CodeQL library for Python
codeql/python-all 2.2.1-dev (changelog, source)
Search

Module SensitiveDataSources

Provides an extension point for modeling sensitive data, such as secrets, certificates, or passwords. Sensitive data can be interesting to use as data-flow sources in security queries.

Import path

import semmle.python.dataflow.new.SensitiveDataSources

Classes

SensitiveDataSource

A data flow source of sensitive data, such as secrets, certificates, or passwords.

Modules

SensitiveDataSource

Provides a class for modeling new sources of sensitive data, such as secrets, certificates, or passwords.

Aliases

SensitiveDataClassification

A classification of different kinds of sensitive data:

SensitiveDataClassification

Provides predicates to select the different kinds of sensitive data we support.

sensitiveDataExtraStepForCalls

Holds if the step from nodeFrom to nodeTo should be considered a taint-flow step for sensitive-data, to ensure calls are handled correctly.