hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 09:13:20 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
codeql-cli-2.23.6
codeql/python/ql/lib/change-notes/released/0.11.1.md
github-actions[bot] 3b3c036626 Release preparation for version 2.15.1
2023-10-16 17:49:39 +00:00

1.2 KiB
Raw Permalink Blame History

0.11.1

Minor Analysis Improvements

  • Added better support for API graphs when encountering from ... import *. For example in the code from foo import *; Bar(), we will now find a result for API::moduleImport("foo").getMember("Bar").getACall()
  • Deleted the deprecated isBarrierGuard predicate from the dataflow library and its uses, use isBarrier and the BarrierGuard module instead.
  • Deleted the deprecated getAUse, getAnImmediateUse, getARhs, and getAValueReachingRhs predicates from the API::Node class.
  • Deleted the deprecated fullyQualifiedToAPIGraphPath class from SubclassFinder.qll, use fullyQualifiedToApiGraphPath instead.
  • Deleted the deprecated Paths.qll file.
  • Deleted the deprecated semmle.python.security.performance folder, use semmle.python.security.regexp instead.
  • Deleted the deprecated semmle.python.security.strings and semmle.python.web folders.
  • Improved modeling of decoding through pickle related functions (which can lead to code execution), resulting in additional sinks for the Deserializing untrusted input query (py/unsafe-deserialization). Added support for pandas.read_pickle, numpy.load and joblib.load.