Modules to reason about the tainting of environment variables
Import path
import semmle.code.java.security.TaintedEnvironmentVariableQueryClasses
| ExecTaintedEnvironmentSanitizer | A node that acts as a sanitizer in configurations related to environment variable injection. |
Modules
| ExecTaintedEnvironmentConfig | A taint-tracking configuration that tracks flow from unvalidated data to an environment variable for a subprocess. |
Aliases
| ExecTaintedEnvironmentFlow | Taint-tracking flow for unvalidated data to an environment variable for a subprocess. |