CodeQL library for GitHub Actions
codeql/actions-all 0.4.27-dev (changelog, source)
Index
Search

Module TaintSteps

Provides classes representing various flow steps for taint tracking.

Import path

import codeql.actions.dataflow.TaintSteps

Predicates

dornyPathsFilterTaintStep

A read of the _files field of the dorny/paths-filter action.

fileDownloadToRunStep

A file source step followed by a Run step may read the file.

octokitRequestActionTaintStep

A read of user-controlled field of the octokit/request-action action.

tjActionsChangedFilesTaintStep

A read of user-controlled field of the tj-actions/changed-files action.

tjActionsVerifyChangedFilesTaintStep

A read of user-controlled field of the tj-actions/verify-changed-files action.

xt0rtedSlashCommandActionTaintStep

A read of user-controlled field of the xt0rted/slash-command-action action.

zenteredIssueFormBodyParserSource

A read of user-controlled field of the zentered/issue-forms-body-parser action.

Classes

AdditionalTaintStep

A unit class for adding additional taint steps.

TaintSteps