| emptySingleton | 0% |
| withAddedLines | 0% |
| asMergedForAssignment | 0% |
| asPreservedForParameter | 0% |
| asPreservedForArgument | 0% |
| asIntersectedWithTaintedness | 0% |
| asFilteredForFuncAndParam | 0% |
| getLinesForGenericReturn | 0% |
| withTaintAddedToMethodArgLinks | 0% |
| forSinkBackprop | 0% |
| asAllMaybeMovedAtOffset | 0% |
| asAllMovedToKeys | 0% |
| getForDim | 0% |
| asAllCollapsed | 0% |
| asAllValueFirstLevel | 0% |
| asAllKeyForForeach | 0% |
| withOnlyLinks | 0% |
| asMergedWith | 0% |
| getArraySubsetIdx | 0% |
| toStringForIssue | 0% |
| getRelevantLinesForTaintedness | 0% |
| isEmpty | 0% |
| toLinesArray | 0% |
| __construct | 0% |
| emptySingleton | 0% |
| getGenericLines | 0% |
| withAddedGenericLines | 0% |
| withGenericLines | 0% |
| withAddedParamSinkLines | 0% |
| withAddedParamPreservedLines | 0% |
| withParamSinkLines | 0% |
| withParamPreservedLines | 0% |
| withVariadicParamSinkLines | 0% |
| withVariadicParamPreservedLines | 0% |
| withAddedVariadicParamSinkLines | 0% |
| withAddedVariadicParamPreservedLines | 0% |
| getParamSinkLines | 0% |
| getParamPreservedLines | 0% |
| asMergedWith | 0% |
| __construct | 0% |
| emptySingleton | 0% |
| withOverall | 0% |
| getOverall | 0% |
| canOverrideOverall | 0% |
| withParamSinkTaint | 0% |
| withParamPreservedTaint | 0% |
| withVariadicParamSinkTaint | 0% |
| withVariadicParamPreservedTaint | 0% |
| getParamSinkTaint | 0% |
| getParamPreservedTaint | 0% |
| getParamFlags | 0% |
| canOverrideNonVariadicParam | 0% |
| getVariadicParamSinkTaint | 0% |
| getVariadicParamPreservedTaint | 0% |
| getVariadicParamIndex | 0% |
| canOverrideVariadicParam | 0% |
| getSinkParamKeysNoVariadic | 0% |
| getPreserveParamKeysNoVariadic | 0% |
| hasParamPreserve | 0% |
| asMergedWith | 0% |
| withoutPreserved | 0% |
| asOnlyPreserved | 0% |
| mergeWith | 0% |
| asMergedWith | 0% |
| withoutShape | 0% |
| asAllMovedToKeys | 0% |
| visitMethod | 0% |
| setTagHookParamTaint | 0% |
| setFuncHookParamTaint | 0% |
| visitAssign | 0% |
| analyzeCallNode | 0% |
| checkExternalLink | 0% |
| doSelectWrapperSpecialHandling | 0% |
| maybeTriggerHook | 0% |
| hasPassByReferenceParameter | 0% |
| getHookTypeForRegistrationMethod | 0% |
| handleNormalHookRegistration | 0% |
| handleParserHookRegistration | 0% |
| registerHook | 0% |
| visitReturn | 0% |
| handleGetQueryInfoReturn | 0% |
| checkMakeList | 0% |
| literalListConstToName | 0% |
| checkSQLOptions | 0% |
| checkSQLOption | 0% |
| checkJoinConds | 0% |
| visitReturnOfFunctionHook | 0% |
| getCallableFromHookRegistration | 0% |
| getSingleCallable | 0% |
| getCallbackForVar | 0% |
| visitAssign | 0% |
| detectHTMLForm | 0% |
| visitArray | 0% |
| getInstance | 0% |
| clearCache | 0% |
| registerHook | 0% |
| loadExtensionJson | 0% |
