899 Commits

Author	SHA1	Message	Date
Taus Brock-Nannestad	f07a7bf8cf	Python: Autoformat everything using qlformat. ... Will need subsequent PRs fixing up test failures (due to deprecated methods moving around), but other than that everything should be straight-forward.	2020-07-07 15:43:52 +02:00
Rasmus Wriedt Larsen	d00e7396c4	Python: Consistently use camelCase in annotated call-graph tests	2020-07-06 17:59:16 +02:00
Rasmus Wriedt Larsen	65c4e6c02a	Python: Disable class instantiation annotation for now ... Adjusting test setup properly requires some deep thinking, and I don't think I'm ready to do that right now. Added a TODO instead.	2020-07-06 17:48:15 +02:00
Rasmus Wriedt Larsen	cd8ea78420	Python: Autoformat	2020-07-06 17:34:19 +02:00
Rasmus Wriedt Larsen	9e252d5465	Python: Explain random example	2020-07-06 17:30:49 +02:00
Rasmus Wriedt Larsen	849159b279	Python: Unlimited import depth	2020-07-06 17:30:26 +02:00
Rasmus Wriedt Larsen	acfc62cad6	Python: Fix grammar ... Co-authored-by: Taus <tausbn@gmail.com>	2020-07-06 17:21:29 +02:00
Rasmus Lerchedahl Petersen	33cf96ccb8	Python: Address review comments	2020-07-03 14:11:58 +02:00
Rasmus Lerchedahl Petersen	a9e0288e5b	Python: exclude global vars from local flow	2020-07-03 08:41:10 +02:00
Rasmus Lerchedahl Petersen	bdc68ce6b6	Python: refactor Node class	2020-07-03 08:01:44 +02:00
dilanbhalla	dc73fcc4e8	moved to experimental	2020-07-01 09:54:58 -07:00
Rasmus Lerchedahl Petersen	0b11e77457	Python: make compile	2020-07-01 16:55:44 +02:00
Rasmus Lerchedahl Petersen	79e4f1ee93	Python: Enable consistency check (currently fails)	2020-07-01 09:21:36 +02:00
Rasmus Lerchedahl Petersen	e259281821	Merge branch 'master' of github.com:github/codeql into SharedDataflow ... to receive updates from data flow library	2020-07-01 07:15:32 +02:00
Rasmus Lerchedahl Petersen	f84adb3c26	Python: stub for clearsContent ... also remove all `CastNode`s (seems to help)	2020-06-26 13:09:35 +02:00
Rasmus Lerchedahl Petersen	e147e59652	Merge branch 'master' of github.com:github/codeql into SharedDataflow ... To sync files	2020-06-26 12:01:01 +02:00
Rasmus Lerchedahl Petersen	43f85ef265	Python: typo	2020-06-26 12:00:24 +02:00
Rasmus Lerchedahl Petersen	c5c1c4c0af	Python: started adding some coverage tests	2020-06-25 16:29:41 +02:00
Rasmus Wriedt Larsen	3cc566f703	Merge branch 'master' into python-3521-revived	2020-06-25 12:02:21 +02:00
Rasmus Wriedt Larsen	994db060c7	Python: Use CWE-091 for XSLT ... As indicated here https://www.zaproxy.org/docs/alerts/90017/	2020-06-25 11:53:12 +02:00
Rasmus Lerchedahl Petersen	415e0c4aac	Python: add suggestion for test cases	2020-06-25 10:46:33 +02:00
Rasmus Lerchedahl Petersen	5973fe8411	Python: scaffold for testing data flow coverage	2020-06-25 10:32:10 +02:00
Rasmus Wriedt Larsen	155bbbdec9	Python: Add annotated call-graph tests ... See the added README for in-depth details	2020-06-24 22:15:39 +02:00
Rasmus Lerchedahl Petersen	c70cf6d780	Python: better (if imperfect) handling of phi node	2020-06-23 17:25:33 +02:00
Rasmus Lerchedahl Petersen	b759b71ac8	Python: explain the regression test	2020-06-23 11:02:33 +02:00
