mirror of
https://github.com/github/codeql.git
synced 2026-01-10 21:20:22 +01:00
38 lines
1.3 KiB
Markdown
38 lines
1.3 KiB
Markdown
# Improvements to Python analysis
|
|
|
|
The following changes in version 1.24 affect Python analysis in all applications.
|
|
|
|
## General improvements
|
|
|
|
## New queries
|
|
|
|
| **Query** | **Tags** | **Purpose** |
|
|
|-----------------------------|-----------|--------------------------------------------------------------------|
|
|
|
|
## Changes to existing queries
|
|
|
|
| **Query** | **Expected impact** | **Change** |
|
|
|----------------------------|------------------------|------------------------------------------------------------------|
|
|
|
|
### Web framework support
|
|
|
|
The QL-library support for the web frameworks Bottle, CherryPy, Falcon, Pyramid, TurboGears, Tornado, and Twisted have
|
|
been fixed so they provide a proper HttpRequestTaintSource, instead of a TaintSource. This will enable results for the following queries:
|
|
|
|
- py/path-injection
|
|
- py/command-line-injection
|
|
- py/reflective-xss
|
|
- py/sql-injection
|
|
- py/code-injection
|
|
- py/unsafe-deserialization
|
|
- py/url-redirection
|
|
|
|
The QL-library support for the web framework Twisted have been fixed so they provide a proper
|
|
HttpResponseTaintSink, instead of a TaintSink. This will enable results for the following
|
|
queries:
|
|
|
|
- py/reflective-xss
|
|
- py/stack-trace-exposure
|
|
|
|
## Changes to libraries
|