Module SpelInjectionConfig
A taint-tracking configuration for unsafe user input that is used to construct and evaluate a SpEL expression.
Import path
import semmle.code.java.security.SpelInjectionQuery
Predicates
isAdditionalFlowStep | Holds if data may flow from |
isSink | Holds if |
isSource | Holds if |