CodeQL library for Swift
codeql/swift-all 3.0.1-dev (changelog, source)
Search

Module UncontrolledFormatStringExtensions

Provides classes and predicates for reasoning about uncontrolled format string vulnerabilities.

Import path

import codeql.swift.security.UncontrolledFormatStringExtensions

Imports

swift

Top-level import for the Swift language pack

Predicates

formatLikeHeuristic

Holds if f, ix describe pd and pd is a parameter that might be a format string.

Classes

HeuristicUncontrolledFormatStringSink

An uncontrolled format string sink that is determined by imprecise methods.

UncontrolledFormatStringAdditionalFlowStep

A unit class for adding additional flow steps.

UncontrolledFormatStringBarrier

A barrier for uncontrolled format string vulnerabilities.

UncontrolledFormatStringSink

A dataflow sink for uncontrolled format string vulnerabilities.