Module InsecureDownloadQuery

Provides a dataflow configuration for reasoning about the download of sensitive file through insecure connection.

Note, for performance reasons: only import this file if InsecureDownloadFlow is needed, otherwise InsecureDownloadCustomizations should be imported instead.

Import path

import codeql.ruby.security.InsecureDownloadQuery

Imports

InsecureDownload

Classes and predicates for reasoning about download of sensitive file through insecure connection vulnerabilities.

Classes

Configuration

A taint tracking configuration for download of sensitive file through insecure connection.

Aliases

Config	DEPRECATED: Use `InsecureDownloadConfig`
Flow	DEPRECATED: Use `InsecureDownloadFlow`
InsecureDownloadFlow	Taint-tracking for download of sensitive file through insecure connection.