CodeQL library for Python
codeql/python-all 2.1.1-dev (changelog, source)
Search

Class Http::Server::SetCookieCall

A dataflow call node to a method that sets a cookie in an http response, and has common keyword arguments secure, httponly, and samesite to set the attributes of the cookie.

See https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie

Import path

import semmle.python.Concepts

Direct supertypes

Indirect supertypes

Known direct subtypes

Inherited fields

Predicates

hasHttpOnlyFlag

Holds if the HttpOnly flag of the cookie is known to have a value of b.

hasSameSiteAttribute

Holds if the SameSite flag of the cookie is known to have a value of v.

hasSecureFlag

Holds if the Secure flag of the cookie is known to have a value of b.

Inherited predicates

asCfgNode

Gets the control-flow node corresponding to this node, if any.

from CfgNode
asExpr

Gets the expression corresponding to this node, if any.

from Node
backtrack

Gets a node that may flow into this one using one heap and/or interprocedural step.

from LocalSourceNode
flowsTo

Holds if this LocalSourceNode can flow to nodeTo in one or more local flow steps.

from LocalSourceNode
getACall

Gets a call to this node.

from LocalSourceNode
getALocalSource

Gets a local source node from which data may flow to this node in zero or more local data-flow steps.

from Node
getAMethodCall

Gets a call to the method methodName on this node.

from LocalSourceNode
getAnAttributeRead

Gets a read of any attribute on this node.

from LocalSourceNode
getAnAttributeRead

Gets a read of attribute attrName on this node.

from LocalSourceNode
getAnAttributeReference

Gets a reference (read or write) of any attribute on this node.

from LocalSourceNode
getAnAttributeReference

Gets a reference (read or write) of attribute attrName on this node.

from LocalSourceNode
getAnAttributeWrite

Gets a write of any attribute on this node.

from LocalSourceNode
getAnAttributeWrite

Gets a write of attribute attrName on this node.

from LocalSourceNode
getAnAwaited

Gets an awaited value from this node.

from LocalSourceNode
getArg

Gets the data-flow node corresponding to the i’th positional argument of the call corresponding to this data-flow node

from CallCfgNode
getArgByName

Gets the data-flow node corresponding to the named argument of the call corresponding to this data-flow node

from CallCfgNode
getEnclosingCallable

Gets the enclosing callable of this node.

from Node
getFunction

Gets the data-flow node for the function component of the call corresponding to this data-flow node.

from CallCfgNode
getHeaderArg

Gets the argument, if any, specifying the raw cookie header.

from Range
getKwargs

Gets the data-flow node corresponding to a dictionary (**) argument of the call corresponding to this data-flow node, if any.

from CallCfgNode
getLocation

Gets the location of this node

from CfgNode
getNameArg

Gets the argument, if any, specifying the cookie name.

from Range
getNode

Gets the ControlFlowNode represented by this data-flow node.

from CfgNode
getScope

Gets the scope of this node.

from CfgNode
getStarArg

Gets the data-flow node corresponding to the first tuple (*) argument of the call corresponding to this data-flow node, if any.

from CallCfgNode
getSubscript

Gets a subscript of this node.

from LocalSourceNode
getValueArg

Gets the argument, if any, specifying the cookie value.

from Range
hasLocationInfo

Holds if this element is at the specified location. The location spans column startcolumn of line startline to column endcolumn of line endline in file filepath. For more information, see Locations.

from Node
toString

Gets a textual representation of this element.

from CfgNode
track

Gets a node that this node may flow to using one heap and/or interprocedural step.

from LocalSourceNode