hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 09:13:20 +01:00
Code Issues Packages Projects Releases Wiki Activity
84,161 Commits 1,671 Branches 157 Tags
codeql-cli-2.23.6
Commit Graph

4040 Commits

Author SHA1 Message Date
Taus
927d72414b Merge pull request #1483 from markshannon/merge-121 
Merge rc/1.21 into master
 2019-06-21 14:11:07 +02:00
Mark Shannon
a5f741e504 Python: Use aggressive dead-code elimination when pruning. 2019-06-21 13:03:36 +01:00
Taus
832abc7835 Merge pull request #1473 from markshannon/python-points-to-more-unknowns 
Python: Fix getOperand for 'not' node and make sure it can only point-to a boolean.
 2019-06-21 11:03:23 +02:00
Mark Shannon
26f870bc7f Merge branch 'rc/1.21' into master 2019-06-21 09:52:44 +01:00
Mark Shannon
bbf25f3a23 Python points-to. If __all__ is overly complex, treat all 'public' symbols as exported. 2019-06-21 09:47:50 +01:00
Taus
85ad89c299 Merge pull request #1292 from markshannon/python-prune-in-ql 
Python: Do pruning in QL.
 2019-06-19 16:58:27 +02:00
Mark Shannon
39b7a69abd Python: Tarslip query: Fix up sanitizers. 2019-06-19 15:00:02 +01:00
Mark Shannon
6f15c84bdc Python: Tarslip query; Add sink for members and sanitizers for tarinfo objects. 2019-06-19 11:48:31 +01:00
Mark Shannon
e14f7ef466 Python: Tarslip query; track info objects and handle sanitization. 2019-06-19 11:48:31 +01:00
Mark Shannon
ea4e263060 Python: Initial version and help of tar-slip (CWE-022) query. 2019-06-19 11:48:31 +01:00
Mark Shannon
5b145edc3f Python: Fix getOperand() for not node and make sure it can only point-to a boolean. 2019-06-19 11:23:02 +01:00
Taus
cb43d27344 Merge pull request #1472 from markshannon/python-taint-through-iterators 
Python: Track taint through iteration and iterators including generators.
 2019-06-19 11:33:10 +02:00
Mark Shannon
e8190d9a7b Python: Track taint through 'yield' expressions. 2019-06-18 16:39:52 +01:00
Mark Shannon
97c98f29e4 Python taint-tracking: Support iterables of taint. 2019-06-18 16:39:47 +01:00
Mark Shannon
918bdecba5 Python: Don't record taint past sinks. 2019-06-18 16:34:23 +01:00
Mark Shannon
62591e469e Python: Avoid duplicate modules in points-to and resulting blow-up. 2019-06-17 17:53:17 +01:00
Taus
51e06376a3 Merge pull request #1456 from markshannon/python-remove-value-get-source 
Python: Remove Value.getSource(). It has no use.
 2019-06-14 13:33:08 +02:00
Mark Shannon
1d269b0cd5 Python: Add extra test for pruning. 2019-06-14 09:59:28 +01:00
Mark Shannon
30e1cbc5fc Python: Remove Value.getSource(). It has no use. 2019-06-13 18:23:54 +01:00
Mark Shannon
00fa80346b Python (pruning): Fix up handling of integer inequality. 2019-06-13 18:20:15 +01:00
Taus
635de7cbe9 Merge pull request #1440 from markshannon/python-sanity-improvements 
Python sanity improvements
 2019-06-13 14:59:43 +02:00
Mark Shannon
77030c4dde Merge branch 'rc/1.21' into 'master' 2019-06-13 12:32:45 +01:00
Mark Shannon
97294e16e0 Python: Update tests to account for improved API. 2019-06-12 15:00:20 +01:00
Mark Shannon
3b31b9cf58 Python: Extend object API. Clearly differentiate between what an object is called, and what it is named. 2019-06-12 14:59:39 +01:00
Mark Shannon
0b7d73456e Remove incorrect metadata from test query. 2019-06-12 14:31:21 +01:00
Esben Sparre Andreasen
3f11ae7eaa Merge remote-tracking branch 'rc/1.21' into master 2019-06-12 12:57:55 +02:00
Mark Shannon
0c02d3deef Python: Fix up expected test results for six test. 2019-06-11 15:44:44 +01:00
Taus
1ff67f74e1 Merge pull request #1407 from markshannon/python-fix-odasa-7104 
Python points-to. Improve handling of socket module.
 2019-06-11 11:04:29 +02:00
Mark Shannon
0f0dc81291 Python ESSA: Remove method-callsite definitions when call is in a test defining a pi-node. 2019-06-10 11:23:15 +01:00
Mark Shannon
cd793091ca Python points-to: Make sure that vararg tuples are only assigned to vararg parameters. 2019-06-07 15:31:17 +01:00
Mark Shannon
9e537a76dc Python points-to: Handle varargs in caller 2019-06-07 15:31:17 +01:00
Mark Shannon
468975b0e5 Python points-to: Handle varargs in callee. 2019-06-07 15:31:17 +01:00
Taus
58285c08dd Merge pull request #1391 from markshannon/python-points-to-varargs 
Python points to varargs
 2019-06-05 20:17:01 +02:00
Mark Shannon
75f87bbeda Python points-to. If __all__ is overly complex, treat all 'public' symbols as exported. 2019-06-05 14:46:51 +01:00
Mark Shannon
cec4d55b2a Python points-to: Make sure that vararg tuples are only assigned to vararg parameters. 2019-06-05 11:56:17 +01:00
Mark Shannon
441282d8df Python: Remove obsolete tests. 2019-06-04 12:03:53 +01:00
Mark Shannon
5b0652473d Python points-to: Handle varargs in caller 2019-06-04 10:04:28 +01:00
Mark Shannon
30b340de68 Python points-to: Handle varargs in callee. 2019-06-04 10:03:49 +01:00
Taus
af08f856b5 Merge pull request #1389 from markshannon/python-ipa-objects-fix-performance 
Python: New points-to and object model with performance fixes
 2019-06-03 18:52:28 +02:00
alexey
86ec047be2 Rename files by style guide and change query metadata 2019-05-29 15:35:58 +01:00
Mark Shannon
71ae61c9f7 Python points-to: Remove duplicate import. 2019-05-29 15:02:59 +01:00
Mark Shannon
1ed3e5d9bc Python points-to: Fix ordering of string constants. 2019-05-29 15:02:59 +01:00
Mark Shannon
7181a025f8 Python points-to: Update expected results to account for fixed tuple formatting. 2019-05-29 15:02:59 +01:00
alexey
8168c0ee0a Fix typo in test for the query 2019-05-23 15:54:59 +01:00
alexey
e214174114 add return-or-yield-outside-of-function Python query 2019-05-22 15:27:32 +01:00
Mark Shannon
bf78c62594 Python points-to: Add objects representing missing modules and their attributes. 2019-05-15 11:24:01 +01:00
Mark Shannon
0afcb11a13 Python points-to: Make sure reachability can skip over if-statements. 2019-05-14 11:52:33 +01:00
Mark Shannon
a5ff527ac2 Python: Remove test due to instability across minor versions. 2019-05-14 10:45:43 +01:00
Mark Shannon
a8dc2908de Python: Update test results. 2019-05-13 17:32:29 +01:00
Mark Shannon
972ac0fdbd Python: Update test result. 2019-05-13 15:15:27 +01:00