Graphorin API reference v0.4.0
Graphorin API reference / @graphorin/security / / DataFlowEvaluation
Interface: DataFlowEvaluation
Defined in: packages/security/src/dataflow/types.ts:163
The signal a DataFlowPolicy evaluates for one candidate sink call. Populated by the enforcement point from the resolved tool's metadata plus the run's TaintLedger.
Stable
Properties
| Property | Modifier | Type | Description | Defined in |
|---|---|---|---|---|
carriesUntrustedVerbatim | readonly | boolean | true when the sink's arguments carry untrusted content verbatim. | packages/security/src/dataflow/types.ts:169 |
sensitiveSeen | readonly | boolean | true when secret-tier content has entered the run. | packages/security/src/dataflow/types.ts:173 |
sideEffectClass | readonly | SideEffectClass | The sink's resolved side-effect class. | packages/security/src/dataflow/types.ts:167 |
sourceKinds | readonly | readonly string[] | Untrusted source kinds relevant to this flow (matched + observed). | packages/security/src/dataflow/types.ts:175 |
toolName | readonly | string | Name of the sink tool about to run. | packages/security/src/dataflow/types.ts:165 |
untrustedSeen | readonly | boolean | true when untrusted content has entered the run. | packages/security/src/dataflow/types.ts:171 |