Module SensitiveDataHeuristics
INTERNAL: Do not use.
Provides classes and predicates for identifying strings that may indicate the presence of sensitive data. Such that we can share this logic across our CodeQL analysis of different languages.
‘Sensitive’ data in general is anything that should not be sent around in unencrypted form.
Import path
import semmle.javascript.security.internal.SensitiveDataHeuristicsClasses
| SensitiveDataClassification | A classification of different kinds of sensitive data: |
Modules
| HeuristicNames | INTERNAL: Do not use. |
| SensitiveDataClassification | Provides predicates to select the different kinds of sensitive data we support. |