CodeQL library for Java/Kotlin
codeql/java-all 4.1.1-dev (changelog, source)
Search

Module ImproperIntentVerificationQuery

Definitions for the improper intent verification query.

Import path

import semmle.code.java.security.ImproperIntentVerificationQuery

Imports

AndroidManifest

Provides classes and predicates for working with Android manifest files.

DataFlow

Provides classes for performing local (intra-procedural) and global (inter-procedural) data flow analyses.

Intent
java

Provides all default Java QL imports.

Predicates

getASystemActionName

Gets the name of an intent action that can only be sent by the system.

unverifiedSystemReceiver

Holds if the XML element rec declares a receiver orm to receive the system action named sa that doesn’t verify intents it receives.

Classes

SystemActionName

An expression or XML attribute that contains the name of a system intent action.