CodeQL library for C#
codeql/csharp-all 0.6.2 ( changelog , source )
Search

Module ResourceInjectionQuery

Provides a taint-tracking configuration for reasoning about untrusted user input used in resource descriptors.

Import path

import semmle.code.csharp.security.dataflow.ResourceInjectionQuery

Imports

csharp

The default C# QL library.

Classes

LocalSource

A source of local user input.

RemoteSource

A source of remote user input.

Sanitizer

A sanitizer for untrusted user input used in resource descriptors.

Sink

A data flow sink for untrusted user input used in resource descriptors.

Source

A data flow source for untrusted user input used in resource descriptors.

SqlConnectionStringSink

An argument to the ConnectionString property on a data connection class.

TaintTrackingConfiguration

DEPRECATED: Use ResourceInjection instead.

Aliases

ResourceInjection

A taint-tracking module for untrusted user input used in resource descriptors.