CodeQL library for Python
codeql/python-all 2.2.0 (changelog, source)
Search

Class NoSqlInjection::Dict

A state where the tracked data has been converted to a dictionary.

We include cases where data represent JSON objects, so it could actually still be just a string. It could also contain query operators, or even JavaScript code.

Import path

import semmle.python.security.dataflow.NoSqlInjectionCustomizations

Direct supertypes

Indirect supertypes

Predicates

toString

Gets a textual representation of this element.