Module HardcodedDataInterpretedAsCode

Provides default sources, sinks and sanitizers for reasoning about hard-coded data being interpreted as code, as well as extension points for adding your own.

Import path

import codeql.ruby.security.HardcodedDataInterpretedAsCodeCustomizations

Classes

Sanitizer	A sanitizer for hard-coded data.
Sink	A data flow sink for code injection.
Source	A data flow source for hard-coded data.

Modules

FlowState

Flow states used to distinguish value-preserving flow from taint flow.