CodeQL library for Java/Kotlin
codeql/java-all 7.1.3-dev (changelog, source)
Index
Search

Predicate uncontrolledStringBuilderQuery

A query built with a StringBuilder, where one of the items appended is uncontrolled.

Import path

import semmle.code.java.security.SqlConcatenatedLib
predicate uncontrolledStringBuilderQuery(StringBuilderVar sbv, Expr uncontrolled)