CodeQL library for Java/Kotlin
codeql/java-all 1.1.0 (changelog, source)
Search

Module RegexInjection

Provides classes and predicates related to regex injection in Java.

Import path

import semmle.code.java.security.regexp.RegexInjection

Imports

java

Provides all default Java QL imports.

Classes

RegexInjectionSanitizer

A sanitizer for untrusted user input used to construct regular expressions.

RegexInjectionSink

A data flow sink for untrusted user input used to construct regular expressions.