codeql

mirror of https://github.com/github/codeql.git synced 2026-02-28 04:43:42 +01:00

Author	SHA1	Message	Date
Rasmus Wriedt Larsen	cca78f31ff	Python: Move `PamAuthorization` to new dataflow API	2023-08-28 15:27:50 +02:00
Rasmus Wriedt Larsen	544de5232c	Python: Use ' instead of ` in select text	2022-11-29 14:47:45 +01:00
Rasmus Wriedt Larsen	4e67ec19d0	Python: Adjust alert text of `py/pam-auth-bypass`	2022-11-28 16:14:38 +01:00
Rasmus Wriedt Larsen	3d9556e5a3	Python: Use proper Query suffix	2022-11-28 16:03:17 +01:00
Rasmus Wriedt Larsen	c310948521	Python: Remove enclosing module for PAM Auth Bypass.qll	2022-11-28 16:02:38 +01:00
Porcupiney Hairs	db231a111c	Python : Improve the PAM authentication bypass query The current PAM auth bypass query which was contributed by me a few months back, alert on a vulenrable function but does not check if the function is actually function. This leads to a lot of fasle positives. With this PR, I add a taint-tracking configuration to check if the username parameter can actually be supplied by an attacker. This should bring the FP's significantly down.	2022-11-19 01:29:25 +05:30
Asger F	3a669a8d21	Python: getAValueReachingRhs -> getAValueReachingSink	2022-06-21 12:44:06 +02:00
Rasmus Wriedt Larsen	6611e5b4b8	Merge branch 'main' into promote-pam	2022-05-18 10:35:39 +02:00
Rasmus Wriedt Larsen	b54de13d97	Python: Apply suggestions from code review Co-authored-by: Taus <tausbn@github.com>	2022-05-18 10:30:29 +02:00
Rasmus Wriedt Larsen	044829c3bb	Python: Add `@security-severity` to `py/pam-auth-bypass` The value 8.1 was calculated by our internal tool. This corresponds to a 'High' severity, which from my gut feeling seems reasonable for authorization bypass.	2022-05-11 14:57:21 +02:00
Rasmus Wriedt Larsen	0956d506de	Python: Actually promote `py/pam-auth-bypass` 🤦	2022-05-11 13:44:47 +02:00

11 Commits