Module UnsafeAndroidAccessQuery
Provides taint tracking configurations to be used in Unsafe Resource Fetching queries.
Import path
import semmle.code.java.security.UnsafeAndroidAccessQueryImports
| FlowSources | Provides classes representing various flow sources for taint tracking. |
| RequestForgery | Provides classes to reason about server-side request forgery (SSRF) attacks. |
| TaintTracking | Provides classes for performing local (intra-procedural) and global (inter-procedural) taint-tracking analyses. |
| UnsafeAndroidAccess | Provides classes to reason about Unsafe Resource Fetching vulnerabilities in Android. |
| java | Provides all default Java QL imports. |
Modules
| FetchUntrustedResourceConfig | A taint configuration tracking flow from untrusted inputs to a resource fetching call. |
Aliases
| FetchUntrustedResourceFlow | Detects taint flow from untrusted inputs to a resource fetching call. |