codeql

mirror of https://github.com/github/codeql.git synced 2026-03-22 07:26:45 +01:00

Author	SHA1	Message	Date
Rasmus Wriedt Larsen	b7145af447	Python: Handle all methods in StringKind.getTaintOfMethodResult	2020-04-20 16:07:30 +02:00
Rasmus Wriedt Larsen	10b36bb7a8	Python: Taint of string method reference isn't handled	2020-04-20 15:01:40 +02:00
Rasmus Wriedt Larsen	fd270cc02c	Python: Add basic taint support for urlsplit/urlparse	2020-02-19 16:31:10 +01:00
Rasmus Wriedt Larsen	74345b1c05	Python: Make library-tests/taint/strings tests more transparent Following the setup I invented for library-tests/taint/unpacking. TestStep is still a bit annoying, since the output is not easy to eyeball; but for now I guess we can live with it :) I honestly didn't get the point of DistinctStringKinds.ql, other than showing we can handle multiple taint kinds	2020-02-19 16:24:22 +01:00
Rasmus Wriedt Larsen	772538ff46	Python: Move tests of collection-taint to own dir	2020-01-22 14:24:50 +01:00
Rasmus Wriedt Larsen	df8be438bb	Python: Show that `list(tainted_string)` works	2020-01-22 14:24:50 +01:00
Rasmus Wriedt Larsen	0da78f216a	Python: Show that `e, f, g = tainted_list` doesn't work	2020-01-22 14:24:50 +01:00
Rasmus Wriedt Larsen	a55c13e61c	Python: Improve tests for StringDictKind taint + show we handle dict.values() + show we don't handle dict.items()	2020-01-22 14:24:50 +01:00
Mark Shannon	05b69a1c0f	QL tests for Python queries and libraries.	2018-11-19 15:15:54 +00:00