mirror of
https://github.com/github/codeql.git
synced 2026-03-25 09:01:47 +01:00
18 lines
1014 B
Markdown
18 lines
1014 B
Markdown
# Improvements to C# analysis
|
|
|
|
## Changes to existing queries
|
|
|
|
| **Query** | **Expected impact** | **Change** |
|
|
|------------------------------|------------------------|-----------------------------------|
|
|
| Class defines a field that uses an ICryptoTransform class in a way that would be unsafe for concurrent threads (`cs/thread-unsafe-icryptotransform-field-in-class`) | Fewer false positive results | The criteria for a result has changed to include nested properties, nested fields and collections. The format of the alert message has changed to highlight the static field. |
|
|
|
|
## Changes to code extraction
|
|
|
|
* Named attribute arguments are now extracted.
|
|
|
|
## Changes to QL libraries
|
|
|
|
* The class `Attribute` has two new predicates: `getConstructorArgument()` and `getNamedArgument()`. The first predicate returns arguments to the underlying constructor call and the latter returns named arguments for initializing fields and properties.
|
|
|
|
## Changes to autobuilder
|