Fix missing predicate

Author: mbaluda

python/ql/lib/semmle/python/frameworks/OpenAI.qll

@@ -25,6 +25,12 @@ module Agent {
  * See https://github.com/openai/openai-python.
  */
 module OpenAI {
+  /** Gets a reference to `openai.OpenAI`, `openai.AsyncOpenAI` and `openai.AzureOpenAI`classes. */
+  API::Node classRef() {
+    result = API::moduleImport("openai").getMember(["OpenAI", "AsyncOpenAI", "AzureOpenAI"])
+  }
+
+  /** Gets a reference to a potential property of `openai.OpenAI called instructions which refers to the system prompt. */
   API::Node sink() {
     result =
       classRef()

python/ql/lib/semmle/python/security/dataflow/PromptInjectionCustomizations.qll

@@ -10,7 +10,13 @@ private import semmle.python.Concepts
 private import semmle.python.dataflow.new.RemoteFlowSources
 private import semmle.python.dataflow.new.BarrierGuards
 private import semmle.python.frameworks.OpenAI
+private import semmle.python.frameworks.data.ModelsAsData
 
+/**
+ * Provides default sources, sinks and sanitizers for detecting
+ * "prompt injection"
+ * vulnerabilities, as well as extension points for adding your own.
+ */
 module PromptInjection {
   /**
    * A data flow source for "prompt injection" vulnerabilities.
@@ -39,9 +45,7 @@ module PromptInjection {
     SystemPromptSink() { this = Agent::sink().asSink() or this = OpenAI::sink().asSink() }
   }
 
-  private import semmle.python.frameworks.data.ModelsAsData
-
-  private class DataAsPromptSink extends Sink {
-    DataAsPromptSink() { this = ModelOutput::getASinkNode("prompt-injection").asSink() }
+  private class SinkFromModel extends Sink {
+    SinkFromModel() { this = ModelOutput::getASinkNode("prompt-injection").asSink() }
   }
 }

python/ql/src/Security/CWE-1427/PromptInjection.ql

@@ -1,4 +1,5 @@
 /**
+ * @name Prompt injection
  * @kind path-problem
  * @problem.severity error
  * @security-severity 5.0