CodeQL library for JavaScript/TypeScript
codeql/javascript-all 2.1.2-dev (changelog, source)
Search

Module IndirectCommandInjection

Import path

import semmle.javascript.security.dataflow.IndirectCommandInjectionCustomizations

Classes

Sanitizer

A sanitizer for command-injection vulnerabilities.

Sink

A data flow sink for command-injection vulnerabilities.

Source

A data flow source for command-injection vulnerabilities.