hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-21 11:16:30 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge branch 'main' into tausbn/python-add-support-for-python-3.12-type-syntax

Browse Source
This commit is contained in:
Taus
2023-11-20 13:27:54 +00:00
parent 216cd88225 9bdc2d1c02
commit 36201105b9
211 changed files with 1062 additions and 431 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
python/ql/lib/CHANGELOG.md
View File

@@ -1,3 +1,9 @@
## 0.11.3
### Minor Analysis Improvements
* Added basic flow for attributes defined on classes, when the attribute lookup is on a direct reference to that class (so not instance, cls parameter, or self parameter). Example: class definition `class Foo: my_tuples = (dangerous, safe)` and usage `SINK(Foo.my_tuples[0])`.
## 0.11.2
### Minor Analysis Improvements

7
python/ql/lib/change-notes/2023-11-07-class-attribute-flow.md → python/ql/lib/change-notes/released/0.11.3.md
View File

@@ -1,4 +1,5 @@
---
category: minorAnalysis
---
## 0.11.3
### Minor Analysis Improvements
* Added basic flow for attributes defined on classes, when the attribute lookup is on a direct reference to that class (so not instance, cls parameter, or self parameter). Example: class definition `class Foo: my_tuples = (dangerous, safe)` and usage `SINK(Foo.my_tuples[0])`.

2
python/ql/lib/codeql-pack.release.yml
View File

@@ -1,2 +1,2 @@
---
lastReleaseVersion: 0.11.2
lastReleaseVersion: 0.11.3

2
python/ql/lib/qlpack.yml
View File

@@ -1,5 +1,5 @@
name: codeql/python-all
version: 0.11.3-dev
version: 0.11.4-dev
groups: python
dbscheme: semmlecode.python.dbscheme
extractor: python

6
python/ql/src/CHANGELOG.md
View File

@@ -1,3 +1,9 @@
## 0.9.3
### Minor Analysis Improvements
* Added modeling of more `FileSystemAccess` in packages `cherrypy`, `aiofile`, `aiofiles`, `anyio`, `sanic`, `starlette`, `baize`, and `io`. This will mainly affect the _Uncontrolled data used in path expression_ (`py/path-injection`) query.
## 0.9.2
No user-facing changes.

7
python/ql/src/change-notes/2023-11-06-more-filesystem-modeling.md → python/ql/src/change-notes/released/0.9.3.md
View File

@@ -1,4 +1,5 @@
---
category: minorAnalysis
---
## 0.9.3
### Minor Analysis Improvements
* Added modeling of more `FileSystemAccess` in packages `cherrypy`, `aiofile`, `aiofiles`, `anyio`, `sanic`, `starlette`, `baize`, and `io`. This will mainly affect the _Uncontrolled data used in path expression_ (`py/path-injection`) query.

2
python/ql/src/codeql-pack.release.yml
View File

@@ -1,2 +1,2 @@
---
lastReleaseVersion: 0.9.2
lastReleaseVersion: 0.9.3

2
python/ql/src/experimental/cryptography/inventory/new_models/AllAsymmetricAlgorithms.ql
View File

@@ -4,7 +4,7 @@
* @kind problem
* @id py/quantum-readiness/cbom/all-asymmetric-algorithms
* @problem.severity error
* @preci cbom
* @tags cbom
* cryptography
*/

1
python/ql/src/experimental/cryptography/inventory/new_models/AllCryptoAlgorithms.ql
View File

@@ -4,7 +4,6 @@
* @kind problem
* @id py/quantum-readiness/cbom/all-cryptographic-algorithms
* @problem.severity error
* @precision high
* @tags cbom
* cryptography
*/

1
python/ql/src/experimental/cryptography/inventory/new_models/AsymmetricEncryptionAlgorithms.ql
View File

@@ -4,7 +4,6 @@
* @kind problem
* @id py/quantum-readiness/cbom/all-asymmetric-encryption-algorithms
* @problem.severity error
* @precision high
* @tags cbom
* cryptography
*/

1
python/ql/src/experimental/cryptography/inventory/new_models/AsymmetricKeyGenOperation.ql
View File

@@ -4,7 +4,6 @@
* @kind problem
* @id py/quantum-readiness/cbom/asymmetric-key-generation
* @problem.severity error
* @precision high
* @tags cbom
* cryptography
*/

