13 Commits

Author	SHA1	Message	Date
Rasmus Wriedt Larsen	fd270cc02c	Python: Add basic taint support for urlsplit/urlparse	2020-02-19 16:31:10 +01:00
Rasmus Wriedt Larsen	74345b1c05	Python: Make library-tests/taint/strings tests more transparent ... Following the setup I invented for library-tests/taint/unpacking. TestStep is still a bit annoying, since the output is not easy to eyeball; but for now I guess we can live with it :) I honestly didn't get the point of DistinctStringKinds.ql, other than showing we can handle multiple taint kinds	2020-02-19 16:24:22 +01:00
Taus	5a2dfd40af	Merge pull request #2639 from RasmusWL/python-improve-dict-taint ... Python: Improve tests for tainted collections	2020-01-24 15:06:01 +01:00
Rasmus Wriedt Larsen	772538ff46	Python: Move tests of collection-taint to own dir	2020-01-22 14:24:50 +01:00
Rasmus Wriedt Larsen	df8be438bb	Python: Show that list(tainted_string) works	2020-01-22 14:24:50 +01:00
Rasmus Wriedt Larsen	0da78f216a	Python: Show that e, f, g = tainted_list doesn't work	2020-01-22 14:24:50 +01:00
Rasmus Wriedt Larsen	a55c13e61c	Python: Improve tests for StringDictKind taint ... + show we handle dict.values() + show we don't handle dict.items()	2020-01-22 14:24:50 +01:00
Rasmus Wriedt Larsen	96d5703f2c	Python: Remove use of deprecated methods	2020-01-22 13:45:14 +01:00
Mark Shannon	64c160b75c	Python taint-tracking: Fix ambiguous flow through class instantiation. Tweak the path query to ensure edge to sink is always present.	2019-08-29 10:31:50 +01:00
Mark Shannon	7c4a18eee3	Python taint-tracking: Fix up handling of legacy (config-less) taint-tracking	2019-08-29 10:31:50 +01:00
Mark Shannon	a7845ae0e1	Python taint-tracking: Remove old implementation.	2019-08-29 10:31:50 +01:00
Mark Shannon	453ae19881	Python points-to: Add .getAstNode() method to TaintedNode for forward compatibility with upcoming taint-tracking enhancements.	2019-08-16 09:54:11 +01:00
Mark Shannon	05b69a1c0f	QL tests for Python queries and libraries.	2018-11-19 15:15:54 +00:00