| readJsonFile | 0% |
| getHookSubscribers | 0% |
| isSpecialHookSubscriber | 0% |
| normalizeHookName | 0% |
| __construct | 0% |
| emptySingleton | 0% |
| newFromShape | 0% |
| getForDim | 0% |
| asValueFirstLevel | 0% |
| asKeyForForeach | 0% |
| withLinksAtDim | 0% |
| withKeysLinks | 0% |
| asCollapsed | 0% |
| asMergedWith | 0% |
| withoutShape | 0% |
| withAddedOffset | 0% |
| asMaybeMovedAtOffset | 0% |
| asMovedToKeys | 0% |
| asMergedForAssignment | 0% |
| normalize | 0% |
| getLinksCollapsing | 0% |
| getMethodAndParamTuples | 0% |
| isEmpty | 0% |
| hasDataForFuncAndParam | 0% |
| withFuncAndParam | 0% |
| asPreservedTaintednessForFuncParam | 0% |
| asTaintednessForBackprop | 0% |
| asFilteredForFuncAndParam | 0% |
| __construct | 0% |
| getInstance | 0% |
| asMergedWith | 0% |
| withoutShape | 0% |
| withOffsetPushed | 0% |
| asMovedToKeys | 0% |
| appliedToTaintedness | 0% |
| appliedToTaintednessForBackprop | 0% |
| isEmpty | 0% |
| visitFuncDecl | 0% |
| visitClosure | 0% |
| visitArrowFunc | 0% |
| visitMethod | 0% |
| visitAssignOp | 0% |
| visitPropElem | 0% |
| __construct | 0% |
| emptySingleton | 0% |
| withOffsetTaintedness | 0% |
| withKeysOffsets | 0% |
| asMergedWith | 0% |
| asTaintednessForArgument | 0% |
| asTaintednessForBackpropError | 0% |
| asTaintednessForVarBackpropError | 0% |
| isEmpty | 0% |
| collectFromNode | 0% |
| visitProp | 0% |
| visitNullsafeProp | 0% |
| visitStaticProp | 0% |
| visitVar | 0% |
| visitClosureVar | 0% |
| handleVarNode | 0% |
| visitEncapsList | 0% |
| visitArray | 0% |
| visitArrayElem | 0% |
| visitCast | 0% |
| visitDim | 0% |
| visitUnaryOp | 0% |
| visitBinaryOp | 0% |
| visitConditional | 0% |
| visitCall | 0% |
| visitMethodCall | 0% |
| visitStaticCall | 0% |
| visitNullsafeMethodCall | 0% |
| handleCall | 0% |
| visitPreDec | 0% |
| visitPreInc | 0% |
| visitPostDec | 0% |
| visitPostInc | 0% |
| handleIncOrDec | 0% |
| handleReturnedObject | 0% |
| __construct | 0% |
| assertRequiredConfig | 0% |
| getMergeVariableInfoClosure | 0% |
| analyzeStringLiteralStatement | 0% |
| taintToString | 0% |
| builtinFuncHasTaint | 0% |
| getBuiltinFuncTaint | 0% |
| assertFunctionTaintArrayWellFormed | 0% |
| getCustomFuncTaints | 0% |
| isFalsePositive | 0% |
| parseTaintLine | 0% |
| modifyParamSinkTaint | 0% |
| modifyArgTaint | 0% |
| convertTaintNameToConstant | 0% |
| getPHPFuncTaints | 0% |
| getBeforeLoopBodyAnalysisVisitorClassName | 0% |
| clearCaches | 0% |
| instanceWithParam | 0% |
| withParam | 0% |
| asMergedWith | 0% |
| withoutShape | 0% |
| withOffsetPushedToAll | 0% |
| asAllParamsMovedToKeys | 0% |
| getParams | 0% |
| hasParam | 0% |
| getParamOffsets | 0% |
| withOnlyParams | 0% |
| __construct | 0% |
| safeSingleton | 0% |
| unknownSingleton | 0% |
| newTainted | 0% |
