SQLInjectionFixComposer (codemodder-base 0.93.0 API)

java.lang.Object

io.codemodder.remediation.sqlinjection.SQLInjectionFixComposer

public final class SQLInjectionFixComposer extends Object

Composes several transformations related to SQL injections.

Method Summary

Modifier and Type

Method

Description

static boolean

checkAndFix(MethodOrConstructor m)

Given a MethodCallExpr related to executing JDBC API SQL queries (i.e.

static boolean

match(MethodOrConstructor methodOrConstructor)

Check if the MethodCallExpr is a JDBC API query method that is a target of a SQL injection transformation.

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method Details
- checkAndFix
  
  public static boolean checkAndFix(MethodOrConstructor m)
  
  Given a MethodCallExpr related to executing JDBC API SQL queries (i.e. prepareStatement(), executeQuery(), etc.), parameterize data injections or add a validation step for structural injections.
- match
  
  public static boolean match(MethodOrConstructor methodOrConstructor)
  
  Check if the MethodCallExpr is a JDBC API query method that is a target of a SQL injection transformation.