3912 Commits

Author	SHA1	Message	Date
Rasmus Lerchedahl Petersen	e8d3802ee5	Python: use shared inline tests ... - remove from identical-files	2022-12-22 10:20:05 +01:00
Arthur Baars	dceb142551	Merge pull request #11771 from aibaars/alert-suppression-fix-test ... AlertSuppression: fix python test cases	2022-12-21 13:14:59 +01:00
Arthur Baars	2f16d8d86a	AlertSuppression: fix python test cases	2022-12-21 11:26:16 +01:00
Arthur Baars	98c5b81456	Merge pull request #11723 from aibaars/alert-suppression ... CodeQL alert suppression	2022-12-21 10:59:57 +01:00
Rasmus Lerchedahl Petersen	f5e33ac00a	Merge remote-tracking branch 'origin/main' into python/support-grouped-exceptions	2022-12-20 13:31:50 +01:00
Rasmus Lerchedahl Petersen	ad6ed2f629	python: update expectations ... extra tests	2022-12-20 13:01:27 +01:00
Calum Grant	cfd79e2006	Py: Put in commented-out test and update expected	2022-12-19 17:29:48 +00:00
Arthur Baars	0f313231bc	AlertSuppression: add more tests	2022-12-19 16:43:11 +01:00
Calum Grant	a1d229e445	Python: Remove references to LGTM	2022-12-19 15:15:32 +00:00
Arthur Baars	c9739b21cb	AlertSuppression: add support for //codeql comments	2022-12-19 16:10:28 +01:00
Arthur Baars	c176606be5	AlertSuppression: allow //lgtm comments to scope over the next line	2022-12-19 16:10:26 +01:00
yoff	5f0cde5be7	Merge branch 'main' into python/support-grouped-exceptions	2022-12-19 13:38:25 +01:00
Arthur Baars	f68e18cd9c	Python: move AlertSuppression.ql	2022-12-19 12:39:01 +01:00
Arthur Baars	acb5d6e163	Python: use shared AlertSuppression.qll	2022-12-19 12:26:12 +01:00
Rasmus Lerchedahl Petersen	997e3599f0	python: make tests valid and more fleshed out	2022-12-15 12:54:16 +01:00
Rasmus Lerchedahl Petersen	8e8d36f35e	python: this also works in 3.11	2022-12-15 12:54:14 +01:00
Rasmus Lerchedahl Petersen	3ace1ee69f	Python: remove obsolete coments	2022-12-15 12:54:13 +01:00
Tom Hvitved	39fea378b8	Python: Update expected test output	2022-12-13 09:53:01 +01:00
ALJI Mohamed	9336f4f1a2	Considering the use of contextlib.closing() method	2022-12-08 12:26:59 +01:00
Rasmus Wriedt Larsen	d684dbdf5c	Merge pull request #10656 from porcupineyhairs/PyPamImprove ... Python: Improve the PAM authentication bypass query	2022-12-08 11:59:10 +01:00
Rasmus Wriedt Larsen	a826c4f48b	Merge branch 'main' into call-graph-code	2022-12-08 11:39:30 +01:00
Jami	5e694b5983	Merge pull request #11192 from jcogs33/jcogs33/share-key-sizes ... Share encryption key sizes between Java and Python	2022-12-07 08:08:24 -05:00
Tom Hvitved	b5e2e1e469	Merge pull request #11564 from hvitved/dataflow/parameter-position-consistency-checks ... Data flow: Add consistency checks for parameter positions	2022-12-06 09:33:36 +01:00
ALJI Mohamed	68fd75ca34	UnpackUnsafe query and tests	2022-12-05 17:20:22 +01:00
Tom Hvitved	8f701cf1cb	Python: Update expected test output	2022-12-05 14:33:06 +01:00
Asger F	2d578c1a73	Merge branch 'main' into merge-package-type-columns	2022-12-02 10:00:44 +01:00
Jami Cogswell	25f0a13e15	update python test cases	2022-12-01 11:56:44 -05:00
