CodeQL library for Java/Kotlin
codeql/java-all 0.10.0 (changelog, source)
Search

Module LocalUserInputToArgumentToExecFlowConfig

A taint-tracking configuration for unvalidated local user input that is used to run an external process.

Import path

import semmle.code.java.security.CommandLineQuery

Predicates

isAdditionalFlowStep

Holds if data may flow from node1 to node2 in addition to the normal data-flow steps.

isBarrier

Holds if data flow through node is prohibited. This completely removes node from the data flow graph.

isSink

Holds if sink is a relevant data flow sink.

isSource

Holds if source is a relevant data flow source.