hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-03-25 00:47:43 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
9e6b178d48082cfba2ce82906367e5144192ede2
codeql/change-notes/1.21/analysis-csharp.md

1014 B
Raw Blame History

Improvements to C# analysis

Changes to existing queries

Query Expected impact Change
Class defines a field that uses an ICryptoTransform class in a way that would be unsafe for concurrent threads (cs/thread-unsafe-icryptotransform-field-in-class) Fewer false positive results The criteria for a result has changed to include nested properties, nested fields and collections. The format of the alert message has changed to highlight the static field.

Changes to code extraction

  • Named attribute arguments are now extracted.

Changes to QL libraries

  • The class Attribute has two new predicates: getConstructorArgument() and getNamedArgument(). The first predicate returns arguments to the underlying constructor call and the latter returns named arguments for initializing fields and properties.

Changes to autobuilder