CodeQL library for Python
codeql/python-all 2.1.1-dev (changelog, source)
Search

Class UrlRedirect::ReplaceBackslashesSanitizer

A call that replaces backslashes with forward slashes or eliminates them altogether, considered as a partial sanitizer, as well as an additional flow step.

Import path

import semmle.python.security.dataflow.UrlRedirectCustomizations

Direct supertypes

Indirect supertypes

Fields

Inherited fields

Predicates

sanitizes

Holds if this sanitizer sanitizes flow in the given state.

step

Holds if there should be an additional flow step from nodeFrom in stateFrom to nodeTo in stateTo.

Inherited predicates

asCfgNode

Gets the control-flow node corresponding to this node, if any.

from CfgNode
asExpr

Gets the expression corresponding to this node, if any.

from Node
backtrack

Gets a node that may flow into this one using one heap and/or interprocedural step.

from LocalSourceNode
calls

Holds if this data-flow node calls method methodName on the object node object.

from MethodCallNode
flowsTo

Holds if this LocalSourceNode can flow to nodeTo in one or more local flow steps.

from LocalSourceNode
getACall

Gets a call to this node.

from LocalSourceNode
getALocalSource

Gets a local source node from which data may flow to this node in zero or more local data-flow steps.

from Node
getAMethodCall

Gets a call to the method methodName on this node.

from LocalSourceNode
getAnAttributeRead

Gets a read of any attribute on this node.

from LocalSourceNode
getAnAttributeRead

Gets a read of attribute attrName on this node.

from LocalSourceNode
getAnAttributeReference

Gets a reference (read or write) of any attribute on this node.

from LocalSourceNode
getAnAttributeReference

Gets a reference (read or write) of attribute attrName on this node.

from LocalSourceNode
getAnAttributeWrite

Gets a write of any attribute on this node.

from LocalSourceNode
getAnAttributeWrite

Gets a write of attribute attrName on this node.

from LocalSourceNode
getAnAwaited

Gets an awaited value from this node.

from LocalSourceNode
getArg

Gets the data-flow node corresponding to the i’th positional argument of the call corresponding to this data-flow node

from CallCfgNode
getArgByName

Gets the data-flow node corresponding to the named argument of the call corresponding to this data-flow node

from CallCfgNode
getEnclosingCallable

Gets the enclosing callable of this node.

from Node
getFunction

Gets the data-flow node for the function component of the call corresponding to this data-flow node.

from CallCfgNode
getKwargs

Gets the data-flow node corresponding to a dictionary (**) argument of the call corresponding to this data-flow node, if any.

from CallCfgNode
getLocation

Gets the location of this node

from CfgNode
getMethodName

Gets the name of the method being invoked (the bar in foo.bar(...)) if it can be determined.

from MethodCallNode
getNode

Gets the ControlFlowNode represented by this data-flow node.

from CfgNode
getObject

Gets the data-flow node corresponding to the object receiving this call. That is, the foo in foo.bar(...).

from MethodCallNode
getScope

Gets the scope of this node.

from CfgNode
getStarArg

Gets the data-flow node corresponding to the first tuple (*) argument of the call corresponding to this data-flow node, if any.

from CallCfgNode
getSubscript

Gets a subscript of this node.

from LocalSourceNode
hasLocationInfo

Holds if this element is at the specified location. The location spans column startcolumn of line startline to column endcolumn of line endline in file filepath. For more information, see Locations.

from Node
toString

Gets a textual representation of this element.

from CfgNode
track

Gets a node that this node may flow to using one heap and/or interprocedural step.

from LocalSourceNode

Charpred