CodeQL library for Java/Kotlin
codeql/java-all 0.8.12 (changelog, source)
Search

Module HardcodedCredentialSourceCallConfig

A data-flow configuration that tracks hardcoded expressions flowing to a parameter whose name suggests it may be a credential, excluding those which flow on to other such insecure usage sites.

Import path

import semmle.code.java.security.HardcodedCredentialsSourceCallQuery

Predicates

isSink

Holds if sink is a relevant data flow sink.

isSource

Holds if source is a relevant data flow source.