CodeQL library for Python
codeql/python-all 0.6.4 (changelog, source)
Search

Module LdapInjection

Provides default sources, sinks and sanitizers for detecting “ldap injection” vulnerabilities, as well as extension points for adding your own.

Import path

import semmle.python.security.dataflow.LdapInjectionCustomizations

Classes

DnSanitizer

A sanitizer for “ldap injection” vulnerabilities.

DnSanitizerGuard

DEPRECATED: Use DnSanitizer instead.

DnSink

A data flow sink for “ldap injection” vulnerabilities.

FilterSanitizer

A sanitizer for “ldap injection” vulnerabilities.

FilterSanitizerGuard

DEPRECATED: Use FilterSanitizer instead.

FilterSink

A data flow sink for “ldap injection” vulnerabilities.

LdapDnEscapingSanitizer

A call to replace line breaks functions as a sanitizer.

LdapExecutionAsDnSink

A logging operation, considered as a flow sink.

LdapExecutionAsFilterSink

A logging operation, considered as a flow sink.

LdapFilterEscapingSanitizer

A call to replace line breaks functions as a sanitizer.

RemoteFlowSourceAsSource

A source of remote user input, considered as a flow source.

Source

A data flow source for “ldap injection” vulnerabilities.

StringConstCompareAsDnSanitizerGuard

A comparison with a constant string, considered as a sanitizer-guard.

StringConstCompareAsFilterSanitizerGuard

A comparison with a constant string, considered as a sanitizer-guard.