CodeQL library for Java
codeql/java-all 0.4.5 (changelog, source)
Search

Module ConditionalBypassQuery

Provides classes to be used in queries related to vulnerabilities about unstrusted input being used in security decisions.

Import path

import semmle.code.java.security.ConditionalBypassQuery

Imports

FlowSources

Provides classes representing various flow sources for taint tracking.

Guards

Provides classes and predicates for reasoning about guards and the control flow elements controlled by those guards.

SensitiveActions

Sensitive data and methods for security.

java

Provides all default Java QL imports.

Predicates

conditionControlsMethod

Holds if ma is controlled by the condition expression e.

Classes

ConditionalBypassFlowConfig

A taint tracking configuration for untrusted data flowing to sensitive conditions.