Provides sources, sinks and sanitizers for reasoning about flow of untrusted data into an external API.
A value that is treated as a generic deep object sink.
A function that is considered a “safe” external API from a security perspective.
A package name whose entire API is considered “safe” for the purpose of this query.
A sanitizer for data flowing to an external API.
An input to an external API call.
A source of untrusted data.