CodeQL library for Java/Kotlin
codeql/java-all 0.8.12 (changelog, source)
Search

Module CommandLineQuery

Provides classes and methods common to queries java/command-line-injection, java/command-line-concatenation and their experimental derivatives.

Do not import this from a library file, in order to reduce the risk of unintentionally bringing a TaintTracking::Configuration into scope in an unrelated query.

Import path

import semmle.code.java.security.CommandLineQuery

Imports

java

Provides all default Java QL imports.

Predicates

execIsTainted

Implementation of ExecTainted.ql. It is extracted to a QLL so that it can be excluded from ExecUnescaped.ql to avoid reporting overlapping results.

execTainted

DEPRECATED: Use execIsTainted instead.

Classes

CommandInjectionAdditionalTaintStep

A unit class for adding additional taint steps.

CommandInjectionSanitizer

A sanitizer for command injection vulnerabilities.

CommandInjectionSink

A sink for command injection vulnerabilities.

RemoteUserInputToArgumentToExecFlowConfig

DEPRECATED: Use RemoteUserInputToArgumentToExecFlow instead.

Modules

LocalUserInputToArgumentToExecFlowConfig

A taint-tracking configuration for unvalidated local user input that is used to run an external process.

RemoteUserInputToArgumentToExecFlowConfig

A taint-tracking configuration for unvalidated user input that is used to run an external process.

Aliases

LocalUserInputToArgumentToExecFlow

Taint-tracking flow for unvalidated local user input that is used to run an external process.

RemoteUserInputToArgumentToExecFlow

Taint-tracking flow for unvalidated user input that is used to run an external process.