CodeQL library for Python
codeql/python-all 0.6.4 (changelog, source)
Search

Module Pickle

Provides class and predicates to track external data that may represent malicious pickles.

This module is intended to be imported into a taint-tracking query to extend TaintKind and TaintSink.

Import path

import semmle.python.security.injection.Pickle

Imports

Classes

UnpicklingNode

pickle.loads(untrusted) vulnerability.