Provides default sources, sinks and sanitizers for reasoning about command-injection vulnerabilities, as well as extension points for adding your own.
Import path
import semmle.javascript.security.dataflow.ShellCommandInjectionFromEnvironmentCustomizations
Imports
TaintedPathCustomizations | Provides default sources, sinks and sanitizers for reasoning about tainted-path vulnerabilities, as well as extension points for adding your own. |
javascript | Provides classes for working with JavaScript programs, as well as JSON, YAML and HTML. |