CodeQL library for Ruby
codeql/ruby-all 4.1.4-dev (changelog, source)
Index
Search

Module ReflectedXSSQuery

Provides a taint-tracking configuration for detecting “reflected server-side cross-site scripting” vulnerabilities.

Note, for performance reasons: only import this file if ReflectedXssFlow is needed, otherwise XSS::ReflectedXss should be imported instead.

Import path

import codeql.ruby.security.ReflectedXSSQuery

Imports

DataFlow

Provides classes for performing local (intra-procedural) and global (inter-procedural) data flow analyses.

TaintTracking

Aliases

ReflectedXssFlow

Taint-tracking for detecting “reflected server-side cross-site scripting” vulnerabilities.