions-runner-controller", "*", "inputs.arc-name", "code-injection", "generated"]
-     - ["actions/actions-runner-controller", "*", "inputs.repo-name", "code-injection", "generated"]
-     - ["actions/actions-runner-controller", "*", "inputs.repo-owner", "code-injection", "generated"]
-     - ["actions/actions-runner-controller", "*", "inputs.workflow-file", "code-injection", "generated"]
-     - ["actions/actions-runner-controller", "*", "inputs.auth-token", "code-injection", "generated"]
+     - ["actions/actions-runner-controller", "*", "input.image-tag", "code-injection", "generated"]
+     - ["actions/actions-runner-controller", "*", "input.image-name", "code-injection", "generated"]
+     - ["actions/actions-runner-controller", "*", "input.arc-controller-namespace", "code-injection", "generated"]
+     - ["actions/actions-runner-controller", "*", "input.arc-namespace", "code-injection", "generated"]
+     - ["actions/actions-runner-controller", "*", "input.arc-name", "code-injection", "generated"]
+     - ["actions/actions-runner-controller", "*", "input.repo-name", "code-injection", "generated"]
+     - ["actions/actions-runner-controller", "*", "input.repo-owner", "code-injection", "generated"]
+     - ["actions/actions-runner-controller", "*", "input.workflow-file", "code-injection", "generated"]
+     - ["actions/actions-runner-controller", "*", "input.auth-token", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/adap_flower.model.yml b/ql/lib/ext/generated/composite-actions/adap_flower.model.yml
@@ -3,7 +3,7 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["adap/flower", "*", "inputs.poetry-version", "code-injection", "generated"]
-     - ["adap/flower", "*", "inputs.setuptools-version", "code-injection", "generated"]
-     - ["adap/flower", "*", "inputs.pip-version", "code-injection", "generated"]
-     - ["adap/flower", "*", "inputs.python-version", "code-injection", "generated"]
+     - ["adap/flower", "*", "input.poetry-version", "code-injection", "generated"]
+     - ["adap/flower", "*", "input.setuptools-version", "code-injection", "generated"]
+     - ["adap/flower", "*", "input.pip-version", "code-injection", "generated"]
+     - ["adap/flower", "*", "input.python-version", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/agoric_agoric-sdk.model.yml b/ql/lib/ext/generated/composite-actions/agoric_agoric-sdk.model.yml
@@ -3,9 +3,9 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["agoric/agoric-sdk", "*", "inputs.xsnap-random-init", "code-injection", "generated"]
-     - ["agoric/agoric-sdk", "*", "inputs.path", "code-injection", "generated"]
-     - ["agoric/agoric-sdk", "*", "inputs.ignore-endo-branch", "code-injection", "generated"]
-     - ["agoric/agoric-sdk", "*", "inputs.codecov-token", "code-injection", "generated"]
-     - ["agoric/agoric-sdk", "*", "inputs.datadog-token", "code-injection", "generated"]
-     - ["agoric/agoric-sdk", "*", "inputs.datadog-site", "code-injection", "generated"]
+     - ["agoric/agoric-sdk", "*", "input.xsnap-random-init", "code-injection", "generated"]
+     - ["agoric/agoric-sdk", "*", "input.path", "code-injection", "generated"]
+     - ["agoric/agoric-sdk", "*", "input.ignore-endo-branch", "code-injection", "generated"]
+     - ["agoric/agoric-sdk", "*", "input.codecov-token", "code-injection", "generated"]
+     - ["agoric/agoric-sdk", "*", "input.datadog-token", "code-injection", "generated"]
+     - ["agoric/agoric-sdk", "*", "input.datadog-site", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/airbnb_lottie-ios.model.yml b/ql/lib/ext/generated/composite-actions/airbnb_lottie-ios.model.yml
@@ -3,4 +3,4 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["airbnb/lottie-ios", "*", "inputs.xcode", "code-injection", "generated"]
+     - ["airbnb/lottie-ios", "*", "input.xcode", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/airbytehq_airbyte.model.yml b/ql/lib/ext/generated/composite-actions/airbytehq_airbyte.model.yml
