yoff
yoff
This demonstrates that flow summaries can be based on API graphs and all our existing tests can pass 🎉 I have trimmed down the changes needed to get to this...
Follow on to #10539. Fix the def-nodes for subscripts. I also experimented with recovering the index of a subscript (see [the commit](https://github.com/github/codeql/pull/10608/commits/2435ccf06e6f3640d5c091d06b7ad4a1c29e85a2)). I did it for the case where the...
- `ModuleValue.attr` and `ClassValue.lookup` are approximated by `Function.getName` - `ClassValue.getName` is apprximated by `Class.getName` - `Module::named` is approximated by `Module.getName` - `Value::named` is approximated by `Builtins::likelyBuiltin` - `FunctionValue.getNamedArgumentForCall` is approximated...
- `urllib.parse.urljoin` - `fnmatch.filter` - `optparse.parse_args` This brings the number of results for `py/shell-command-constructed-from-input` on a database for `tanghaibao/jvci` extracted without the standard lib up from 5978 to 17055. With...
In preparation for a future where models are generated from the ModelEditor and via AI (as well as the bespoke internal tools we are already building..). I would like to...
This is currently the bare minimum for the UX team to build against.
as it should be covered by `SummarizedCallableFromModel` Also move things around, to look more like the Ruby code. Thanks to @aschackmull for finding this.
This allows a dotted path in the `type` column of a MaD row. This means that ```yml - ["foo", "Member[MS_Class].Instance.Member[instance_method]", "Argument[self]", "ReturnValue.TupleElement[0]", "value"] ``` can now be written ```yml -...
These are the models gathered so far during experiments not extracting the standard library by default. A good part of the models are generated by special automation. Where possible, I...