Module CodeInjectionQuery
Provides a taint-tracking configuration for reasoning about user input treated as code vulnerabilities.
Import path
import semmle.code.csharp.security.dataflow.CodeInjectionQuery
Imports
csharp |
The default C# QL library. |
Classes
CompileAssemblyFromSourceSink |
A |
LocalSource |
A source of local user input. |
RemoteSource |
A source of remote user input. |
RoslynCSharpScriptSink |
A |
Sanitizer |
A sanitizer for user input treated as code vulnerabilities. |
Sink |
A data flow sink for user input treated as code vulnerabilities. |
Source |
A data flow source for user input treated as code vulnerabilities. |
TaintTrackingConfiguration |
DEPRECATED: Use |
Aliases
CodeInjection |
A taint-tracking module for user input treated as code vulnerabilities. |