CodeQL library for Python
codeql/python-all 2.1.1-dev (changelog, source)
Search

Class UnsafeDeserialization::Source

A data flow source for “code execution from deserialization” vulnerabilities.

Import path

import semmle.python.security.dataflow.UnsafeDeserializationCustomizations

Direct supertypes

Indirect supertypes

Known direct subtypes

    Inherited predicates

    asCfgNode

    Gets the control-flow node corresponding to this node, if any.

    from Node
    asExpr

    Gets the expression corresponding to this node, if any.

    from Node
    getALocalSource

    Gets a local source node from which data may flow to this node in zero or more local data-flow steps.

    from Node
    getEnclosingCallable

    Gets the enclosing callable of this node.

    from Node
    getLocation

    Gets the location of this node

    from Node
    getScope

    Gets the scope of this node.

    from Node
    hasLocationInfo

    Holds if this element is at the specified location. The location spans column startcolumn of line startline to column endcolumn of line endline in file filepath. For more information, see Locations.

    from Node
    toString

    Gets a textual representation of this element.

    from Node