Module RegExpInjection::RegExpInjection

Classes

Configuration

A taint-tracking configuration for untrusted user input used to construct regular expressions.

RegExpObjectCoercionSink

The argument of a call that coerces the argument to a regular expression.

RegExpObjectCreationSink

The first argument to an invocation of RegExp (with or without new).

RegExpSanitizationCall

A call to a function whose name suggests that it escapes regular expression meta-characters.

RemoteFlowSourceAsSource

A source of remote user input, considered as a flow source for regular expression injection.

Sanitizer

A sanitizer for untrusted user input used to construct regular expressions.

Sink

A data flow sink for untrusted user input used to construct regular expressions.

Source

A data flow source for untrusted user input used to construct regular expressions.