Home ⌂Doc Index ◂Up ▴

eric6.Plugins.CheckerPlugins.CodeStyleChecker.Security.Checks.injectionSql

Module implementing a check for SQL injection.

Global Attributes

SIMPLE_SQL_RE

Classes

None

Functions

_checkString Function to check a given string against the list of search patterns.
_evaluateAst Function to analyze the given ast node.
checkHardcodedSqlExpressions Function to check for SQL injection.
getChecks Public method to get a dictionary with checks handled by this module.

_checkString

_checkString(data)

Function to check a given string against the list of search patterns.

data (str)
string data to be checked
Returns:
flag indicating a match
Return Type:
bool
Up

_evaluateAst

_evaluateAst(node)

Function to analyze the given ast node.

node (ast.Str)
ast node to be analyzed
Returns:
tuple containing a flag indicating an execute call and the resulting statement
Return Type:
tuple of (bool, str)
Up

checkHardcodedSqlExpressions

checkHardcodedSqlExpressions(reportError, context, config)

Function to check for SQL injection.

reportError (func)
function to be used to report errors
context (SecurityContext)
security context object
config (dict)
dictionary with configuration data
Up

getChecks

getChecks()

Public method to get a dictionary with checks handled by this module.

Returns:
dictionary containing checker lists containing checker function and list of codes
Return Type:
dict
Up


Home ⌂Doc Index ◂Up ▴