CodeQL library for Java/Kotlin
codeql/java-all 0.11.0 (changelog, source)
Search

Predicate endsInQuote

A static analysis of strings that end in a single quote. When such strings are concatenated with another string, it suggests the programmer believes that code needed quoting. However, it is better to use a prepared query than to just put single quotes around the string.

Import path

import semmle.code.java.security.ControlledString
predicate endsInQuote(Expr expr)