CodeQL library for Java
codeql/java-all 0.4.4 (changelog, source)
Search

Module GroovyInjectionQuery

Provides taint tracking configurations relating to Groovy injection vulnerabilities.

Import path

import semmle.code.java.security.GroovyInjectionQuery

Imports

FlowSources

Provides classes representing various flow sources for taint tracking.

GroovyInjection

Provides classes to reason about Groovy code injection attacks.

TaintTracking

Provides classes for performing local (intra-procedural) and global (inter-procedural) taint-tracking analyses.

java

Provides all default Java QL imports.

Classes

GroovyInjectionConfig

A taint-tracking configuration for unsafe user input that is used to evaluate a Groovy expression.