CodeQL library for JavaScript/TypeScript
codeql/javascript-all 0.8.13 (changelog, source)
Index
Search

Module TemplateObjectInjectionQuery

Provides a taint-tracking configuration for reasoning about template object injection vulnerabilities.

Note, for performance reasons: only import this file if TemplateObjectInjection::Configuration is needed, otherwise TemplateObjectInjectionCustomizations should be imported instead.

Import path

import semmle.javascript.security.dataflow.TemplateObjectInjectionQuery

Imports

TemplateObjectInjection

Provides sources, sinks and sanitizers for reasoning about template object injection vulnerabilities.

javascript

Provides classes for working with JavaScript programs, as well as JSON, YAML and HTML.

Classes

TemplateObjInjectionConfig

A taint tracking configuration for reasoning about template object injection vulnerabilities.