hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-04 21:25:44 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge branch 'main' into cpp-non-constant-format-as-path-query

Browse Source
This commit is contained in:
Mathias Vorreiter Pedersen
2024-03-01 09:26:00 +00:00
parent 2eb8d13439 664dac6b28
commit 4e913592fa
491 changed files with 45787 additions and 47624 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
cpp/ql/src/change-notes/2024-02-16-modelled-functions-block-flow.md Normal file
View File

@@ -0,0 +1,4 @@
---
category: minorAnalysis
---
* The new C/C++ dataflow and taint-tracking libraries (`semmle.code.cpp.dataflow.new.DataFlow` and `semmle.code.cpp.dataflow.new.TaintTracking`) now implicitly assume that dataflow and taint modelled via `DataFlowFunction` and `TaintFunction` always fully overwrite their buffers and thus act as flow barriers. As a result, many dataflow and taint-tracking queries now produce fewer false positives. To remove this assumption and go back to the previous behavior for a given model, one can override the new `isPartialWrite` predicate.