hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
33b4ae8bbb39b6f0c2aca4c9b5d0f56c7c0a9444
codeql/python/ql/lib/change-notes/released/1.0.0.md
github-actions[bot] 33b4ae8bbb Release preparation for version 2.17.4
2024-05-28 15:44:32 +00:00

1.1 KiB
Raw Blame History

1.0.0

Breaking Changes

  • CodeQL package management is now generally available, and all GitHub-produced CodeQL packages have had their version numbers increased to 1.0.0.

New Features

  • A Python MaD (Models as Data) row may now contain a dotted path in the type column. Like in Ruby, a path to a class will refer to instances of that class. This means that the summary ["foo", "Member[MyClass].Instance.Member[instance_method]", "Argument[0]", "ReturnValue", "value"] can now be written ["foo.MS_Class", "Member[instance_method]", "Argument[0]", "ReturnValue", "value"]. To refer to an actual class, one may add a ! at the end of the path.

Minor Analysis Improvements

  • The request parameter of Flask SessionInterface.open_session method is now modeled as a remote flow source.
  • Additional heuristics for a new sensitive data classification for private information (e.g. credit card numbers) have been added to the shared SensitiveDataHeuristics.qll library. This may result in additional results for queries that use sensitive data such as py/clear-text-storage-sensitive-data and py/clear-text-logging-sensitive-data.