CodeQL library for Go
codeql/go-all 3.0.1-dev (changelog, source)
Search

Module StoredCommand

Provides a taint tracking configuration for reasoning about command injection vulnerabilities.

Note, for performance reasons: only import this file if StoredCommand::Configuration is needed, otherwise StoredCommandCustomizations should be imported instead.

Import path

import semmle.go.security.StoredCommand

Imports

CommandInjectionCustomizations

Provides default sources, sinks and sanitizers for reasoning about command-injection vulnerabilities, as well as extension points for adding your own.

StoredXssCustomizations

Provides classes and predicates used by the Stored XSS query.

go

Provides classes for working with Go programs.

Modules

StoredCommand

Provides a taint tracking configuration for reasoning about command injection vulnerabilities.