Merge branch 'main' into port-weak-crypto-algorithm

2026-04-28 10:15:14 +02:00 · 2021-05-18 14:04:18 +02:00
parent 6c755024ac 9b0e3b1950
commit 97fadd9970
638 changed files with 28708 additions and 6350 deletions
--- a/python/change-notes/2021-03-15-port-insecure-protocol.md
+++ b/python/change-notes/2021-03-15-port-insecure-protocol.md
@@ -0,0 +1,2 @@
+lgtm,codescanning
+* Ported use of insecure SSL/TLS version (`py/insecure-protocol`) query to use new data-flow library. This might result in different results, but overall a more robust and accurate analysis.
--- a/python/change-notes/2021-04-15-pathlib-Paths.md
+++ b/python/change-notes/2021-04-15-pathlib-Paths.md
@@ -0,0 +1,2 @@
+lgtm,codescanning
+* Added modeling of `pathlib` from the standard library to recognize `Path` objects constructed in various ways and resulting file accesses. This can lead to new results for `py/path-injection`.
--- a/python/change-notes/2021-04-21-django-v3.2.md
+++ b/python/change-notes/2021-04-21-django-v3.2.md
@@ -0,0 +1,2 @@
+lgtm,codescanning
+* Modeling of Django has been updated to handle new 3.2 release, by supporting the new `QuerySet.alias()` method, which can be a sink for SQL injection.