14 Commits

Author	SHA1	Message	Date
yoff	3b9ea3a958	Apply suggestions from code review ... Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>	2020-10-14 08:24:26 +02:00
Rasmus Lerchedahl Petersen	b7e8b48e9e	Python: Move concept tests out ... These tests should be fleshed out at some point, but currently they test all that we model.	2020-10-13 13:06:47 +02:00
Rasmus Lerchedahl Petersen	4685f2d5f2	Python: Address many review comments ... still need to move concept tests	2020-10-13 12:03:23 +02:00
Rasmus Lerchedahl Petersen	4bd56fdbe4	Python: Implement framework sinks	2020-10-09 16:13:47 +02:00
Rasmus Lerchedahl Petersen	0d8bd01e10	Python: Port query and add test	2020-10-09 16:11:37 +02:00
Rasmus Wriedt Larsen	de07d9e5d9	Python: Highlight that os.popen is not only problem for extra alerts	2020-10-02 13:34:33 +02:00
Rasmus Wriedt Larsen	3247b300ae	Python: Fix problem with missing use-use flow	2020-10-01 12:55:11 +02:00
Rasmus Wriedt Larsen	9b3509f0ba	Python: Highlight problem with missing use-use flow	2020-10-01 12:51:44 +02:00
Rasmus Wriedt Larsen	4adc26eb62	Python: Fix command injection example code ... `subprocess.Popen(["ls", "-la"], shell=True)` correspond to running `sh -c "ls" -la` So it doesn't follow the pattern of the rest of the test file.	2020-09-30 13:38:37 +02:00
Rasmus Wriedt Larsen	9c1253c8af	Python: Remove flow out of CommandInjection sinks	2020-09-30 13:29:40 +02:00
Rasmus Wriedt Larsen	a2d12f0440	Python: Update CommandInjection.expected	2020-09-30 13:00:10 +02:00
Rasmus Wriedt Larsen	2bdd0284dc	Python: Port py-command-line-injection with new dataflow	2020-09-22 16:28:23 +02:00
Rasmus Wriedt Larsen	8aab0c8be7	Python: Fix .qlref for experimental security tests	2020-09-02 15:35:50 +02:00
Rasmus Wriedt Larsen	34c5da563e	Python: Move files in experiemntal dirs to be consistent ... Except for dataflow (where we have a lot of changes, and I don't want to introduce lots of merge conflicts right now).	2020-09-02 13:39:01 +02:00