CodeQL library for Python
codeql/python-all 0.11.3 (changelog, source)

Predicate Private::Steps::summaryThroughStepTaint

Holds if arg flows to out using a simple flow summary involving taint step, that is, a flow summary without reads and stores.

NOTE: This step should not be used in global data-flow/taint-tracking, but may be useful to include in the exposed local data-flow/taint-tracking relations.

Import path

predicate summaryThroughStepTaint(ArgNode arg, Node out, SummarizedCallable sc)