Skip to main content

ActionsWorkflowExternalScriptEvaluationVulnerability

No description

type ActionsWorkflowExternalScriptEvaluationVulnerability implements ActionsWorkflowVulnerability {
  foundAt: ActionsWorkflowVulnerabilityFoundAt!
  sources: [ActionsWorkflowExternalScriptEvaluationVulnerabilityFragment!]!
  sink: ActionsWorkflowExternalScriptEvaluationVulnerabilityFragment!
}

Fields

ActionsWorkflowExternalScriptEvaluationVulnerability.foundAt ● ActionsWorkflowVulnerabilityFoundAt! non-null object

The location of the vulnerability in a workflow file

ActionsWorkflowExternalScriptEvaluationVulnerability.sources ● [ActionsWorkflowExternalScriptEvaluationVulnerabilityFragment!]! non-null object

Code fragments fetching untrusted data

ActionsWorkflowExternalScriptEvaluationVulnerability.sink ● ActionsWorkflowExternalScriptEvaluationVulnerabilityFragment! non-null object

A code fragment evaluating the untrusted data

Interfaces

ActionsWorkflowVulnerability interface