For other CodeQL resources, including tutorials and examples, see the CodeQL documentation

CleartextStorage

Module CleartextStorageCustomizations

Modules

Module CleartextStorage

Provides default sources, sinks and sanitizers for detecting “Clear-text storage of sensitive information” vulnerabilities, as well as extension points for adding your own.

Import path


                                import semmle.python.security.dataflow.CleartextStorageCustomizations

Classes

CookieWriteAsSink	The data written to a cookie on a HTTP response, considered as a flow sink.
FileWriteDataAsSink	The data written to a file, considered as a flow sink.
Sanitizer	A sanitizer for “Clear-text storage of sensitive information” vulnerabilities.
SensitiveDataSourceAsSource	A source of sensitive data, considered as a flow source.
Sink	A data flow sink for “Clear-text storage of sensitive information” vulnerabilities.
Source	A data flow source for “Clear-text storage of sensitive information” vulnerabilities.