CodeQL library for JavaScript
Search

Module CodeInjection

Import path

import semmle.javascript.security.dataflow.CodeInjectionCustomizations

Classes

AngularJSExpressionSink

An expression which may be interpreted as an AngularJS expression.

DotTemplateSink

A value interpreted as a tempalte by the dot library.

EjsTemplateSink

A value interpreted as a template by the ejs library.

EvalJavaScriptSink

An expression which may be evaluated as JavaScript.

EventHandlerAttributeSink

An event handler attribute as a code injection sink.

LocationSource

An access to a property that may hold (parts of) the document URL.

LodashUnderscoreTemplateSink

A value interpreted as a template by lodash or underscore.

ModuleCompileSink

The first argument to Module.prototype._compile from the Node.js built-in module module, considered as a code-injection sink.

NoSQLCodeInjectionSink

A code operator of a NoSQL query as a code injection sink.

NodeJSVmSink

An expression which may be evaluated as JavaScript in NodeJS using the vm module.

NunjucksTemplateSink

A value interpreted as a template by the nunjucks library.

PugTemplateSink

A value interpreted as as template by the pug library.

RemoteFlowSourceAsSource

A source of remote user input, considered as a flow source for code injection.

Sanitizer

A sanitizer for code injection vulnerabilities.

Sink

A data flow sink for code injection vulnerabilities.

Source

A data flow source for code injection vulnerabilities.

WebViewInjectedJavaScriptSink

An expression which is injected as JavaScript into a React Native WebView.