| newFromShape | 0% |
| get | 0% |
| asCollapsed | 0% |
| asKnownKeysMadeUnknown | 0% |
| getAllKeysTaint | 0% |
| with | 0% |
| without | 0% |
| has | 0% |
| withOnly | 0% |
| intersectForSink | 0% |
| withoutKnownKeysFrom | 0% |
| asMergedWith | 0% |
| withAddedOffsetTaintedness | 0% |
| withAddedKeysTaintedness | 0% |
| asMergedForAssignment | 0% |
| asArrayPlusWith | 0% |
| getTaintednessForOffsetOrWhole | 0% |
| asMaybeMovedAtOffset | 0% |
| asMovedToKeys | 0% |
| asValueFirstLevel | 0% |
| withoutKey | 0% |
| withoutKeys | 0% |
| asKeyForForeach | 0% |
| asArrayReplaceWith | 0% |
| asArrayMergeWith | 0% |
| isSafe | 0% |
| asExecToYesTaint | 0% |
| asYesToExecTaint | 0% |
| flagsAsExecToYesTaint | 0% |
| flagsAsYesToExecTaint | 0% |
| asPreservedTaintedness | 0% |
| appliedToLinksForBackprop | 0% |
| withNumkeyAddedToSQL | 0% |
| toShortString | 0% |
| __construct | 0% |
| isRHSArray | 0% |
| visitArray | 0% |
| visitVar | 0% |
| visitProp | 0% |
| visitStaticProp | 0% |
| maybeAddNumkeyOnAssignmentLHS | 0% |
| visitDim | 0% |
| doAssignmentSingleElement | 0% |
| __construct | 0% |
| visitProp | 0% |
| visitNullsafeProp | 0% |
| visitStaticProp | 0% |
| visitVar | 0% |
| visitEncapsList | 0% |
| visitArray | 0% |
| visitArrayElem | 0% |
| visitCast | 0% |
| visitDim | 0% |
| visitUnaryOp | 0% |
| visitBinaryOp | 0% |
| visitConditional | 0% |
| visitCall | 0% |
| visitMethodCall | 0% |
| visitStaticCall | 0% |
| visitNullsafeMethodCall | 0% |
| handleCall | 0% |
| visitPreDec | 0% |
| visitPreInc | 0% |
| visitPostDec | 0% |
| visitPostInc | 0% |
| handleIncOrDec | 0% |
| recurse | 0% |
| doBackpropElements | 0% |
| visitForeach | 0% |
| analyzeNodeAndGetTaintedness | 0% |
| setCachedData | 0% |
| setCurTaintUnknown | 0% |
| setCurTaintSafe | 0% |
| visit | 0% |
| visitClosure | 0% |
| visitFuncDecl | 0% |
| visitMethod | 0% |
| visitArrowFunc | 0% |
| analyzeFunctionLike | 0% |
| visitClassName | 0% |
| visitThrow | 0% |
| visitUnset | 0% |
| handleUnsetDim | 0% |
| visitClone | 0% |
| visitAssignOp | 0% |
| visitStatic | 0% |
| visitAssignRef | 0% |
| visitAssign | 0% |
| doVisitAssign | 0% |
| visitBinaryOp | 0% |
| getBinOpTaint | 0% |
| visitDim | 0% |
| visitPrint | 0% |
| visitExit | 0% |
| visitShellExec | 0% |
| visitIncludeOrEval | 0% |
| visitEcho | 0% |
| visitSimpleSinkAndPropagate | 0% |
| visitStaticCall | 0% |
| visitNew | 0% |
| visitMethodCall | 0% |
| analyzeCallNode | 0% |
| visitNullsafeMethodCall | 0% |
| visitCall | 0% |
| visitVar | 0% |
| getHardcodedTaintednessForVar | 0% |
| visitGlobal | 0% |
| visitReturn | 0% |
| setFuncTaintFromReturn | 0% |
| visitArray | 0% |
| visitClassConst | 0% |
| visitConst | 0% |
| visitStaticProp | 0% |
| visitProp | 0% |
| visitNullsafeProp | 0% |
| visitConditional | 0% |
