Module TaintedPathQuery
Provides a taint-tracking configuration for reasoning about uncontrolled data in path expression vulnerabilities.
Import path
import semmle.code.csharp.security.dataflow.TaintedPathQuery
Imports
csharp | The default C# QL library. |
Classes
DirectorySink | A path argument to a |
FileCreateSink | A path argument to a |
FileStreamSink | A path argument to a |
PathCheck | A conditional involving the path, that is not considered to be a weak check. |
RemoteSource | DEPRECATED: Use |
RequestMapPathSanitizer | A call to |
Sanitizer | A sanitizer for uncontrolled data in path expression vulnerabilities. |
Sink | A data flow sink for uncontrolled data in path expression vulnerabilities. |
Source | A data flow source for uncontrolled data in path expression vulnerabilities. |
StreamWriterTaintedPathSink | A path argument to a |
ThreatModelSource | A source supported by the current threat model. |
Aliases
TaintedPath | A taint-tracking module for uncontrolled data in path expression vulnerabilities. |