Graphorin API reference v0.7.0
Graphorin API reference / @graphorin/security / / DataFlowEvaluation
Interface: DataFlowEvaluation
Defined in: packages/security/src/dataflow/types.ts:247
The signal a DataFlowPolicy evaluates for one candidate sink call. Populated by the enforcement point from the resolved tool's metadata plus the run's TaintLedger.
Stable
Properties
| Property | Modifier | Type | Description | Defined in |
|---|---|---|---|---|
carriesUntrustedVerbatim | readonly | boolean | true when the sink's arguments carry untrusted content verbatim. | packages/security/src/dataflow/types.ts:253 |
sensitiveSeen | readonly | boolean | true when secret-tier content has entered the run. | packages/security/src/dataflow/types.ts:257 |
sideEffectClass | readonly | SideEffectClass | The sink's resolved side-effect class. | packages/security/src/dataflow/types.ts:251 |
sourceKinds | readonly | readonly string[] | Untrusted source kinds relevant to this flow (matched + observed). | packages/security/src/dataflow/types.ts:259 |
toolName | readonly | string | Name of the sink tool about to run. | packages/security/src/dataflow/types.ts:249 |
untrustedSeen | readonly | boolean | true when untrusted content has entered the run. | packages/security/src/dataflow/types.ts:255 |