Module JndiInjectionQuery
Provides taint tracking configurations to be used in JNDI injection queries.
Import path
import semmle.code.java.security.JndiInjectionQuery
Imports
| FlowSources |
Provides classes representing various flow sources for taint tracking. |
| Jndi |
Provides classes and predicates for working with the Java JNDI API. |
| JndiInjection |
Provides classes to reason about JNDI injection vulnerabilities. |
| SpringLdap |
Provides classes and predicates for working with the Spring LDAP API. |
| java |
Provides all default Java QL imports. |
Classes
| JndiInjectionFlowConfig |
DEPRECATED: Use |
Modules
| JndiInjectionFlowConfig |
A taint-tracking configuration for unvalidated user input that is used in JNDI lookup. |
Aliases
| JndiInjectionFlow |
Tracks flow of unvalidated user input that is used in JNDI lookup |