Module CommandInjection

Import path

import codeql.ruby.security.CommandInjectionCustomizations

RemoteFlowSourceAsSource	A source of remote user input, considered as a flow source for command injection.
Sanitizer	A sanitizer for command-injection vulnerabilities.
ShellwordsEscapeAsSanitizer	A call to `Shellwords.escape` or `Shellwords.shellescape` sanitizes its input.
Sink	A data flow sink for command-injection vulnerabilities.
Source	A data flow source for command-injection vulnerabilities.
SystemCommandExecutionSink	A command argument to a function that initiates an operating system command.