codeql/3.1.0.md at fbf9f2fff898ca2817b99f204f75ac0463044f01 - codeql - Gitea: Git with a cup of tea

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00

Files

github-actions[bot] fbf9f2fff8 Release preparation for version 2.20.1

2025-01-07 17:20:13 +00:00

556 B

Raw Blame History

3.1.0

New Features

Added support for parameter annotations in API graphs. This means that in a function definition such as def foo(x: Bar): ..., you can now use the getInstanceFromAnnotation() method to step from Bar to x. In addition to this, the getAnInstance method now also includes instances arising from parameter annotations.

Minor Analysis Improvements

Added modeling of fastapi.Request and starlette.requests.Request as sources of untrusted input, and modeling of tainted data flow out of these request objects.