CodeQL library for JavaScript
Search

Module SqlInjection

Import path

import semmle.javascript.security.dataflow.SqlInjectionCustomizations

Classes

RemoteFlowSourceAsSource

A source of remote user input, considered as a flow source for SQL injection.

Sanitizer

A sanitizer for SQL injection vulnerabilities.

SanitizerExpr

An expression that sanitizes a value for the purposes of SQL injection.

Sink

A data flow sink for SQL injection vulnerabilities.

Source

A data flow source for SQL injection vulnerabilities.

SqlInjectionExprSink

An SQL expression passed to an API call that executes SQL.