Module ResourceInjectionQuery
Provides a taint-tracking configuration for reasoning about untrusted user input used in resource descriptors.
Import path
import semmle.code.csharp.security.dataflow.ResourceInjectionQuery
Imports
| csharp |
The default C# QL library. |
Classes
| LocalSource |
A source of local user input. |
| RemoteSource |
A source of remote user input. |
| Sanitizer |
A sanitizer for untrusted user input used in resource descriptors. |
| Sink |
A data flow sink for untrusted user input used in resource descriptors. |
| Source |
A data flow source for untrusted user input used in resource descriptors. |
| SqlConnectionStringSink |
An argument to the |
| TaintTrackingConfiguration |
DEPRECATED: Use |
Aliases
| ResourceInjection |
A taint-tracking module for untrusted user input used in resource descriptors. |