hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-03-24 16:36:57 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
d63df71a8a94de5735d23769d9b7970af85da987
codeql/change-notes/1.20/analysis-csharp.md
calum 26365c82f7 C#: Update change notes.
2019-01-29 18:04:52 +00:00

2.8 KiB
Raw Blame History

Improvements to C# analysis

General improvements

New queries

Query Tags Purpose

Changes to existing queries

@name of query (Query ID) Impact on results How/why the query has changed
Off-by-one comparison against container length (cs/index-out-of-bounds) Fewer false positives Results have been removed when there are additional guards on the index.
Dereferenced variable is always null (cs/dereferenced-value-is-always-null) Improved results The query has been rewritten from scratch, and the analysis is now based on static single assignment (SSA) forms. The query is now enabled by default in LGTM.
Dereferenced variable may be null (cs/dereferenced-value-may-be-null) Improved results The query has been rewritten from scratch, and the analysis is now based on static single assignment (SSA) forms. The query is now enabled by default in LGTM.
SQL query built from user-controlled sources (cs/sql-injection), Improper control of generation of code (cs/code-injection), Uncontrolled format string (cs/uncontrolled-format-string), Clear text storage of sensitive information (cs/cleartext-storage-of-sensitive-information), Exposure of private information (cs/exposure-of-sensitive-information) More results Data sources have been added from user controls in System.Windows.Forms.
Use of default ToString() (cs/call-to-object-tostring) Fewer false positives Results have been removed for char arrays passed to StringBuilder.Append(), which were incorrectly marked as using ToString.
Use of default ToString() (cs/call-to-object-tostring) Fewer results Results have been removed when the object is an interface or an abstract class.

Changes to code extraction

  • Fix extraction of for statements where the condition declares new variables using is.
  • Initializers of stackalloc arrays are now extracted.

Changes to QL libraries

  • The class AccessorCall (and subclasses PropertyCall, IndexerCall, and EventCall) have been redefined, so the expressions they represent are not necessarily the accesses themselves, but rather the expressions that give rise to the accessor calls. For example, in the property assignment x.Prop = 0, the call to the setter for Prop is no longer represented by the access x.Prop, but instead the whole assignment. Consequently, it is no longer safe to cast directly between AccessorCalls and Accesses, and the predicate AccessorCall::getAccess() should be used instead.

Changes to the autobuilder