Python: Remove 'response' from default threat-models

I didn't want to put the configuration file in `semmle/python/frameworks/**/*.model.yml`, so created `ext/` as in other languages
2025-12-16 16:53:25 +01:00 · 2024-08-09 11:29:16 +02:00
parent 617ab27c75
commit 8f7dec07b8
3 changed files with 9 additions and 1 deletions
--- a/python/ql/lib/ext/default-threat-models-fixup.model.yml
+++ b/python/ql/lib/ext/default-threat-models-fixup.model.yml
@@ -0,0 +1,8 @@
+extensions:
+  - addsTo:
+      pack: codeql/threat-models
+      extensible: threatModelConfiguration
+    data:
+    # Since responses are enabled by default in the shared threat-models configuration,
+    # we need to disable it here to keep existing behavior for the python analysis.
+      - ["response", false, -2147483647]
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -16,4 +16,5 @@ dependencies:
  codeql/yaml: ${workspace}
 dataExtensions:
  - semmle/python/frameworks/**/*.model.yml
+  - ext/*.model.yml
 warnOnImplicitThis: true
--- a/python/ql/test/library-tests/threat-models/default/ActiveKinds.expected
+++ b/python/ql/test/library-tests/threat-models/default/ActiveKinds.expected
@@ -1,4 +1,3 @@
 | default |
 | remote |
 | request |
-| response |