Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
CodeQL library for Java/Kotlin
codeql/java-all 7.2.0 (changelog, source)
Index
Search

Module LocalUserInputToQueryInjectionFlowConfig

A taint-tracking configuration for reasoning about local user input that is used in a SQL query.

Import path

import semmle.code.java.security.SqlTaintedLocalQuery

Predicates

isAdditionalFlowStep

Holds if data may flow from node1 to node2 in addition to the normal data-flow steps.

isBarrier

Holds if data flow through node is prohibited. This completely removes node from the data flow graph.

isSink

Holds if sink is a relevant data flow sink.

isSource

Holds if source is a relevant data flow source.