CodeQL library for Python
codeql/python-all 0.12.1 (changelog, source)

Class TaintSink

A node that is vulnerable to one or more types of taint. These nodes provide the sinks when computing the taint flow graph. An example would be an argument to a write to a http response object, such an argument would be vulnerable to unsanitized user-input (XSS).

Users of the taint tracking library should extend this class to provide their own sink nodes.

Import path

import semmle.python.dataflow.old.TaintTracking

Direct supertypes

Known direct subtypes



Holds if this element is at the specified location. The location spans column startcolumn of line startline to column endcolumn of line endline in file filepath. For more information, see Locations.


Holds if this “sinks” taint kind kind Typically this means that this is vulnerable to taint kind kind.


Gets a textual representation of this element.