CodeQL library for Java/Kotlin
codeql/java-all 4.1.1-dev (changelog, source)
Search

Predicate execIsTainted

Implementation of ExecTainted.ql. It is extracted to a QLL so that it can be excluded from ExecUnescaped.ql to avoid reporting overlapping results.

Import path

import semmle.code.java.security.CommandLineQuery
predicate execIsTainted(PathNode source, PathNode sink, Expr execArg)