hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-27 01:21:23 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
c4674bca144f474e8cf16d4f2bb84f802859761b
codeql/python
History
yoff c4674bca14 Python: extend new SSA with ESSA-shaped adapter + baseline comparison test 
Phase 0.5 - Adapter API on top of the shared SSA:

Adds the legacy-ESSA-shaped class hierarchy that the dataflow library
consumes, layered on the shared 'Ssa::Make' instantiation:

  * EssaDefinition / EssaNodeDefinition: the latter exposes
    'getDefiningNode()' (the CFG node at the def's index in its BB)
    and 'getVariable()' / 'getScope()'.
  * AssignmentDefinition: matches Assign, AnnAssign with value,
    AssignExpr and AugAssign target Names. Exposes 'getValue()'
    pointing at the RHS' CFG node.
  * ParameterDefinition: matches when the defining Name is in
    parameter context.
  * WithDefinition: matches 'with ... as x:' bindings.
  * ScopeEntryDefinition: implicit entry defs at synthetic position
    '-1' of the scope's entry basic block (non-local / global /
    builtin / captured reads).
  * PhiFunction (alias for PhiNode).
  * EssaVariable adapter wrapping a 'Ssa::Definition' with 'getAUse()',
    'getDefinition()', 'getAnUltimateDefinition()', and 'getName()'.
  * AdjacentUses module with 'firstUse' and 'adjacentUseUse' predicates
    bridging to 'Ssa::firstUse' / 'Ssa::adjacentUseUse'.

This is the minimum API the new dataflow's internals call into. The
richer legacy ESSA (refinement nodes, attribute refinements, edge
refinements) stays in 'semmle.python.essa.Essa' for legacy code.

Phase 0.6 - Comparison test:

Adds 'dataflow-new-ssa-vs-legacy/CmpTest.ql' that snapshots the
difference between definitions produced by new SSA vs legacy ESSA on
the same Python source. Baseline output records the current
'def-only-old' mismatches, grouped by category:

  * function/class/global definitions with no in-scope read (intentional;
    SSA is liveness-pruned)
  * captured / closure variables (real gap in new SSA - no
    closure-capture handling yet)
  * module variables __name__ / __package__ / $ (legacy ESSA implicit
    bindings)
  * exception 'as' bindings (depend on raise modelling)

Zero 'def-only-new' mismatches: the new SSA never produces a spurious
definition compared to legacy ESSA on this corpus.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
2026-05-18 21:13:57 +00:00
..
.vscode
Python: add debug based on location snippet
2022-10-20 21:20:24 +02:00
config/suites/lgtm
Python: move AlertSuppression.ql
2022-12-19 12:39:01 +01:00
downgrades
Python: Add QL support for lazy imports
2026-04-10 14:25:08 +00:00
extractor
Python: Consolidate duplicated code
2026-04-16 21:14:42 +00:00
old-change-notes
python: modern change note
2022-01-31 11:27:55 +01:00
PoCs
spelling: retrieval
2022-10-13 11:21:09 -04:00
ql
Python: extend new SSA with ESSA-shaped adapter + baseline comparison test
2026-05-18 21:13:57 +00:00
scripts
Python: Add create-extractor-pack.sh for Python
2026-04-09 13:06:45 +00:00
tools
All languages: account for paths and paths-ignore in XML and other ancillary extraction
2026-01-06 12:48:01 +00:00
BUILD.bazel
Autoformat
2025-02-20 19:31:00 +00:00
codeql-extractor.yml
Turn on overlay support in codeql-extractor.yml
2025-10-06 11:36:54 +02:00