Java: Data Flow Tracking for Stream/Promise based data flow

[JLLeitschuh]

Description of the issue

Data flow tracking doesn't currently work when the flow source uses non-procedural based data flow and instead uses stream or asynchronous paradigms.

A few examples:

• [x] Java 8 Streams APIs
• [ ] Java 8 CompletableFuture
• [ ] RX Java
• [ ] Third party library implementations of Proimise
  • [x] Ratpack Promise

Javascript has support for this library. https://github.com/github/codeql/blob/main/javascript/ql/src/semmle/javascript/Promises.qll

Having a similar generic & extendable API would be appreciated.

[github-actions[bot]]

This issue is stale because it has been open 14 days with no activity. Comment or remove the stale label in order to avoid having this issue closed in 7 days.