You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/codeql/reusables/threat-model-description.rst
+1-1
Original file line number
Diff line number
Diff line change
@@ -5,7 +5,7 @@ A threat model is a named class of dataflow sources that can be enabled or disab
5
5
The ``kind`` property of the ``sourceModel`` determines which threat model a source is associated with. There are two main categories:
6
6
7
7
- ``remote`` which represents requests and responses from the network.
8
-
- ``local`` which represents data from local files (``file``), command-line arguments (``commandargs``), database reads (``database``), environment variables(``environment``) and Windows registry values ("windows-registry"). Currently, Windows registry values are used by C# only.
8
+
- ``local`` which represents data from local files (``file``), command-line arguments (``commandargs``), database reads (``database``), environment variables(``environment``), standard input (``stdin``) and Windows registry values ("windows-registry"). Currently, Windows registry values are used by C# only.
9
9
10
10
Note that subcategories can be turned included or excluded separately, so you can specify ``local`` without ``database``, or just ``commandargs`` and ``environment`` without the rest of ``local``.
0 commit comments