CodeQL library for JavaScript
Search

Module ExternalAPIUsedWithUntrustedData

Provides a taint tracking configuration for reasoning about untrusted data flowing to an external API call.

Note, for performance reasons: only import this file if ExternalAPIUsedWithUntrustedData::Configuration is needed, otherwise ExternalAPIUsedWithUntrustedDataCustomizations should be imported instead.

Import path

import semmle.javascript.security.dataflow.ExternalAPIUsedWithUntrustedData

Imports

javascript

Provides classes for working with JavaScript programs, as well as JSON, YAML and HTML.

Modules

ExternalAPIUsedWithUntrustedData

Provides a taint tracking configuration for reasoning about untrusted data flowing to an external API call.