An GraphQL expression passed to an API call that executes GraphQL.
An LDAPjs sink.
A chain of replace calls that replaces all unsafe chars for ldap injection. For simplicity it’s used as a sanitizer for all of
A source of remote user input, considered as a flow source for string based query injection.
A sanitizer for string based query injection vulnerabilities.
An expression that sanitizes a value for the purposes of string based query injection.
A data flow sink for string based query injection vulnerabilities.
A data flow source for string based query injection vulnerabilities.
An SQL expression passed to an API call that executes SQL.
Provides classes and predicates for working with incomplete blacklist sanitizers.