hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-28 02:05:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #5075 from RasmusWL/crypto

Browse Source 
Python: Port py/weak-crypto-key to use type-tracking
This commit is contained in:
yoff
2021-03-18 20:53:28 +01:00
committed by GitHub
parent f4dc5b963b 7b92012edf
commit 746e9948b0
32 changed files with 998 additions and 45 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
python/change-notes/2021-02-02-port-weak-crypto-key-query.md Normal file
View File

@@ -0,0 +1,3 @@
lgtm,codescanning
* Updated _Use of weak cryptographic key_ (`py/weak-crypto-key`) query to use the new type-tracking approach instead of points-to analysis. You may see differences in the results found by the query, but overall this change should result in a more robust and accurate analysis.
* Renamed the query file for _Use of weak cryptographic key_ (`py/weak-crypto-key`) from `WeakCrypto.ql` to `WeakCryptoKey.ql` (in the `python/ql/src/Security/CWE-326/` folder). This will affect any custom query suites that include or exclude this query using its path.