CodeQL library for JavaScript
Search

Module TaintedObject

Provides classes and predicates for reasoning about deeply tainted objects.

Import path

import semmle.javascript.security.TaintedObject

Imports

TaintedObject

Provides classes and predicates for reasoning about deeply tainted objects.

Predicates

isSource

Holds if node is a source of JSON taint and label is the JSON taint label.

step

Holds for the flows steps that are relevant for tracking user-controlled JSON objects.

Classes

SanitizerGuard

Sanitizer guard that blocks deep object taint.