Merge pull request #3479 from geoffw0/fp2762

C++: Allow equality to block taint (security taint tracking)
2025-12-16 16:53:25 +01:00 · 2020-05-25 15:11:10 +02:00
parent 3d58e6f7af 9babd5dc10
commit bc09720704
6 changed files with 156 additions and 2 deletions
--- a/change-notes/1.25/analysis-cpp.md
+++ b/change-notes/1.25/analysis-cpp.md
@@ -39,3 +39,5 @@ The following changes in version 1.25 affect C/C++ analysis in all applications.
      }
  };
  ```
+* The security pack taint tracking library (`semmle.code.cpp.security.TaintTracking`) now considers that equality checks may block the flow of taint.  This results in fewer false positive results from queries that use this library.
+