Module ExternalAPIs
Definitions for reasoning about untrusted data used in APIs defined outside the database.
Import path
import semmle.go.security.ExternalAPIs
Imports
go | Provides classes for working with Go programs. |
Predicates
getAMethodModelInPackage | Gets the name of a method in package |
getAPackageWithFunctionModels | Gets the name of a package which has models for some functions. |
getAPackageWithModels | Gets the name of a package which has models. |
getAPackageWithSummarizedCallables | Gets the name of a package that has at least one SummarizedCallable. |
isACommonSink | Holds if |
Classes
ExternalApiDataNode | A node representing data being passed to an external API. |
ExternalApiUsedWithUntrustedData | An external API which is used with untrusted data. |
SafeExternalApiArgument | A |
SafeExternalApiFunction | A |
UnknownExternalApiDataNode | A node representing data being passed to an unknown external API. |
UntrustedExternalApiDataNode | A node representing untrusted data being passed to an external API. |
Aliases
UntrustedDataToExternalApiFlow | Tracks data flow from |
UntrustedDataToUnknownExternalApiFlow | Tracks data flow from |