Class FabricExecuteExtension

An extension that propagates taint from the arguments of fabric.api.execute(func, arg0, arg1, ...) to the parameters of func, since this will call func(arg0, arg1, ...).

Import path

import semmle.python.security.injection.Command

Direct supertypes

DataFlowNode

Indirect supertypes

@py_flow_node

Fields

call

Predicates

getASuccessorNode

Gets a successor node, where the successor node will be tainted with tokind when this is tainted with fromkind. Extensions to DataFlowNode should override this to provide additional taint steps.

Inherited predicates

getACalleeSuccessorNode	Gets a successor node for data-flow with a change of context from caller to callee (going down the call-stack) across call-site `call`. Data (all forms) is assumed to flow from `this` to `result` Extensions to `DataFlowNode` should override this to provide additional taint steps.	from DataFlowNode
getAReturnSuccessorNode	Gets a successor node for data-flow with a change of context from callee to caller (going up the call-stack) across call-site `call`. Data (all forms) is assumed to flow from `this` to `result` Extensions to `DataFlowNode` should override this to provide additional taint steps.	from DataFlowNode
getASuccessorNode	Gets a successor node for data-flow. Data (all forms) is assumed to flow from `this` to `result`	from DataFlowNode
getASuccessorVariable	Gets a successor variable for data-flow. Data (all forms) is assumed to flow from `this` to `result`. Note: This is an unlikely form of flow. See `DataFlowVariable.getASuccessorVariable()`	from DataFlowNode
prunedSuccessor	Holds if data cannot flow from `this` to `succ`, even though it would normally do so.	from DataFlowNode
toString	Gets a textual representation of this element.	from DataFlowNode

Charpred

FabricExecuteExtension