mirror of
https://github.com/github/codeql.git
synced 2025-12-17 09:13:20 +01:00
11 lines
649 B
Markdown
11 lines
649 B
Markdown
## 0.3.0
|
|
|
|
### Breaking Changes
|
|
|
|
* The imports made available from `import python` are no longer exposed under `DataFlow::` after doing `import semmle.python.dataflow.new.DataFlow`, for example using `DataFlow::Add` will now cause a compile error.
|
|
|
|
### Minor Analysis Improvements
|
|
|
|
* The modeling of `request.files` in Flask has been fixed, so we now properly handle assignments to local variables (such as `files = request.files; files['key'].filename`).
|
|
* Added taint propagation for `io.StringIO` and `io.BytesIO`. This addition was originally [submitted as part of an experimental query by @jorgectf](https://github.com/github/codeql/pull/6112).
|