Module ZipSlipQuery
Provides a taint tracking configuration for reasoning about unsafe zip extraction.
Import path
import semmle.code.csharp.security.dataflow.ZipSlipQuery
Imports
csharp |
The default C# QL library. |
Classes
ArchiveFullNameSource |
An access to the |
ExtractToFileArgSink |
An argument to the |
FileInfoArgSink |
A path argument to a call to the |
FileOpenArgSink |
A path argument to a |
FileStreamArgSink |
A path argument to a call to the |
GetFileNameSanitizer |
A call to |
Sanitizer |
A sanitizer for unsafe zip extraction. |
SanitizerGuard |
DEPRECATED: Use |
Sink |
A data flow sink for unsafe zip extraction. |
Source |
A data flow source for unsafe zip extraction. |
StringCheckSanitizer |
A call to |
SubstringSanitizer |
A call to |
TaintTrackingConfiguration |
DEPRECATED: Use |
Aliases
ZipSlip |
A taint tracking module for Zip Slip. |