Module TaintTracking
Import path
import semmle.python.dataflow.old.ConfigurationClasses
Aliases
| Extension | A control flow node that modifies the basic data-flow. |
| PathSink | A class representing the (node, context, path, kind) tuple. Used for context-sensitive path-aware taint-tracking. |
| PathSource | A class representing the (node, context, path, kind) tuple. Used for context-sensitive path-aware taint-tracking. |
| Sink | A node that is vulnerable to one or more types of taint. These nodes provide the sinks when computing the taint flow graph. An example would be an argument to a write to a http response object, such an argument would be vulnerable to unsanitized user-input (XSS). |
| Source | A source of taintedness. Users of the taint tracking library should override this class to provide their own sources. |