mirror of
https://github.com/github/codeql.git
synced 2025-12-18 09:43:15 +01:00
13 lines
1.2 KiB
Markdown
13 lines
1.2 KiB
Markdown
## 0.11.1
|
|
|
|
### Minor Analysis Improvements
|
|
|
|
* Added better support for API graphs when encountering `from ... import *`. For example in the code `from foo import *; Bar()`, we will now find a result for `API::moduleImport("foo").getMember("Bar").getACall()`
|
|
* Deleted the deprecated `isBarrierGuard` predicate from the dataflow library and its uses, use `isBarrier` and the `BarrierGuard` module instead.
|
|
* Deleted the deprecated `getAUse`, `getAnImmediateUse`, `getARhs`, and `getAValueReachingRhs` predicates from the `API::Node` class.
|
|
* Deleted the deprecated `fullyQualifiedToAPIGraphPath` class from `SubclassFinder.qll`, use `fullyQualifiedToApiGraphPath` instead.
|
|
* Deleted the deprecated `Paths.qll` file.
|
|
* Deleted the deprecated `semmle.python.security.performance` folder, use `semmle.python.security.regexp` instead.
|
|
* Deleted the deprecated `semmle.python.security.strings` and `semmle.python.web` folders.
|
|
* Improved modeling of decoding through pickle related functions (which can lead to code execution), resulting in additional sinks for the _Deserializing untrusted input_ query (`py/unsafe-deserialization`). Added support for `pandas.read_pickle`, `numpy.load` and `joblib.load`.
|