hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-03-23 16:06:47 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
4a7bfbe0918ddf2cb35b91e034a0ce57131933fc
codeql/python/ql/test/library-tests
History
Rasmus Wriedt Larsen 6cba2fe4f8 Python: Model Django response sinks that are not vuln to XSS 
Since HttpResponse is not *only* used for XSS, it is still valuable to know the
content is send as part of the response.

The *proper* solution to this problem of not all HttpResponses being vulnerable
to XSS is probably to define a new abstract class in Http.qll called
HttpResponseXSSVulnerableSink (or similar). I would like to model a few more
libraries/frameworks before fully comitting to an approach though.
2020-05-26 16:45:46 +02:00
..
attributes
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
classes
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
comments
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
comparisons
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
comprehensions
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
ControlFlow
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
DefUse
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
dependencies
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
descriptors
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
DuplicateCode
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
encoding
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
examples/custom-sanitizer
Python: Fix up (hopefully) the last file that needs autoformatting.
2020-04-01 14:16:35 +02:00
exceptions
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
exprs
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
filters
Python: Fix (some) shortcomings of tests filter
2020-04-07 11:24:06 +02:00
formatting
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
imports
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
jump_to_defn
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
locations
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
modules
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
objects
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
overrides
Python: Cleanup overrides tests
2020-01-06 10:55:37 +01:00
parameters
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
parentheses
QL tests for Python queries and libraries.
2018-11-19 15:15:54 +00:00
PointsTo
Merge pull request #3300 from RasmusWL/python-pointsto-regression-open
2020-04-23 11:50:30 +02:00
regex
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
scopes
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
security
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
state_tracking
Merge pull request #3156 from tausbn/python-autoformat-all-ql-files
2020-03-30 16:24:18 +02:00
stmts
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
taint
Merge branch 'master' into python-parse_qs
2020-04-30 17:05:17 +02:00
thrift
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
types
Python: ObjAPI to ValAPI: WrongNumForArgsInCall: Update affected queries to use objectapi
2020-04-04 00:15:10 -07:00
variables
Python: Autoformat all .ql files.
2020-03-30 11:59:10 +02:00
web
Python: Model Django response sinks that are not vuln to XSS
2020-05-26 16:45:46 +02:00
options
Python: Remove ignored automatic_locations in qltest options files
2020-02-06 14:28:10 +01:00