| visitName | 0% |
| visitNameList | 0% |
| visitUnaryOp | 0% |
| visitPostInc | 0% |
| visitPreInc | 0% |
| visitPostDec | 0% |
| visitPreDec | 0% |
| analyzeIncOrDec | 0% |
| visitCast | 0% |
| visitEncapsList | 0% |
| visitIsset | 0% |
| visitEmpty | 0% |
| visitMagicConst | 0% |
| visitInstanceOf | 0% |
| visitMatch | 0% |
| __construct | 0% |
| emptySingleton | 0% |
| unknownSingleton | 0% |
| getTaintedness | 0% |
| getError | 0% |
| getMethodLinks | 0% |
| asMergedWith | 0% |
| __clone | 0% |
| getTaintednessRaw | 0% |
| setTaintednessRaw | 0% |
| getCausedByRaw | 0% |
| getCausedByRef | 0% |
| getFuncCausedByRaw | 0% |
| setCausedByRaw | 0% |
| setCausedByRef | 0% |
| setFuncCausedByRaw | 0% |
| getMethodLinks | 0% |
| setMethodLinks | 0% |
| getMethodLinksRef | 0% |
| getVarLinks | 0% |
| ensureVarLinksForArgExist | 0% |
| getTaintednessRef | 0% |
| setTaintednessRef | 0% |
| clearRefData | 0% |
| getFuncTaint | 0% |
| doSetFuncTaint | 0% |
| getRetObjs | 0% |
| addRetObjs | 0% |
| initRetObjs | 0% |
| addFuncTaint | 0% |
| ensureFuncTaintIsSet | 0% |
| maybeAddFuncError | 0% |
| mergeFuncError | 0% |
| addTaintError | 0% |
| getCausedByLinesToAdd | 0% |
| ensureTaintednessIsSet | 0% |
| setTaintedness | 0% |
| getDefiningFuncIfDifferent | 0% |
| getPossibleFuncDefinitions | 0% |
| getTaintOfFunction | 0% |
| getSetKnownTaintOfFunctionWithoutAnalysis | 0% |
| analyzeFunc | 0% |
| getDocBlockTaintOfFunc | 0% |
| getTaintByType | 0% |
| getTaintMaskForTypedElement | 0% |
| getTaintMaskForType | 0% |
| getPossibleFutureTaintOfElement | 0% |
| getCurrentMethod | 0% |
| getTaintedness | 0% |
| getTaintednessNode | 0% |
| getTaintednessPhanObj | 0% |
| resolveOffset | 0% |
| resolveValue | 0% |
| getPropInCurrentScopeByName | 0% |
| getCtxN | 0% |
| getObjsForNodeForNumkeyBackprop | 0% |
| getPropFromNode | 0% |
| getDebugInfo | 0% |
| dbgInfo | 0% |
| linkParamAndFunc | 0% |
| mergeTaintDependencies | 0% |
| markAllDependentMethodsExec | 0% |
| markAllDependentMethodsExecForNode | 0% |
| markAllDependentVarsYes | 0% |
| getCausedByLinesForFunc | 0% |
| getActualFuncWithCausedBy | 0% |
| getCallableFromNode | 0% |
| getFirstElmFromArrayOrGenerator | 0% |
| taintToIssuesAndSeverities | 0% |
| maybeEmitIssueSimplified | 0% |
| maybeEmitIssue | 0% |
| isIssueSuppressedOrFalsePositive | 0% |
| handleMethodCall | 0% |
| maybeHandleSpecialCall | 0% |
| extractArrayArgs | 0% |
| translateNamedArg | 0% |
| backpropagateArgTaint | 0% |
| handlePassByRef | 0% |
| getPassByRefObjFromNode | 0% |
| getHardcodedPreservedTaintForFunc | 0% |
| getBinOpTaintMask | 0% |
| getNodeType | 0% |
| nodeIsArray | 0% |
| nodeCanBeArray | 0% |
| nodeCanBeString | 0% |
| elementCanBeNumkey | 0% |
| nodeCanBeIntKey | 0% |
| getReturnObjsOfFunc | 0% |
| isSubclassOf | 0% |