mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00

Files

Rasmus Wriedt Larsen e487fd3648 Python: Improve alert message for py/iter-returns-non-iterator

Fixes https://github.com/Semmle/ql/issues/1427

2019-10-22 10:27:55 +02:00

Improvements to Python analysis

General improvements

Query	Tags	Purpose
Clear-text logging of sensitive information (`py/clear-text-logging-sensitive-data`)	security, external/cwe/cwe-312	Finds instances where sensitive information is logged without encryption or hashing. Results are shown on LGTM by default.
Clear-text storage of sensitive information (`py/clear-text-storage-sensitive-data`)	security, external/cwe/cwe-312	Finds instances where sensitive information is stored without encryption or hashing. Results are shown on LGTM by default.
Binding a socket to all network interfaces (`py/bind-socket-all-network-interfaces`)	security	Finds instances where a socket is bound to all network interfaces. Results are shown on LGTM by default.

Query	Expected impact	Change
Unreachable code	Fewer false positives	Analysis now accounts for uses of `contextlib.suppress` to suppress exceptions.
`__iter__` method returns a non-iterator	Better alert message	Alert now highlights which class is expected to be an iterator.