Module IncompleteMultiCharacterSanitizationQuery

Provides shared predicates for reasoning about improper multi-character sanitization.

Import path

import codeql.ruby.security.IncompleteMultiCharacterSanitizationQuery

Provides language-specific predicates for reasoning about improper multi-character sanitization.

isResult	Holds if `replace` has a pattern argument containing a regular expression `dangerous` which matches a dangerous string beginning with `prefix`, in an attempt to avoid a vulnerability of kind `kind`.
matchesDangerousPrefix	Holds if `t` may match the dangerous `prefix` and some suffix, indicating intent to prevent a vulnerability of kind `kind`.
problems	Holds if `replace` has a pattern argument containing a regular expression `dangerous` which matches a dangerous string beginning with `prefix`. `msg` is the alert we report.