Module HardcodedCredentialsQuery
Provides a taint-tracking configuration for reasoning about hard coded credentials.
Import path
import semmle.code.csharp.security.dataflow.HardcodedCredentialsQuery
Imports
csharp | The default C# QL library. |
Classes
ByteArrayLiteral | The creation of a literal byte array. |
CharArrayLiteral | The creation of a literal char array. |
HardcodedCredentialsSinkExpr | An expression that is a sink for a specific type of credential. |
MembershipUserUserNameSink | A “name” argument to a construction of “MembershipUser” or a subtype. |
NonEmptyStringLiteral | A string literal that is not empty. |
Sanitizer | A sanitizer for hard coded credentials. |
Sink | A data flow sink for hard coded credentials. |
Source | A data flow source for hard coded credentials. |
StringFormatSanitizer | A format argument to |
StringReplaceSanitizer | A replacement argument to |
ToStringSanitizer | A call to a |
X509CertificateDataSink | A “rawData” argument to a construction of “X509Certificate” or a subtype. |
Modules
HardcodedCredentials | A taint-tracking module for hard coded credentials. |