CodeQL library for C#
codeql/csharp-all 0.4.4 (changelog, source)
Search

Predicate XmlSettings::dtdEnabledSettings

Holds if the given object creation constructs XmlReaderSettings with DTD processing enabled.

Import path

import semmle.code.csharp.security.xml.InsecureXMLQuery
predicate dtdEnabledSettings(ObjectCreation creation, Expr evidence, string reason)