1
python/ql/src/experimental/cryptography/inventory/new_models/AuthenticatedEncryptionAlgorithms.ql
View File

@@ -4,7 +4,6 @@
* @kind problem
* @id py/quantum-readiness/cbom/authenticated-encryption-algorithms
* @problem.severity error
* @precision high
* @tags cbom
* cryptography
*/

1
python/ql/src/experimental/cryptography/inventory/new_models/BlockModeAlgorithms.ql
View File

@@ -4,7 +4,6 @@
* @kind problem
* @id py/quantum-readiness/cbom/block-cipher-mode
* @problem.severity error
* @precision high
* @tags cbom
* cryptography
*/

1
python/ql/src/experimental/cryptography/inventory/new_models/BlockModeKnownIVsOrNonces.ql
View File

@@ -4,7 +4,6 @@
* @kind problem
* @id py/quantum-readiness/cbom/iv-sources
* @problem.severity error
* @precision high
* @tags cbom
* cryptography
*/

1
python/ql/src/experimental/cryptography/inventory/new_models/BlockModeUnknownIVsOrNonces.ql
View File

@@ -4,7 +4,6 @@
* @kind problem
* @id py/quantum-readiness/cbom/unkown-iv-sources
* @problem.severity error
* @precision high
* @tags cbom
* cryptography
*/

1
python/ql/src/experimental/cryptography/inventory/new_models/EllipticCurveAlgorithms.ql
View File

@@ -4,7 +4,6 @@
* @kind problem
* @id py/quantum-readiness/cbom/elliptic-curve-algorithms
* @problem.severity error
* @precision high
* @tags cbom
* cryptography
*/

1
python/ql/src/experimental/cryptography/inventory/new_models/HashingAlgorithms.ql
View File

@@ -4,7 +4,6 @@
* @kind problem
* @id py/quantum-readiness/cbom/hash-algorithms
* @problem.severity error
* @precision high
* @tags cbom
* cryptography
*/

1
python/ql/src/experimental/cryptography/inventory/new_models/KeyDerivationAlgorithms.ql
View File

@@ -4,7 +4,6 @@
* @kind problem
* @id py/quantum-readiness/cbom/key-derivation
* @problem.severity error
* @precision high
* @tags cbom
* cryptography
*/

1
python/ql/src/experimental/cryptography/inventory/new_models/KeyExchangeAlgorithms.ql
View File

@@ -4,7 +4,6 @@
* @kind problem
* @id py/quantum-readiness/cbom/key-exchange
* @problem.severity error
* @precision high
* @tags cbom
* cryptography
*/

1
python/ql/src/experimental/cryptography/inventory/new_models/SigningAlgorithms.ql
View File

@@ -4,7 +4,6 @@
* @kind problem
* @id py/quantum-readiness/cbom/signing-algorithms
* @problem.severity error
* @precision high
* @tags cbom
* cryptography
*/

1
python/ql/src/experimental/cryptography/inventory/new_models/SymmetricEncryptionAlgorithms.ql
View File

@@ -4,7 +4,6 @@
* @kind problem
* @id py/quantum-readiness/cbom/symmetric-encryption-algorithms
* @problem.severity error
* @precision high
* @tags cbom
* cryptography
*/

1
python/ql/src/experimental/cryptography/inventory/old_models/AllCryptoAlgorithms.ql
View File

@@ -4,7 +4,6 @@
* @kind problem
* @id py/quantum-readiness/cbom/classic-model/all-cryptographic-algorithms
* @problem.severity error
* @precision high
* @tags cbom
* cryptography
*/

1
python/ql/src/experimental/cryptography/inventory/old_models/BlockModeAlgorithms.ql
View File

@@ -4,7 +4,6 @@
* @kind problem
* @id py/quantum-readiness/cbom/classic-model/block-cipher-mode
* @problem.severity error
* @precision high
* @tags cbom
* cryptography
*/

1
python/ql/src/experimental/cryptography/inventory/old_models/HashingAlgorithms.ql
View File

@@ -4,7 +4,6 @@
* @kind problem
* @id py/quantum-readiness/cbom/classic-model/hash-algorithms
* @problem.severity error
* @precision high
* @tags cbom
* cryptography
*/

2
python/ql/src/qlpack.yml
View File

@@ -1,5 +1,5 @@
name: codeql/python-queries
version: 0.9.3-dev
version: 0.9.4-dev
groups:
- python
- queries