CodeQL library for Python
codeql/python-all 2.1.1 (changelog, source)
Search

Module CleartextStorage

Provides default sources, sinks and sanitizers for detecting “Clear-text storage of sensitive information” vulnerabilities, as well as extension points for adding your own.

Import path

import semmle.python.security.dataflow.CleartextStorageCustomizations

Classes

CookieWriteAsSink

The data written to a cookie on a HTTP response, considered as a flow sink.

FileWriteDataAsSink

The data written to a file, considered as a flow sink.

Sanitizer

A sanitizer for “Clear-text storage of sensitive information” vulnerabilities.

SensitiveDataSourceAsSource

A source of sensitive data, considered as a flow source.

Sink

A data flow sink for “Clear-text storage of sensitive information” vulnerabilities.

Source

A data flow source for “Clear-text storage of sensitive information” vulnerabilities.