CodeQL library for GitHub Actions
codeql/actions-all 0.4.27-dev (changelog, source)
Index
Search

Module CommandInjectionQuery

Import path

import codeql.actions.security.CommandInjectionQuery

Imports

ControlChecks
DataFlow

Provides classes for performing local (intra-procedural) and global (inter-procedural) data flow analyses.

FlowSources

Predicates

getRelevantEventInPrivilegedContext

Get the relevant event for the sink in CommandInjectionCritical.ql.

Aliases

CommandInjectionFlow

Tracks flow of unsafe user input that is used to construct and evaluate a system command.