CodeQL library for Java
codeql/java-all 0.7.5 ( changelog , source )
Search

Module JndiInjectionQuery

Provides taint tracking configurations to be used in JNDI injection queries.

Import path

import semmle.code.java.security.JndiInjectionQuery

Imports

FlowSources

Provides classes representing various flow sources for taint tracking.

Jndi

Provides classes and predicates for working with the Java JNDI API.

JndiInjection

Provides classes to reason about JNDI injection vulnerabilities.

SpringLdap

Provides classes and predicates for working with the Spring LDAP API.

java

Provides all default Java QL imports.

Classes

JndiInjectionFlowConfig

DEPRECATED: Use JndiInjectionFlow instead.

Modules

JndiInjectionFlowConfig

A taint-tracking configuration for unvalidated user input that is used in JNDI lookup.

Aliases

JndiInjectionFlow

Tracks flow of unvalidated user input that is used in JNDI lookup