CodeQL library for Python
codeql/python-all 0.6.4 (changelog, source)
Search

Class DjangoModelRawCall

A call to the raw method on a django model. This allows a raw SQL query to be sent to the database, which is a security risk.

Import path

import semmle.python.web.django.Model

Direct supertypes

Indirect supertypes

Predicates

sinks

Holds if this “sinks” taint kind kind Typically this means that this is vulnerable to taint kind kind.

toString

Gets a textual representation of this element.

Inherited predicates

getLocationfrom TaintSink
hasLocationInfo

Holds if this element is at the specified location. The location spans column startcolumn of line startline to column endcolumn of line endline in file filepath. For more information, see Locations.

from TaintSink

Charpred