CodeQL library for Java
codeql/java-all 0.4.4 (changelog, source)
Search

Module SensitiveApi

Provides predicates defining methods that consume sensitive data, such as usernames and passwords.

Import path

import semmle.code.java.security.SensitiveApi

Imports

java

Provides all default Java QL imports.

Predicates

javaApiCallableCryptoKeyParam

Holds if callable c from a standard Java API expects a cryptographic key parameter at index i.

javaApiCallablePasswordParam

Holds if callable c from a standard Java API expects a password parameter at index i.

javaApiCallableUsernameParam

Holds if callable c from a standard Java API expects a username parameter at index i.

otherApiCallableCredentialParam

Holds if callable c from a known API expects a credential parameter at index i.