CodeQL library for Java
codeql/java-all 0.3.2 (changelog, source)
Search

Module IntentUriPermissionManipulation

Provides classes and predicates to reason about Intent URI permission manipulation vulnerabilities on Android.

Import path

import semmle.code.java.security.IntentUriPermissionManipulation

Imports

java

Provides all default Java QL imports.

Classes

IntentUriPermissionManipulationAdditionalTaintStep

An additional taint step for flows related to Intent URI permission manipulation vulnerabilities.

IntentUriPermissionManipulationGuard

DEPRECATED: Use IntentUriPermissionManipulationSanitizer instead.

IntentUriPermissionManipulationSanitizer

A sanitizer that makes sure that an Intent is safe to be returned to another Activity.

IntentUriPermissionManipulationSink

A sink for Intent URI permission manipulation vulnerabilities in Android, that is, method calls that return an Intent as the result of an Activity.