CodeQL library for Java/Kotlin
codeql/java-all 0.8.9 (changelog, source)
Search

Module JexlInjectionConfig

A taint-tracking configuration for unsafe user input that is used to construct and evaluate a JEXL expression. It supports both JEXL 2 and 3.

Import path

import semmle.code.java.security.JexlInjectionQuery

Predicates

isAdditionalFlowStep

Holds if data may flow from node1 to node2 in addition to the normal data-flow steps.

isSink

Holds if sink is a relevant data flow sink.

isSource

Holds if source is a relevant data flow source.