CodeQL library for Java/Kotlin
codeql/java-all 7.1.3-dev (changelog, source)
Index
Search

Module JndiInjection

Provides classes to reason about JNDI injection vulnerabilities.

Import path

import semmle.code.java.security.JndiInjection

Imports

java

Provides all default Java QL imports.

Classes

JndiInjectionAdditionalTaintStep

A unit class for adding additional taint steps.

JndiInjectionSanitizer

A sanitizer for JNDI injection vulnerabilities.

JndiInjectionSink

A data flow sink for unvalidated user input that is used in JNDI lookup.