A taint-tracking configuration for unvalidated local user input that is used to run an external process.
Import path
import semmle.code.java.security.CommandLineQuery
Predicates
isAdditionalFlowStep | Holds if data may flow from |
isBarrier | Holds if data flow through |
isSink | Holds if |
isSource | Holds if |