CodeQL library for Python
codeql/python-all 2.2.0 (changelog, source)
Search

Module CodeInjectionQuery

Provides a taint-tracking configuration for detecting “code injection” vulnerabilities.

Note, for performance reasons: only import this file if CodeInjection::Configuration is needed, otherwise CodeInjectionCustomizations should be imported instead.

Import path

import semmle.python.security.dataflow.CodeInjectionQuery

Imports

CodeInjection

Provides default sources, sinks and sanitizers for detecting “code injection” vulnerabilities, as well as extension points for adding your own.

DataFlow

Provides a library for local (intra-procedural) and global (inter-procedural) data flow analysis: deciding whether data can flow from a source to a sink.

TaintTracking

Provides classes for performing local (intra-procedural) and global (inter-procedural) taint-tracking analyses.

Classes

Configuration

DEPRECATED: Use CodeInjectionFlow module instead.

Aliases

CodeInjectionFlow

Global taint-tracking for detecting “code injection” vulnerabilities.