Module TaintTracking
Import path
import semmle.python.dataflow.old.Configuration
Classes
Aliases
Extension | A control flow node that modifies the basic data-flow. |
PathSink | A class representing the (node, context, path, kind) tuple. Used for context-sensitive path-aware taint-tracking. |
PathSource | A class representing the (node, context, path, kind) tuple. Used for context-sensitive path-aware taint-tracking. |
Sink | A node that is vulnerable to one or more types of taint. These nodes provide the sinks when computing the taint flow graph. An example would be an argument to a write to a http response object, such an argument would be vulnerable to unsanitized user-input (XSS). |
Source | A source of taintedness. Users of the taint tracking library should override this class to provide their own sources. |