CodeQL library for C#
codeql/csharp-all 3.0.1-dev (changelog, source)
Search

Class Sanitizer

A sanitizer for untrusted user input used in XML processing.

Import path

import semmle.code.csharp.security.dataflow.XMLEntityInjectionQuery

Direct supertypes

Indirect supertypes

Known direct subtypes

    Inherited predicates

    asDefinition

    Gets the definition corresponding to this node, if any.

    from Node
    asDefinitionAtNode

    Gets the definition corresponding to this node, at control flow node cfn, if any.

    from Node
    asExpr

    Gets the expression corresponding to this node, if any.

    from Node
    asExprAtNode

    Gets the expression corresponding to this node, at control flow node cfn, if any.

    from Node
    asParameter

    Gets the parameter corresponding to this node, if any.

    from Node
    getControlFlowNode

    Gets the control flow node corresponding to this node, if any.

    from Node
    getEnclosingCallable

    Gets the enclosing callable of this node.

    from Node
    getLocation

    Gets the location of this node.

    from Node
    getType

    Gets the type of this node.

    from Node
    hasLocationInfo

    Holds if this element is at the specified location. The location spans column startcolumn of line startline to column endcolumn of line endline in file filepath. For more information, see Locations.

    from Node
    toString

    Gets a textual representation of this node.

    from Node