9374 Commits

Author	SHA1	Message	Date
Mark Shannon	33a2315ba0	Python tests: Increase import depth to ensure sre_constants module is imported.	2019-01-11 12:15:56 +00:00
Taus Brock-Nannestad	9ac50186f6	Add a few more insecure versions	2019-01-07 15:24:15 +01:00
Taus Brock-Nannestad	1af503ab84	Address documentation comments.	2019-01-07 15:24:15 +01:00
Taus Brock-Nannestad	46973f4305	Support from ssl import PROTOCOL_....	2019-01-07 15:24:15 +01:00
Taus Brock-Nannestad	e8a41f719c	Add documentation.	2019-01-07 15:24:15 +01:00
Taus Brock-Nannestad	dfe3fc6d5c	Pass pyOpenSSL method as parameter instead of keyword argument.	2019-01-07 15:24:15 +01:00
Taus Brock-Nannestad	d604f5c9c9	Fix insecure_version_name comments.	2019-01-07 15:24:15 +01:00
Taus Brock-Nannestad	a893dca06e	Add support for ssl.SSLContext.	2019-01-07 15:24:15 +01:00
Taus Brock-Nannestad	0a839f8468	Python: Check for insecure versions of SSL and TLS.	2019-01-07 15:24:15 +01:00
Mark Shannon	6b5ad0d928	Python: Detect a wider range of generated files.	2018-12-27 15:01:10 +00:00
Taus	cb93017d98	Merge pull request #606 from markshannon/python-fix-regex-fp ... Python: Fix off-by-one error in regex parsing.	2018-12-06 12:59:44 +01:00
Taus	08b1431fc5	Merge pull request #600 from markshannon/python-fix-performance-refinement-edge ... Python ESSA: Fix performance of PythonSsaSourceVariable.hasRefinementEdge()	2018-12-04 18:07:21 +01:00
Taus	8493518135	Merge pull request #599 from markshannon/python-fix-essa-nonlocal ... Python ESSA: Fix definition of ESSA non-local variables.	2018-12-04 17:06:30 +01:00
Taus	3b6c7d6f2e	Merge pull request #582 from markshannon/python-faster-points-to-2 ... Python points-to: Improve performance of subclass test predicates on large DBs	2018-12-04 16:51:21 +01:00
Taus	5c3ff8aadd	Merge pull request #604 from markshannon/python-faster-essa-computation ... Python : Speed up ESSA computation	2018-12-04 16:20:49 +01:00
Taus	a23f7a6b0e	Merge pull request #592 from markshannon/python-windows-import-root ... Python: Fix up computation of import root path	2018-12-04 11:11:59 +01:00
Mark Shannon	8cd497890a	Merge pull request #546 from adityasharad/python/vs-workspace-settings ... Python: Add QL for VS workspace settings file.	2018-12-04 10:00:09 +00:00
Mark Shannon	a5b79e92a5	Python: Fix off-by-one error in regex parsing.	2018-12-03 16:50:47 +00:00
Mark Shannon	68440f7f77	Python ESSA: Speed up ESSA computation by refactoring ADT to match class hierarchy making it more transparent to the optimizer.	2018-12-03 15:08:56 +00:00
Taus	76b1bbc56a	Merge pull request #565 from markshannon/python-analysis-queries-qhelp ... Python: Delete some misleading qhelp and rename a couple of queries.	2018-12-03 14:42:03 +01:00
Mark Shannon	d32e6b8501	Python tests: Make sure stdlib can be found.	2018-12-03 11:55:57 +00:00
Mark Shannon	fb90d2a5a6	Python points-to: Update test results for fixed ESSA computation.	2018-12-03 11:13:18 +00:00
Mark Shannon	08b99944b1	Python ESSA: Fix definition of Essa non-local variables.	2018-12-03 11:12:35 +00:00
Mark Shannon	8e6c16d59f	Python: Fix import root computation for windows and 3.7	2018-12-01 16:53:41 +00:00
Mark Shannon	f11b5ab42f	Python ESSA: Fix performance of PythonSsaSourceVariable.hasRefinementEdge()	2018-12-01 16:36:49 +00:00
Mark Shannon	9aa59fd419	Fix spelling.	2018-11-29 18:11:57 +00:00
Mark Shannon	931122971d	Python points-to: Improve performance by factoring out handling of tuples in class tests.	2018-11-29 16:27:50 +00:00
Mark Shannon	8414d46a87	Python: Fix accidentally introduced cartesian product.	2018-11-29 14:19:47 +00:00
Mark Shannon	a345727f71	Python fix up tags in qhelp.	2018-11-28 17:14:07 +00:00
Mark Shannon	b3eaa46f14	Python: Use consistent abbreviations in weak-crypto query message.	2018-11-28 16:58:22 +00:00
Mark Shannon	4f0a666a43	Python: Tweak name of new query and add change note.	2018-11-28 16:58:22 +00:00
Mark Shannon	3c4c8cf7d3	Python: Add qhelp for new query.	2018-11-28 16:57:34 +00:00
Mark Shannon	1065ad0ce7	Python: Weak crypto query.	2018-11-28 16:57:34 +00:00
Mark Shannon	2bf98b805d	Python: Delete some misleading qhelp and rename a couple of queries.	2018-11-28 16:53:38 +00:00
Mark Shannon	21246dcbf2	Python: clean up change notes and query help.	2018-11-28 15:02:47 +00:00
Mark Shannon	eefb45c94b	Python: jinja2-without-escaping query: Clean up query and account for Template class in tests.	2018-11-28 10:46:44 +00:00
Mark Shannon	1080525d7d	Python: Add missing test stub.	2018-11-28 10:45:48 +00:00
Mark Shannon	243280dc00	Python: New query to check for use of jinja2 templates without auto-escaping.	2018-11-28 10:45:19 +00:00
Mark Shannon	31ac33e723	Merge pull request #528 from taus-semmle/python-flask-debug ... Python: Implement check for flask debug mode.	2018-11-27 19:42:26 +00:00
Taus Brock-Nannestad	7f94c257a7	Change precision to high.	2018-11-27 19:02:44 +01:00
Taus	2b340b4804	Merge pull request #530 from markshannon/python-no-cert-validation ... New query to check for making a request without cert verification.	2018-11-27 19:01:10 +01:00
Mark Shannon	435b309852	Python: Add utility predicate for finding ModuleObject by name.	2018-11-27 17:06:40 +00:00
Taus Brock-Nannestad	6ebf504d97	Update test results after stub change.	2018-11-27 16:59:19 +01:00
Taus Brock-Nannestad	8d341ab467	Fix stub file.	2018-11-27 16:56:09 +01:00
Taus Brock-Nannestad	a4da245809	Python: Implement check for flask debug mode.	2018-11-27 15:14:38 +01:00
Mark Shannon	698957e2cf	Python: Correct case of query name and improve help.	2018-11-27 11:32:40 +00:00
Aditya Sharad	38095e2f96	Python: Add QL for VS workspace settings file.	2018-11-26 15:10:12 +00:00
Max Schaefer	a1772a9ae4	Merge pull request #543 from markshannon/python-backward-compat-default ... Python: Add default.qll for backwards compatibility with older queries and libraries.	2018-11-26 11:27:17 +00:00
Mark Shannon	4d8f5e1020	Python: Add default.qll for backwards compatibility with older queries and libraries.	2018-11-26 11:25:28 +00:00
Taus	f0fbed76e7	Merge pull request #539 from markshannon/python-path-fix-siblings ... Python: Fix parents relation for path queries.	2018-11-23 17:59:04 +01:00