@@ -3,5 +3,5 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["airbytehq/airbyte", "*", "inputs.options", "code-injection", "generated"]
-     - ["airbytehq/airbyte", "*", "inputs.subcommand", "code-injection", "generated"]
+     - ["airbytehq/airbyte", "*", "input.options", "code-injection", "generated"]
+     - ["airbytehq/airbyte", "*", "input.subcommand", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/amazon-ion_ion-java.model.yml b/ql/lib/ext/generated/composite-actions/amazon-ion_ion-java.model.yml
@@ -3,5 +3,5 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["amazon-ion/ion-java", "*", "inputs.project_version", "code-injection", "generated"]
-     - ["amazon-ion/ion-java", "*", "inputs.repo", "code-injection", "generated"]
+     - ["amazon-ion/ion-java", "*", "input.project_version", "code-injection", "generated"]
+     - ["amazon-ion/ion-java", "*", "input.repo", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/anchore_grype.model.yml b/ql/lib/ext/generated/composite-actions/anchore_grype.model.yml
@@ -3,4 +3,4 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["anchore/grype", "*", "inputs.bootstrap-apt-packages", "code-injection", "generated"]
+     - ["anchore/grype", "*", "input.bootstrap-apt-packages", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/anchore_syft.model.yml b/ql/lib/ext/generated/composite-actions/anchore_syft.model.yml
@@ -3,4 +3,4 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["anchore/syft", "*", "inputs.bootstrap-apt-packages", "code-injection", "generated"]
+     - ["anchore/syft", "*", "input.bootstrap-apt-packages", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/angular_dev-infra.model.yml b/ql/lib/ext/generated/composite-actions/angular_dev-infra.model.yml
@@ -3,8 +3,8 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["angular/dev-infra", "*", "inputs.firebase-public-dir", "code-injection", "generated"]
-     - ["angular/dev-infra", "*", "inputs.workflow-artifact-name", "code-injection", "generated"]
-     - ["angular/dev-infra", "*", "inputs.artifact-build-revision", "code-injection", "generated"]
-     - ["angular/dev-infra", "*", "inputs.pull-number", "code-injection", "generated"]
-     - ["angular/dev-infra", "*", "inputs.deploy-directory", "code-injection", "generated"]
+     - ["angular/dev-infra", "*", "input.firebase-public-dir", "code-injection", "generated"]
+     - ["angular/dev-infra", "*", "input.workflow-artifact-name", "code-injection", "generated"]
+     - ["angular/dev-infra", "*", "input.artifact-build-revision", "code-injection", "generated"]
+     - ["angular/dev-infra", "*", "input.pull-number", "code-injection", "generated"]
+     - ["angular/dev-infra", "*", "input.deploy-directory", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/ansible_ansible-lint.model.yml b/ql/lib/ext/generated/composite-actions/ansible_ansible-lint.model.yml
@@ -3,5 +3,5 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["ansible/ansible-lint", "*", "inputs.args", "code-injection", "generated"]
-     - ["ansible/ansible-lint", "*", "inputs.working_directory", "code-injection", "generated"]
+     - ["ansible/ansible-lint", "*", "input.args", "code-injection", "generated"]
+     - ["ansible/ansible-lint", "*", "input.working_directory", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/ansible_awx.model.yml b/ql/lib/ext/generated/composite-actions/ansible_awx.model.yml
@@ -3,5 +3,5 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["ansible/awx", "*", "inputs.log-filename", "code-injection", "generated"]
-     - ["ansible/awx", "*", "inputs.github-token", "code-injection", "generated"]
+     - ["ansible/awx", "*", "input.log-filename", "code-injection", "generated"]
+     - ["ansible/awx", "*", "input.github-token", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/apache_arrow-datafusion.model.yml b/ql/lib/ext/generated/composite-actions/apache_arrow-datafusion.model.yml
@@ -3,4 +3,4 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["apache/arrow-datafusion", "*", "inputs.rust-version", "code-injection", "generated"]
