Class TaintSink
A node that is vulnerable to one or more types of taint. These nodes provide the sinks when computing the taint flow graph. An example would be an argument to a write to a http response object, such an argument would be vulnerable to unsanitized user-input (XSS).
Users of the taint tracking library should extend this class to provide their own sink nodes.
Import path
import semmle.python.dataflow.old.TaintTracking
Direct supertypes
Known direct subtypes
Predicates
getLocation | |
hasLocationInfo | Holds if this element is at the specified location. The location spans column |
sinks | Holds if |
toString | Gets a textual representation of this element. |