Rasmus Wriedt Larsen	544de5232c	Python: Use ' instead of ` in select text	2022-11-29 14:47:45 +01:00
Rasmus Wriedt Larsen	4e67ec19d0	Python: Adjust alert text of py/pam-auth-bypass	2022-11-28 16:14:38 +01:00
Rasmus Wriedt Larsen	f8442ccb0e	Python: Adjust PAM Auth bypass test slightly	2022-11-28 16:08:44 +01:00
Rasmus Wriedt Larsen	fef06679e5	Python: Remove options file for PAM Auth Bypass ... Should not be needed	2022-11-28 16:03:32 +01:00
Rasmus Wriedt Larsen	479a9e4156	Python: Update .expected	2022-11-28 16:01:42 +01:00
Rasmus Lerchedahl Petersen	91198524cd	Python: port py/super-not-enclosing-class	2022-11-23 14:37:45 +01:00
Asger F	1c910550e6	Python: merge package/type columns	2022-11-23 11:17:42 +01:00
Rasmus Wriedt Larsen	5866af413f	Merge pull request #11347 from tausbn/python-clean-up-import-resolution ... Python: Add change note for module resolution	2022-11-22 15:28:38 +01:00
Rasmus Wriedt Larsen	04a68f8d52	Merge pull request #11372 from RasmusWL/getpass ... Python: Model `getpass.getpass` as source of passwords	2022-11-22 14:49:04 +01:00
Rasmus Wriedt Larsen	00ec3a23ba	Python: Accept fix from module-resolution PR	2022-11-22 14:46:33 +01:00
Rasmus Wriedt Larsen	ee2f7401e8	Python: Add generator-flow/dataflow-consistency.ql	2022-11-22 14:46:33 +01:00
Rasmus Wriedt Larsen	8de5cfef43	Python: Update dataflow-consistency.expected ... After merging in main	2022-11-22 14:46:33 +01:00
Rasmus Wriedt Larsen	c0ad870949	Python: Exclude synthetic generator functions from DataFlowCallable	2022-11-22 14:46:33 +01:00
Rasmus Wriedt Larsen	d86f98d60b	Python: Accept changes for enclosing-callable test	2022-11-22 14:46:33 +01:00
Rasmus Wriedt Larsen	aa382ac042	Python: Add test for strange generator taint flow ... I did check, and this was not a problem with the old call-graph on main! I'm absolutely baffled!	2022-11-22 14:46:33 +01:00
Rasmus Wriedt Larsen	6646e98d20	Python: Fix results outside DB for StackTraceExposure	2022-11-22 14:46:32 +01:00
Rasmus Wriedt Larsen	972cfa5cf6	Python: Accept bad StackTraceExposure.expected ... This is only Python 2 though	2022-11-22 14:46:32 +01:00
Rasmus Wriedt Larsen	a301c93ebf	Python: Fix results outside DB for CleartextLogging	2022-11-22 14:46:32 +01:00
Rasmus Wriedt Larsen	0a41d8d2c1	Python: Accept bad CleartextLogging.expected	2022-11-22 14:46:32 +01:00
Rasmus Wriedt Larsen	39ce50fadc	Python: Fix problems with sinks in pathlib ... This must mean that we did not have this flow with the old call-graph, which means the new call-graph is doing a better job (yay).	2022-11-22 14:46:32 +01:00
Rasmus Wriedt Larsen	edcaff26af	Python: Add path-injection test using pathlib ... Since it has the same problem of showing sinks inside the extracted stdlib	2022-11-22 14:46:32 +01:00
Rasmus Wriedt Larsen	9d29a0a044	Python: Accept changes to .expected from more pathlib flow ... But we don't want to keep this, this commit is just to show why we need a fix :)	2022-11-22 14:46:32 +01:00
Rasmus Wriedt Larsen	df4d09b3f9	Python: Don't rely on all DataFlowCall being resolved ... I've been living dangerously with that assumption :|	2022-11-22 14:46:32 +01:00