CodeQL library for JavaScript
Search

Module RegExpInjectionQuery

Provides a taint-tracking configuration for reasoning about untrusted user input used to construct regular expressions.

Note, for performance reasons: only import this file if RegExpInjection::Configuration is needed, otherwise RegExpInjectionCustomizations should be imported instead.

Import path

import semmle.javascript.security.dataflow.RegExpInjectionQuery

Imports

RegExpInjection
javascript

Provides classes for working with JavaScript programs, as well as JSON, YAML and HTML.

Classes

Configuration

A taint-tracking configuration for untrusted user input used to construct regular expressions.