Module ZipSlipQuery
Provides a taint tracking configuration for reasoning about unsafe zip extraction.
Import path
import semmle.code.csharp.security.dataflow.ZipSlipQuery
Imports
csharp | The default C# QL library. |
Classes
ArchiveFullNameSource | An access to the |
ExtractToFileArgSink | An argument to the |
FileInfoArgSink | A path argument to a call to the |
FileOpenArgSink | A path argument to a |
FileStreamArgSink | A path argument to a call to the |
GetFileNameSanitizer | A call to |
Sanitizer | A sanitizer for unsafe zip extraction. |
Sink | A data flow sink for unsafe zip extraction. |
Source | A data flow source for unsafe zip extraction. |
StringCheckSanitizer | A call to |
SubstringSanitizer | A call to |
Aliases
ZipSlip | A taint tracking module for Zip Slip. |