CodeQL library for Java/Kotlin
codeql/java-all 0.8.12 (changelog, source)
Search

Module FragmentInjectionQuery

Provides classes and predicates to be used in queries related to Android Fragment injection.

Import path

import semmle.code.java.security.FragmentInjectionQuery

Imports

FlowSources

Provides classes representing various flow sources for taint tracking.

FragmentInjection

Provides classes and predicates to reason about Android Fragment injection vulnerabilities.

TaintTracking

Provides classes for performing local (intra-procedural) and global (inter-procedural) taint-tracking analyses.

java

Provides all default Java QL imports.

Classes

FragmentInjectionTaintConf

DEPRECATED: Use FragmentInjectionFlow instead.

Modules

FragmentInjectionTaintConfig

A taint-tracking configuration for unsafe user input that is used to create Android fragments dynamically.

Aliases

FragmentInjectionTaintFlow

Taint-tracking flow for unsafe user input that is used to create Android fragments dynamically.