In the document "CodeQL language guides"-"CodeQL for C and C++"-"Detecting a potential buffer overflow", I suppose that import semmle.code.cpp.controlflow.SSA should be added in the code snippet "the query in full".
The doc link is https://codeql.github.com/docs/codeql-language-guides/detecting-a-potential-buffer-overflow/#extending-the-query-to-include-allocations-passed-via-a-variable
In the document "CodeQL language guides"-"CodeQL for C and C++"-"Detecting a potential buffer overflow", I suppose that
import semmle.code.cpp.controlflow.SSAshould be added in the code snippet "the query in full".The doc link is https://codeql.github.com/docs/codeql-language-guides/detecting-a-potential-buffer-overflow/#extending-the-query-to-include-allocations-passed-via-a-variable