+     - ["apache/arrow-datafusion", "*", "input.rust-version", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/apache_arrow-rs.model.yml b/ql/lib/ext/generated/composite-actions/apache_arrow-rs.model.yml
@@ -3,5 +3,5 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["apache/arrow-rs", "*", "inputs.target", "code-injection", "generated"]
-     - ["apache/arrow-rs", "*", "inputs.rust-version", "code-injection", "generated"]
+     - ["apache/arrow-rs", "*", "input.target", "code-injection", "generated"]
+     - ["apache/arrow-rs", "*", "input.rust-version", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/apache_arrow.model.yml b/ql/lib/ext/generated/composite-actions/apache_arrow.model.yml
@@ -3,4 +3,4 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["apache/arrow", "*", "inputs.upload", "code-injection", "generated"]
+     - ["apache/arrow", "*", "input.upload", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/apache_bookkeeper.model.yml b/ql/lib/ext/generated/composite-actions/apache_bookkeeper.model.yml
@@ -3,4 +3,4 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["apache/bookkeeper", "*", "inputs.mode", "code-injection", "generated"]
+     - ["apache/bookkeeper", "*", "input.mode", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/apache_brpc.model.yml b/ql/lib/ext/generated/composite-actions/apache_brpc.model.yml
@@ -3,4 +3,4 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["apache/brpc", "*", "inputs.options", "code-injection", "generated"]
+     - ["apache/brpc", "*", "input.options", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/apache_camel-k.model.yml b/ql/lib/ext/generated/composite-actions/apache_camel-k.model.yml
@@ -3,15 +3,15 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["apache/camel-k", "*", "inputs.test-suite", "code-injection", "generated"]
-     - ["apache/camel-k", "*", "inputs.image-version", "code-injection", "generated"]
-     - ["apache/camel-k", "*", "inputs.image-registry-insecure", "code-injection", "generated"]
-     - ["apache/camel-k", "*", "inputs.image-name", "code-injection", "generated"]
-     - ["apache/camel-k", "*", "inputs.image-registry-host", "code-injection", "generated"]
-     - ["apache/camel-k", "*", "inputs.catalog-source-namespace", "code-injection", "generated"]
-     - ["apache/camel-k", "*", "inputs.catalog-source-name", "code-injection", "generated"]
-     - ["apache/camel-k", "*", "inputs.image-namespace", "code-injection", "generated"]
-     - ["apache/camel-k", "*", "inputs.version", "code-injection", "generated"]
-     - ["apache/camel-k", "*", "inputs.otlp-collector-image-version", "code-injection", "generated"]
-     - ["apache/camel-k", "*", "inputs.otlp-collector-image-name", "code-injection", "generated"]
-     - ["apache/camel-k", "*", "inputs.global-operator-namespace", "code-injection", "generated"]
+     - ["apache/camel-k", "*", "input.test-suite", "code-injection", "generated"]
+     - ["apache/camel-k", "*", "input.image-version", "code-injection", "generated"]
+     - ["apache/camel-k", "*", "input.image-registry-insecure", "code-injection", "generated"]
+     - ["apache/camel-k", "*", "input.image-name", "code-injection", "generated"]
+     - ["apache/camel-k", "*", "input.image-registry-host", "code-injection", "generated"]
+     - ["apache/camel-k", "*", "input.catalog-source-namespace", "code-injection", "generated"]
+     - ["apache/camel-k", "*", "input.catalog-source-name", "code-injection", "generated"]
+     - ["apache/camel-k", "*", "input.image-namespace", "code-injection", "generated"]
+     - ["apache/camel-k", "*", "input.version", "code-injection", "generated"]
+     - ["apache/camel-k", "*", "input.otlp-collector-image-version", "code-injection", "generated"]
+     - ["apache/camel-k", "*", "input.otlp-collector-image-name", "code-injection", "generated"]
