Module CommandInjection
Provides extension points for customizing the taint tracking configuration for reasoning about command injection vulnerabilities.
Import path
import semmle.go.security.CommandInjectionCustomizations
Classes
CommandNameAsSink | A command name, considered as a taint sink for command injection. |
Sanitizer | A sanitizer for command-injection vulnerabilities. |
Sink | A data flow sink for command-injection vulnerabilities. |
Source | A data flow source for command-injection vulnerabilities. |
UntrustedFlowAsSource | DEPRECATED: Use |