Module LocalUserInputToQueryInjectionFlowConfig

A taint-tracking configuration for reasoning about local user input that is used in a SQL query.

Import path

import semmle.code.java.security.SqlTaintedLocalQuery

isAdditionalFlowStep	Holds if data may flow from `node1` to `node2` in addition to the normal data-flow steps.
isBarrier	Holds if data flow through `node` is prohibited. This completely removes `node` from the data flow graph.
isSink	Holds if `sink` is a relevant data flow sink.
isSource	Holds if `source` is a relevant data flow source.