io.codemodder.remediation.sqlinjection (codemodder-base 0.92.0 API)

package io.codemodder.remediation.sqlinjection

Related Packages

Package

Description

io.codemodder.remediation

io.codemodder.remediation.headerinjection

io.codemodder.remediation.jndiinjection

io.codemodder.remediation.reflectioninjection

io.codemodder.remediation.xss

io.codemodder.remediation.xxe
Class

Description

HQLInjectionRemediator

Remediates HQL injection vulnerabilities.

JavaParserSQLInjectionRemediatorStrategy

Strategy interface for remediating SQL injection vulnerabilities using JavaParser.

QueryParameterizer

This class is temporarily public -- it should ideally be hidden behind a package-private implementor in io.codemodder.remediation.sqlinjection that abstracts away all logic about remediating Hibernate injections.

SQLParameterizer

Contains most of the logic for detecting and fixing parameterizable SQL statements for a given MethodCallExpr.

SQLParameterizerWithCleanup

SQLTableInjectionFilterTransform

Wrap table name parameters in SQL queries with an alphanumeric blacklist filter.