CodeQL library for Python
codeql/python-all 2.2.0 (changelog, source)
Search

Module LogInjection

Provides default sources, sinks and sanitizers for detecting “log injection” vulnerabilities, as well as extension points for adding your own.

Import path

import semmle.python.security.dataflow.LogInjectionCustomizations

Classes

ConstCompareAsSanitizerGuard

A comparison with a constant, considered as a sanitizer-guard.

LoggingAsSink

A logging operation, considered as a flow sink.

RemoteFlowSourceAsSource

DEPRECATED: Use ActiveThreatModelSource from Concepts instead!

ReplaceLineBreaksSanitizer

A call to replace line breaks, considered as a sanitizer.

Sanitizer

A sanitizer for “log injection” vulnerabilities.

Sink

A data flow sink for “log injection” vulnerabilities.

Source

A data flow source for “log injection” vulnerabilities.

Aliases

StringConstCompareAsSanitizerGuard

DEPRECATED: Use ConstCompareAsSanitizerGuard instead.