+     - ["apache/camel-k", "*", "input.global-operator-namespace", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/apache_camel.model.yml b/ql/lib/ext/generated/composite-actions/apache_camel.model.yml
@@ -3,9 +3,9 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["apache/camel", "*", "inputs.end-commit", "code-injection", "generated"]
-     - ["apache/camel", "*", "inputs.start-commit", "code-injection", "generated"]
-     - ["apache/camel", "*", "inputs.distribution", "code-injection", "generated"]
-     - ["apache/camel", "*", "inputs.version", "code-injection", "generated"]
-     - ["apache/camel", "*", "inputs.pr-id", "code-injection", "generated"]
-     - ["apache/camel", "*", "inputs.mode", "code-injection", "generated"]
+     - ["apache/camel", "*", "input.end-commit", "code-injection", "generated"]
+     - ["apache/camel", "*", "input.start-commit", "code-injection", "generated"]
+     - ["apache/camel", "*", "input.distribution", "code-injection", "generated"]
+     - ["apache/camel", "*", "input.version", "code-injection", "generated"]
+     - ["apache/camel", "*", "input.pr-id", "code-injection", "generated"]
+     - ["apache/camel", "*", "input.mode", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/apache_flink.model.yml b/ql/lib/ext/generated/composite-actions/apache_flink.model.yml
@@ -3,8 +3,8 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["apache/flink", "*", "inputs.maven-parameters", "code-injection", "generated"]
-     - ["apache/flink", "*", "inputs.env", "code-injection", "generated"]
-     - ["apache/flink", "*", "inputs.target_directory", "code-injection", "generated"]
-     - ["apache/flink", "*", "inputs.source_directory", "code-injection", "generated"]
-     - ["apache/flink", "*", "inputs.jdk_version", "code-injection", "generated"]
+     - ["apache/flink", "*", "input.maven-parameters", "code-injection", "generated"]
+     - ["apache/flink", "*", "input.env", "code-injection", "generated"]
+     - ["apache/flink", "*", "input.target_directory", "code-injection", "generated"]
+     - ["apache/flink", "*", "input.source_directory", "code-injection", "generated"]
+     - ["apache/flink", "*", "input.jdk_version", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/apache_incubator-kie-tools.model.yml b/ql/lib/ext/generated/composite-actions/apache_incubator-kie-tools.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: githubsecuritylab/actions-all
+      extensible: sinkModel
+    data:
+     - ["apache/incubator-kie-tools", "*", "input.pnpm_filter_string", "output.pnpm_filter_string", "taint", "manual"]
diff --git a/ql/lib/ext/generated/composite-actions/apache_nuttx.model.yml b/ql/lib/ext/generated/composite-actions/apache_nuttx.model.yml
@@ -3,6 +3,6 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["apache/nuttx", "*", "inputs.haskell", "code-injection", "generated"]
-     - ["apache/nuttx", "*", "inputs.dotnet", "code-injection", "generated"]
-     - ["apache/nuttx", "*", "inputs.android", "code-injection", "generated"]
+     - ["apache/nuttx", "*", "input.haskell", "code-injection", "generated"]
+     - ["apache/nuttx", "*", "input.dotnet", "code-injection", "generated"]
+     - ["apache/nuttx", "*", "input.android", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/apache_opendal.model.yml b/ql/lib/ext/generated/composite-actions/apache_opendal.model.yml
@@ -3,7 +3,7 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["apache/opendal", "*", "inputs.feature", "code-injection", "generated"]
-     - ["apache/opendal", "*", "inputs.setup", "code-injection", "generated"]
-     - ["apache/opendal", "*", "inputs.service", "code-injection", "generated"]
-     - ["apache/opendal", "*", "inputs.target", "code-injection", "generated"]
+     - ["apache/opendal", "*", "input.feature", "code-injection", "generated"]
+     - ["apache/opendal", "*", "input.setup", "code-injection", "generated"]
+     - ["apache/opendal", "*", "input.service", "code-injection", "generated"]
+     - ["apache/opendal", "*", "input.target", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/apache_pekko.model.yml b/ql/lib/ext/generated/composite-actions/apache_pekko.model.yml
