CodeQL library for Java
codeql/java-all 0.3.2 (changelog, source)
Search

Module SqlInjectionQuery

Provides taint tracking and dataflow configurations to be used in Sql injection queries.

Do not import this from a library file, in order to reduce the risk of unintentionally bringing a TaintTracking::Configuration into scope in an unrelated query.

Import path

import semmle.code.java.security.SqlInjectionQuery

Imports

FlowSources

Provides classes representing various flow sources for taint tracking.

QueryInjection

Provides classes to reason about database query language injection vulnerabilities.

java

Provides all default Java QL imports.

Predicates

queryTaintedBy

Implementation of SqlTainted.ql. This is extracted to a QLL so that it can be excluded from SqlUnescaped.ql to avoid overlapping results.

Classes

QueryInjectionFlowConfig

A taint-tracking configuration for unvalidated user input that is used in SQL queries.