CodeQL library for Java
codeql/java-all 0.3.2 (changelog, source)
Search

Module CommandArguments

Definitions for reasoning about lists and arrays that are to be used as arguments to an external process.

Import path

import semmle.code.java.security.CommandArguments

Imports

Collections

Provides classes and predicates for reasoning about instances of java.util.Collection and their methods.

SSA

Provides classes and predicates for SSA representation (Static Single Assignment form).

java

Provides all default Java QL imports.

Predicates

isSafeCommandArgument

Holds if ex is used safely as an argument to a command; i.e. it’s not in the first position and it’s not a shell command.