Sobelow v0.7.2 API Reference
Modules
Sobelow is a static analysis tool for discovering vulnerabilities in Phoenix applications
Command Injection
Missing Content-Security-Policy
Cross-Site Request Forgery
HSTS
HTTPS
Missing Secure HTTP Headers
Hard-coded Secrets
Denial of Service via Unsafe Atom Interpolation
Denial of Service via List.to_atom
Denial of Service via String.to_atom
Insecure use of binary_to_term
Remote Code Execution
Insecure EEx evaluation
SQL Injection
Path Traversal
Known Vulnerable Dependencies
Cross-Site Scripting
XSS in put_resp_content_type
Mix Tasks
Sobelow is a static analysis tool for discovering vulnerabilities in Phoenix applications