Module TaintedPath::TaintedPath

Predicates

weakCheck

Holds if check evaluating to outcome is not sufficient to sanitize path.

Classes

AngularJSTemplateUrlSink

A templateUrl member of an AngularJS directive.

Configuration

A taint-tracking configuration for reasoning about tainted-path vulnerabilities.

ExpressRenderSink

A path argument to the Express res.render method.

FsPathSink

A path argument to a file system access.

ModulePathSink

An expression whose value is interpreted as a path to a module, making it a data flow sink for tainted-path vulnerabilities.

RemoteFlowSourceAsSource

A source of remote user input, considered as a flow source for tainted-path vulnerabilities.

Sanitizer

A sanitizer for tainted-path vulnerabilities.

Sink

A data flow sink for tainted-path vulnerabilities.

Source

A data flow source for tainted-path vulnerabilities.

StrongPathCheck

A conditional involving the path, that is not considered to be a weak check.