CodeQL library for Go
codeql/go-all 5.0.3 (changelog, source)
Index
Search

Module SqlInjection

Provides extension points for customizing the taint tracking configuration for reasoning about SQL-injection vulnerabilities.

Import path

import semmle.go.security.SqlInjectionCustomizations

Classes

NoSqlQueryAsSink

A NoSql query, considered as a taint sink for SQL injection.

Sanitizer

A sanitizer for SQL-injection vulnerabilities.

Sink

A data flow sink for SQL-injection vulnerabilities.

Source

A data flow source for SQL-injection vulnerabilities.

SqlQueryAsSink

An SQL string, considered as a taint sink for SQL injection.

UntrustedFlowAsSource

DEPRECATED: Use ActiveThreatModelSource or Source instead.

Aliases

NumericOrBooleanSanitizer

DEPRECATED: Use SimpleTypeSanitizer from semmle.go.security.Sanitizers instead.