Python: uncertainty is treated as a certificate :O

Author: RasmusWL

python/ql/test/experimental/dataflow/sensitive-data/test.py

@@ -56,6 +56,11 @@ def my_func(non_sensitive_name):
 def my_func(password): # $ SensitiveDataSource=password
     print(password) # $ SensitiveUse=password
 
+# FP where the `cert` in `uncertainty` makes us treat it like a certificate
+# https://github.com/github/codeql/issues/9632
+def my_other_func(uncertainty): # $ SPURIOUS: SensitiveDataSource=certificate
+    print(uncertainty) # $ SPURIOUS: SensitiveUse=certificate
+
 password = some_function() # $ SensitiveDataSource=password
 print(password) # $ SensitiveUse=password