@@ -3,4 +3,4 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["apache/pekko", "*", "inputs.upload", "code-injection", "generated"]
+     - ["apache/pekko", "*", "input.upload", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/apache_pulsar-helm-chart.model.yml b/ql/lib/ext/generated/composite-actions/apache_pulsar-helm-chart.model.yml
@@ -3,10 +3,10 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["apache/pulsar-helm-chart", "*", "inputs.limit-access-to-users", "code-injection", "generated"]
-     - ["apache/pulsar-helm-chart", "*", "inputs.limit-access-to-actor", "code-injection", "generated"]
-     - ["apache/pulsar-helm-chart", "*", "inputs.secure-access", "code-injection", "generated"]
-     - ["apache/pulsar-helm-chart", "*", "inputs.action", "code-injection", "generated"]
-     - ["apache/pulsar-helm-chart", "*", "inputs.yamale_version", "code-injection", "generated"]
-     - ["apache/pulsar-helm-chart", "*", "inputs.yamllint_version", "code-injection", "generated"]
-     - ["apache/pulsar-helm-chart", "*", "inputs.version", "code-injection", "generated"]
+     - ["apache/pulsar-helm-chart", "*", "input.limit-access-to-users", "code-injection", "generated"]
+     - ["apache/pulsar-helm-chart", "*", "input.limit-access-to-actor", "code-injection", "generated"]
+     - ["apache/pulsar-helm-chart", "*", "input.secure-access", "code-injection", "generated"]
+     - ["apache/pulsar-helm-chart", "*", "input.action", "code-injection", "generated"]
+     - ["apache/pulsar-helm-chart", "*", "input.yamale_version", "code-injection", "generated"]
+     - ["apache/pulsar-helm-chart", "*", "input.yamllint_version", "code-injection", "generated"]
+     - ["apache/pulsar-helm-chart", "*", "input.version", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/apache_superset.model.yml b/ql/lib/ext/generated/composite-actions/apache_superset.model.yml
@@ -3,4 +3,4 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["apache/superset", "*", "inputs.requirements-type", "code-injection", "generated"]
+     - ["apache/superset", "*", "input.requirements-type", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/appflowy-io_appflowy.model.yml b/ql/lib/ext/generated/composite-actions/appflowy-io_appflowy.model.yml
@@ -3,5 +3,5 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["appflowy-io/appflowy", "*", "inputs.test_path", "code-injection", "generated"]
-     - ["appflowy-io/appflowy", "*", "inputs.flutter_profile", "code-injection", "generated"]
+     - ["appflowy-io/appflowy", "*", "input.test_path", "code-injection", "generated"]
+     - ["appflowy-io/appflowy", "*", "input.flutter_profile", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/aptos-labs_aptos-core.model.yml b/ql/lib/ext/generated/composite-actions/aptos-labs_aptos-core.model.yml
@@ -3,6 +3,6 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["aptos-labs/aptos-core", "*", "inputs.GIT_CREDENTIALS", "code-injection", "generated"]
-     - ["aptos-labs/aptos-core", "*", "inputs.GCP_DOCKER_ARTIFACT_REPO", "code-injection", "generated"]
-     - ["aptos-labs/aptos-core", "*", "inputs.IMAGE_TAG", "code-injection", "generated"]
+     - ["aptos-labs/aptos-core", "*", "input.GIT_CREDENTIALS", "code-injection", "generated"]
+     - ["aptos-labs/aptos-core", "*", "input.GCP_DOCKER_ARTIFACT_REPO", "code-injection", "generated"]
+     - ["aptos-labs/aptos-core", "*", "input.IMAGE_TAG", "code-injection", "generated"]
diff --git a/ql/lib/ext/generated/composite-actions/archivesspace_archivesspace.model.yml b/ql/lib/ext/generated/composite-actions/archivesspace_archivesspace.model.yml
@@ -3,4 +3,4 @@ extensions:
       pack: githubsecuritylab/actions-all
       extensible: sinkModel
     data:
-     - ["archivesspace/archivesspace", "*", "inputs.mysql-connector-url", "code-injection", "generated"]
+     - ["archivesspace/archivesspace", "*", "input.mysql-connector-url", "code-injection", "generated"]