CodeQL library for C/C++
codeql/cpp-all 0.4.4 (changelog, source)
Search

Module SensitiveExprs

Provides classes for heuristically identifying variables and functions that might contain or return a password or other credential.

This library is not concerned with other kinds of sensitive private information. See PrivateData.qll for expressions related to that.

Import path

import semmle.code.cpp.security.SensitiveExprs

Imports

cpp

Provides classes and predicates for working with C/C++ code.

Classes

SensitiveExpr

An expression whose value might be a password or other credential.

SensitiveFunction

A function that might return a password or other credential.

SensitiveVariable

A variable that might contain a password or other credential.