CodeQL library for Java/Kotlin
codeql/java-all 0.9.2-dev (changelog, source)
Index
Search

Module MissingJwtSignatureCheckConfig

Models flow from signing keys assignments to qualifiers of JWT insecure parsers. This is used to determine whether a JwtParser performing unsafe parsing has a signing key set.

Import path

import semmle.code.java.security.MissingJWTSignatureCheckQuery

Predicates

isAdditionalFlowStep

Holds if data may flow from node1 to node2 in addition to the normal data-flow steps.

isSink

Holds if sink is a relevant data flow sink.

isSource

Holds if source is a relevant data flow source.