hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-17 21:14:02 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
e32a5ca846e8fa979e6a2caaeb13bb413b8b199b
codeql/cpp/ql/src/change-notes/released/0.9.6.md
github-actions[bot] 2f058ffb4d Release preparation for version 2.16.4
2024-03-06 20:56:51 +00:00

693 B
Raw Blame History

0.9.6

Minor Analysis Improvements

  • The "non-constant format string" query (cpp/non-constant-format) has been converted to a path-problem query.
  • The new C/C++ dataflow and taint-tracking libraries (semmle.code.cpp.dataflow.new.DataFlow and semmle.code.cpp.dataflow.new.TaintTracking) now implicitly assume that dataflow and taint modelled via DataFlowFunction and TaintFunction always fully overwrite their buffers and thus act as flow barriers. As a result, many dataflow and taint-tracking queries now produce fewer false positives. To remove this assumption and go back to the previous behavior for a given model, one can override the new isPartialWrite predicate.