Add check for files which provide the app launcher

Adds support for filtering which applications include the
`android.intent.action.MAIN` intent.

Author: egregius313

java/ql/lib/semmle/code/xml/AndroidManifest.qll

@@ -98,6 +98,16 @@ class AndroidApplicationXmlElement extends XmlElement {
       attr.getValue() = "true"
     )
   }
+
+  predicate providesMainIntent() {
+    exists(AndroidActivityXmlElement activity |
+      activity = this.getAChild() and
+      exists(AndroidIntentFilterXmlElement intentFilter |
+        intentFilter = activity.getAChild() and
+        intentFilter.getAnActionElement().getActionName() = "android.intent.action.MAIN"
+      )
+    )
+  }
 }
 
 /**

java/ql/src/Security/CWE/CWE-312/AllowBackupAttributeEnabled.ql

@@ -15,6 +15,11 @@ import semmle.code.xml.AndroidManifest
 
 from AndroidApplicationXmlElement androidAppElem
 where
-  androidAppElem.allowsBackup() and
-  androidAppElem.getFile().(AndroidManifestXmlFile).isInBuildDirectory()
+  not androidAppElem.getFile().(AndroidManifestXmlFile).isInBuildDirectory() and
+  (
+    androidAppElem.allowsBackupExplicitly()
+    or
+    androidAppElem.providesMainIntent() and
+    androidAppElem.allowsBackup()
+  )
 select androidAppElem, "The 'android:allowBackup' attribute is enabled."