CodeQL library for C/C++
codeql/cpp-all 0.4.4 (changelog, source)
Search

Module PrivateData

Provides classes for heuristically identifying variables and functions that might contain or return sensitive private data.

‘Private’ data in general is anything that would compromise user privacy if exposed. This library tries to guess where private data may either be stored in a variable or returned by a function call.

This library is not concerned with credentials. See SensitiveExprs.qll for expressions related to credentials.

Import path

import semmle.code.cpp.security.PrivateData

Imports

cpp

Provides classes and predicates for working with C/C++ code.

Classes

PrivateDataExpr

An expression whose value might be sensitive private information.

PrivateDataFunction

A function that might return sensitive private information.

PrivateDataVariable

A variable that might contain sensitive private information.