CodeQL library for JavaScript
Search

Module ExternalAPIUsedWithUntrustedData

Provides a taint tracking configuration for reasoning about untrusted data flowing to an external API call.

Import path

import semmle.javascript.security.dataflow.ExternalAPIUsedWithUntrustedData

Imports

ExternalAPIUsedWithUntrustedData

Provides sources, sinks and sanitizers for reasoning about flow of untrusted data into an external API.

Classes

Configuration

A taint tracking configuration for untrusted data flowing to an external API.

ExternalAPIDataNode

A node representing data being passed to an external API.

ExternalAPIUsedWithUntrustedData

An external API which is used with untrusted data.

UntrustedExternalAPIDataNode

A node representing untrusted data being passed to an external API.