Merge branch 'github:main' into main

This commit is contained in:
Chris Campbell
2023-11-20 12:15:45 +00:00
committed by GitHub
179 changed files with 1061 additions and 399 deletions

View File

@@ -1,3 +1,9 @@
## 0.11.3
### Minor Analysis Improvements
* Added basic flow for attributes defined on classes, when the attribute lookup is on a direct reference to that class (so not instance, cls parameter, or self parameter). Example: class definition `class Foo: my_tuples = (dangerous, safe)` and usage `SINK(Foo.my_tuples[0])`.
## 0.11.2
### Minor Analysis Improvements

View File

@@ -1,4 +1,5 @@
---
category: minorAnalysis
---
## 0.11.3
### Minor Analysis Improvements
* Added basic flow for attributes defined on classes, when the attribute lookup is on a direct reference to that class (so not instance, cls parameter, or self parameter). Example: class definition `class Foo: my_tuples = (dangerous, safe)` and usage `SINK(Foo.my_tuples[0])`.

View File

@@ -1,2 +1,2 @@
---
lastReleaseVersion: 0.11.2
lastReleaseVersion: 0.11.3

View File

@@ -1,5 +1,5 @@
name: codeql/python-all
version: 0.11.3-dev
version: 0.11.4-dev
groups: python
dbscheme: semmlecode.python.dbscheme
extractor: python

View File

@@ -1,3 +1,9 @@
## 0.9.3
### Minor Analysis Improvements
* Added modeling of more `FileSystemAccess` in packages `cherrypy`, `aiofile`, `aiofiles`, `anyio`, `sanic`, `starlette`, `baize`, and `io`. This will mainly affect the _Uncontrolled data used in path expression_ (`py/path-injection`) query.
## 0.9.2
No user-facing changes.

View File

@@ -1,4 +1,5 @@
---
category: minorAnalysis
---
## 0.9.3
### Minor Analysis Improvements
* Added modeling of more `FileSystemAccess` in packages `cherrypy`, `aiofile`, `aiofiles`, `anyio`, `sanic`, `starlette`, `baize`, and `io`. This will mainly affect the _Uncontrolled data used in path expression_ (`py/path-injection`) query.

View File

@@ -1,2 +1,2 @@
---
lastReleaseVersion: 0.9.2
lastReleaseVersion: 0.9.3

View File

@@ -1,5 +1,5 @@
name: codeql/python-queries
version: 0.9.3-dev
version: 0.9.4-dev
groups:
- python
- queries