codeql

mirror of https://github.com/github/codeql.git synced 2025-12-21 11:16:30 +01:00

Author	SHA1	Message	Date
Rasmus Wriedt Larsen	ca93f4d223	Python: Accept `.expected` changes	2023-08-11 10:36:05 +02:00
Rasmus Lerchedahl Petersen	9cb83fcdc9	python: add summaries for copy, pop, get, getitem, setdefault Also add read steps to taint tracking. Reading from a tainted collection can be done in two situations: 1. There is an acces path In this case a read step (possibly from a flow summary) gives rise to a taint step. 2. There is no access path In this case an explicit taint step (possibly via a flow summary) should exist.	2023-05-26 14:04:15 +02:00
Rasmus Lerchedahl Petersen	8d4f9447b1	python: remove explicit steps copy, pop, get, popitem	2023-05-26 13:22:54 +02:00
Rasmus Wriedt Larsen	d73289ac4e	Python: Accept `.expected` changes	2023-04-27 11:54:39 +02:00
erik-krogh	4da0508dae	Merge branch 'main' into py-last-msg	2022-10-11 10:49:19 +02:00
erik-krogh	944ca4a0da	fix some more style-guide violations in the alert-messages	2022-10-07 11:23:34 +02:00
Rasmus Wriedt Larsen	b01a0ae696	Python: Adjust `.expected` after flask source change It's really hard to audit that this is all good.. I tried my best with `icdiff` though -- and there is a problem with ql/src/experimental/Security/CWE-348/ClientSuppliedIpUsedInSecurityCheck.ql that needs to be fixed in the next commit	2022-10-03 20:35:49 +02:00
erik-krogh	089ce5a8a4	change alert messages of path queries to use the same template	2022-09-02 14:45:40 +02:00
erik-krogh	7e0bd5bde4	update expected output of tests	2022-08-22 21:41:47 +02:00
Rasmus Lerchedahl Petersen	103b5761f3	python: remove superfluous configuration this also removes duplicated nodes and edges in the path results	2022-02-08 11:34:11 +01:00
Rasmus Lerchedahl Petersen	88efcff818	python: move query and update reference in query test	2022-02-08 11:24:09 +01:00
Rasmus Lerchedahl Petersen	e51ba6f421	python: rename test directory	2022-02-08 11:20:10 +01:00

12 Commits