Rasmus Lerchedahl Petersen	a55b4660d4	Python: support for with-definitions	2020-06-23 07:45:30 +02:00
Rasmus Lerchedahl Petersen	e8289d6fa1	Python: add regression tests and organise tests	2020-06-22 16:36:19 +02:00
Rasmus Lerchedahl Petersen	13bb971b05	Python: sort out some enclosing callable confusion	2020-06-22 14:26:25 +02:00
Rasmus Lerchedahl Petersen	b65e6fba9e	Python: attempt at capturing maximal flows ... (this is what used to be "all flows")	2020-06-22 11:28:28 +02:00
Rasmus Lerchedahl Petersen	47819bbcda	Python: obtain remaining expected flows ... - implement encosing callable for more nodes - implement extra flow for ESSA global variables	2020-06-22 07:36:09 +02:00
Porcupiney Hairs	a519132407	add support for libxml2	2020-06-22 02:01:07 +05:30
Rasmus Lerchedahl Petersen	426b1da552	Python: update sources and sinks	2020-06-19 11:38:15 +02:00
Rasmus Lerchedahl Petersen	9e078da963	Python: Better definition of all flows ... does not become too big, when we filter out 0-step flows	2020-06-19 11:25:34 +02:00
Rasmus Lerchedahl Petersen	5ca6391f15	Python: update call graph test ... we also have flow into functions!	2020-06-19 07:49:47 +02:00
Rasmus Lerchedahl Petersen	5a864aab87	Python: override genEnclosingCallable ... achieved flow out of functions!	2020-06-19 07:29:46 +02:00
Rasmus Lerchedahl Petersen	9669a6a4dc	Python: test for getASuccessor ... also align test names	2020-06-18 15:10:45 +02:00
Rasmus Lerchedahl Petersen	03b26f7ebe	Python: Remove excessive type pruning	2020-06-18 13:58:47 +02:00
Rasmus Lerchedahl Petersen	d283919b92	Python: implemented ParameterNode, updated test	2020-06-18 07:45:16 +02:00
Rasmus Lerchedahl Petersen	c20219c2b9	Python: more local flow and more tests	2020-06-17 20:48:06 +02:00
Rasmus Lerchedahl Petersen	ce57a28c8f	Python: Use CallableValue and improve tests	2020-06-17 19:12:10 +02:00
Rasmus Lerchedahl Petersen	a45b5a7d3c	Python: Implemented return node ... but I think they receive no flow	2020-06-17 17:41:43 +02:00
Rasmus Lerchedahl Petersen	8e51b2fed8	Python: refactor test for global flow	2020-06-17 16:43:11 +02:00
Rasmus Lerchedahl Petersen	71f364eef3	Python: Implement OutNode ... Also, fix test for local flow	2020-06-17 16:24:44 +02:00
Rasmus Lerchedahl Petersen	52898f16f5	Python: update paths after move	2020-06-17 08:34:45 +02:00
Rasmus Lerchedahl Petersen	e192b66116	Python: move shared dataflow to experimental	2020-06-17 06:46:46 +02:00
Porcupiney Hairs	424e88d318	include sugestions from review	2020-06-08 02:52:11 +05:30
Porcupiney Hairs	1ceb963d4c	Python : Add support for detecting XSLT Injection ... This PR adds support for detecting XSLT injection in Python. I have included the ql files as well as the tests with this.	2020-06-07 03:05:50 +05:30
Porcupiney Hairs	8c5a97170d	Python : Add Xpath injection query ... This PR adds support for detecting XPATH injection in Python. I have included the ql files as well as the tests with this.	2020-05-28 03:15:12 +05:30
yo-h	43bcd5b26c	Add guidelines for experimental CodeQL queries and libraries	2020-02-24 15:08:31 -05:00