Module JndiInjectionQuery
Provides taint tracking configurations to be used in JNDI injection queries.
Import path
import semmle.code.java.security.JndiInjectionQuery
Imports
FlowSources | Provides classes representing various flow sources for taint tracking. |
Jndi | Provides classes and predicates for working with the Java JNDI API. |
JndiInjection | Provides classes to reason about JNDI injection vulnerabilities. |
SpringLdap | Provides classes and predicates for working with the Spring LDAP API. |
java | Provides all default Java QL imports. |
Modules
JndiInjectionFlowConfig | A taint-tracking configuration for unvalidated user input that is used in JNDI lookup. |
Aliases
JndiInjectionFlow | Tracks flow of unvalidated user input that is used in JNDI lookup |