Predicate execIsTainted
Implementation of ExecTainted.ql
. It is extracted to a QLL
so that it can be excluded from ExecUnescaped.ql
to avoid
reporting overlapping results.
Import path
import semmle.code.java.security.CommandLineQuery
predicate execIsTainted(PathNode source, PathNode sink, Expr execArg)