CodeQL library for Ruby
codeql/ruby-all 0.8.15-dev (changelog, source)
Index
Search

Module LdapInjection

Provides default sources, sinks and sanitizers for detecting LDAP Injections, as well as extension points for adding your own

Import path

import codeql.ruby.security.LdapInjectionCustomizations

Predicates

isAdditionalFlowStep

Additional taint steps for “LDAP Injection” vulnerabilities.

Classes

NetLdapFilterEscapeSanitization

A call to Net::LDAP::Filter.escape, considered as a sanitizer.

Sanitizer

A sanitizer for LDAP Injection vulnerabilities.

Sink

A data flow sink for LDAP Injection vulnerabilities

Source

A data flow source for LDAP Injection vulnerabilities