Module NosqlInjection

Provides a taint tracking configuration for reasoning about NoSQL injection vulnerabilities.

Import path

semmle.javascript.security.dataflow.NosqlInjection

Imports

TaintedObject

Provides methods for reasoning about the flow of deeply tainted objects, such as JSON objects parsed from user-controlled data.

javascript

Provides classes for working with JavaScript programs, as well as JSON, YAML and HTML.

Modules

Aliases

NosqlInjectionSanitizer

DEPRECATED: Use NosqlInjection::Sanitizer instead.

NosqlInjectionSink

DEPRECATED: Use NosqlInjection::Sink instead.

NosqlInjectionSource

DEPRECATED: Use NosqlInjection::Source instead.

NosqlInjectionTrackingConfig

DEPRECATED: Use NosqlInjection::Configuration instead.