CodeQL library for Java/Kotlin
codeql/java-all 0.9.0 (changelog, source)
Index
Search

Module FragmentInjectionTaintConfig

A taint-tracking configuration for unsafe user input that is used to create Android fragments dynamically.

Import path

import semmle.code.java.security.FragmentInjectionQuery

Predicates

isAdditionalFlowStep

Holds if data may flow from node1 to node2 in addition to the normal data-flow steps.

isSink

Holds if sink is a relevant data flow sink.

isSource

Holds if source is a relevant data flow source.