hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-18 01:33:15 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #13676 from RasmusWL/aiohttp-ssrf-sink

Browse Source 
Python: Relax restriction of flow through `async with`
This commit is contained in:
Rasmus Wriedt Larsen
2023-07-07 14:55:57 +02:00
committed by GitHub
parent b14cac6b28 30cf213372
commit a850a481d0
3 changed files with 41 additions and 27 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
python/ql/src/change-notes/2023-07-06-aiohttp-clientsession-modeling.md Normal file
View File

@@ -0,0 +1,4 @@
---
category: minorAnalysis
---
* Fixed modeling of `aiohttp.ClientSession` so we properly handle `async with` uses. This can impact results of server-side request forgery queries (`py/full-ssrf`, `py/partial-ssrf`).