CodeQL library for Java/Kotlin
codeql/java-all 0.9.2-dev (changelog, source)
Index
Search

Module ExecTaintedLocalConfig

A taint-tracking configuration to reason about use of externally controlled strings to make command line commands.

Import path

import semmle.code.java.security.ExecTaintedLocalQuery

Predicates

isBarrier

Holds if data flow through node is prohibited. This completely removes node from the data flow graph.

isSink

Holds if sink is a relevant data flow sink.

isSource

Holds if source is a relevant data flow source.