CodeQL library for Python
codeql/python-all 2.2.0 (changelog, source)
Search

Module TaintTracking

Import path

import semmle.python.dataflow.old.Configuration

Classes

Aliases

Extension

A control flow node that modifies the basic data-flow.

PathSink

A class representing the (node, context, path, kind) tuple. Used for context-sensitive path-aware taint-tracking.

PathSource

A class representing the (node, context, path, kind) tuple. Used for context-sensitive path-aware taint-tracking.

Sink

A node that is vulnerable to one or more types of taint. These nodes provide the sinks when computing the taint flow graph. An example would be an argument to a write to a http response object, such an argument would be vulnerable to unsanitized user-input (XSS).

Source

A source of taintedness. Users of the taint tracking library should override this class to provide their own sources.