hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-30 03:05:15 +02:00
Code Issues Packages Projects Releases Wiki Activity

Python: Port py/weak-crypto-key to use type-tracking

Browse Source 
instead of points-to.

Looking at query results also made me realize I didn't supply a very good
"origin" for ECC in cryptography package, so I improved that 👍 -- maybe that
sohuld have been split into multiple commits... too late :(
This commit is contained in:
Rasmus Wriedt Larsen
2021-02-02 17:10:36 +01:00
parent 2429c6c450
commit 46ad611d57
5 changed files with 102 additions and 78 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
python/change-notes/2021-02-02-port-weak-crypto-key-query.md Normal file
View File

@@ -0,0 +1,2 @@
lgtm,codescanning
* Ported _Use of weak cryptographic key_ (`py/weak-crypto-key`) query to use new type-tracking approach instead of points-to. This might result in some difference in results being found, but overall this should result in a more robust and accurate analysis.