ActionsWorkflowExternalScriptEvaluationVulnerability
No description
type ActionsWorkflowExternalScriptEvaluationVulnerability implements ActionsWorkflowVulnerability {
foundAt: ActionsWorkflowVulnerabilityFoundAt!
sources: [ActionsWorkflowExternalScriptEvaluationVulnerabilityFragment!]!
sink: ActionsWorkflowExternalScriptEvaluationVulnerabilityFragment!
}
Fields
ActionsWorkflowExternalScriptEvaluationVulnerability.foundAt
● ActionsWorkflowVulnerabilityFoundAt!
non-null object
The location of the vulnerability in a workflow file
ActionsWorkflowExternalScriptEvaluationVulnerability.sources
● [ActionsWorkflowExternalScriptEvaluationVulnerabilityFragment!]!
non-null object
Code fragments fetching untrusted data
ActionsWorkflowExternalScriptEvaluationVulnerability.sink
● ActionsWorkflowExternalScriptEvaluationVulnerabilityFragment!
non-null object
A code fragment evaluating the untrusted data