Skip to content

Python: finalize change notes for 1.19 #573

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
markshannon merged 2 commits into from
Nov 30, 2018
Merged

Python: finalize change notes for 1.19 #573

markshannon merged 2 commits into from
Nov 30, 2018

Conversation

@felicitymay
Copy link
Contributor

@felicitymay felicitymay commented Nov 29, 2018

@markshannon and @taus-semmle - I've made some changes to the analysis change notes for Python. They're mostly smallish changes for consistency and clarity. The only substantial change was to move the information about "Assert statement tests the truth value of a literal constant" (py/assert-literal-constant) into the New queries table. As far as I can tell it was erroneously added to the wrong table.

@felicitymay felicitymay added this to the 1.19 milestone Nov 29, 2018
markshannon
markshannon reviewed Nov 29, 2018
View reviewed changes
change-notes/1.19/analysis-python.md Outdated

> Changes that affect alerts in many files or from many queries
> For example, changes to file classification
A new predicate `Stmt.getAnEntryNode()` has been added to make it easier to write reachability queries involving statements.
Copy link
Contributor

@markshannon markshannon Nov 29, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This doesn't make as much sense out of context. This new predicate is necessary because of the changes to the CFG representation.

Copy link
Contributor Author

@felicitymay felicitymay Nov 29, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Okay - that wasn't clear to me. I'll move it.

change-notes/1.19/analysis-python.md Outdated

A new predicate `Stmt.getAnEntryNode()` has been added to make it easier to write reachability queries involving statements.
| Old CFG node order | New CFG node order |
|--------------------|--------------------|
Copy link
Contributor

@markshannon markshannon Nov 29, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't like the table form, as it suggest some relation between item of the same row, where there is none.

Copy link
Contributor Author

@felicitymay felicitymay Nov 29, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Okay - I'll revise it.

@felicitymay
Copy link
Contributor Author

felicitymay commented Nov 29, 2018

@mark - does this work any better?

@markshannon
Copy link
Contributor

markshannon commented Nov 30, 2018

Yes, that's perfect

@markshannon markshannon merged commit d933152 into github:rc/1.19 Nov 30, 2018
cklin pushed a commit that referenced this pull request May 23, 2022
@smowton
Merge pull request #573 from npesaresi/feature/SSRF
d1a2fbe 
Yet another SSRF query for Golang
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@markshannon markshannon markshannon approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

documentation Python

Projects

None yet

Milestone

1.19

Development

Successfully merging this pull request may close these issues.

2 participants

@felicitymay @markshannon