Module SensitiveDataSources

Provides an extension point for modeling sensitive data, such as secrets, certificates, or passwords. Sensitive data can be interesting to use as data-flow sources in security queries.

Import path

import semmle.python.dataflow.new.SensitiveDataSources

Classes

SensitiveDataSource

A data flow source of sensitive data, such as secrets, certificates, or passwords.

Modules

SensitiveDataSource

Provides a class for modeling new sources of sensitive data, such as secrets, certificates, or passwords.

Aliases

SensitiveDataClassification	A classification of different kinds of sensitive data:
SensitiveDataClassification	Provides predicates to select the different kinds of sensitive data we support.
sensitiveDataExtraStepForCalls	Holds if the step from `nodeFrom` to `nodeTo` should be considered a taint-flow step for sensitive-data, to ensure calls are handled correctly.
sensitiveLookupStringConst	Gets a reference (in local scope) to a string constant that, if used as the key in a lookup, indicates the presence of sensitive data with `classification`.