CodeQL library for C#
codeql/csharp-all 3.1.1 (changelog, source)
Search

Module HardcodedCredentialsQuery

Provides a taint-tracking configuration for reasoning about hard coded credentials.

Import path

import semmle.code.csharp.security.dataflow.HardcodedCredentialsQuery

Imports

csharp

The default C# QL library.

Classes

ByteArrayLiteral

The creation of a literal byte array.

CharArrayLiteral

The creation of a literal char array.

HardcodedCredentialsSinkExpr

An expression that is a sink for a specific type of credential.

MembershipUserUserNameSink

A “name” argument to a construction of “MembershipUser” or a subtype.

NonEmptyStringLiteral

A string literal that is not empty.

Sanitizer

A sanitizer for hard coded credentials.

Sink

A data flow sink for hard coded credentials.

Source

A data flow source for hard coded credentials.

StringFormatSanitizer

A format argument to Format, that is considered not to be a source of hardcoded secret data.

StringReplaceSanitizer

A replacement argument to Replace, that is considered not to be a source of hardcoded secret data.

ToStringSanitizer

A call to a ToString() method, which is considered not to return hard-coded constants.

X509CertificateDataSink

A “rawData” argument to a construction of “X509Certificate” or a subtype.

Modules

HardcodedCredentials

A taint-tracking module for hard coded credentials.