CodeQL library for C#
codeql/csharp-all 0.4.4 (changelog, source)
Search

Module ExternalAPIsQuery

Definitions for reasoning about untrusted data used in APIs defined outside the database.

Import path

import semmle.code.csharp.security.dataflow.ExternalAPIsQuery

Imports

csharp

The default C# QL library.

Classes

ExternalApiDataNode

A node representing data being passed to an external API.

ExternalApiUsedWithUntrustedData

An external API which is used with untrusted data.

SafeExternalApiCallable

A callable that is considered a “safe” external API from a security perspective.

UntrustedDataToExternalApiConfig

A configuration for tracking flow from RemoteFlowSources to ExternalApiDataNodes.

UntrustedExternalApiDataNode

A node representing untrusted data being passed to an external API.

Aliases

ExternalAPIDataNode

DEPRECATED: Alias for ExternalApiDataNode

ExternalAPIUsedWithUntrustedData

DEPRECATED: Alias for ExternalApiUsedWithUntrustedData

SafeExternalAPICallable

DEPRECATED: Alias for SafeExternalApiCallable

UntrustedDataToExternalAPIConfig

DEPRECATED: Alias for UntrustedDataToExternalApiConfig

UntrustedExternalAPIDataNode

DEPRECATED: Alias for UntrustedExternalApiDataNode