MDS/openide
1
0
Fork 0
mirror of https://gitflic.ru/project/openide/openide.git synced 2025-12-19 01:50:56 +07:00
Code Issues Packages Projects Releases Wiki Activity
459,238 Commits 16 Branches 7 Tags
243
Commit Graph

7 Commits

Author SHA1 Message Date
Mikhail Pyltsin
b389c297de [uast-inspections] IDEA-331248 Non-safe string: allow static inter-analysis for taint inference 
- support if statements during analysis

GitOrigin-RevId: cebd7172ef8964bf557c15662e4b48acb7f48fb0
 2023-09-04 19:02:12 +00:00
Mikhail Pyltsin
8579ca0616 [java-inspections] IDEA-318681, IDEA-318678, IDEA-318677, IDEA-318676 Improve tainted analysis 
GitOrigin-RevId: 93ef8d87e4dadd2b5cbfcc16b91610503df95664
 2023-05-05 16:37:48 +00:00
Artemiy Sartakov
d42856d2a6 SourceToSinkFlowInspection: better message when unsafe/unknown string is assigned to safe local var (IDEA-281280) 
GitOrigin-RevId: 9761dc6d69ecaece443a7e72e40bb8d2155ef893
 2021-11-16 07:38:37 +00:00
Artemiy Sartakov
40936f24bf SourceToSinkFlowInspection: added fix to propagate safe annotation 
GitOrigin-RevId: 03b5b73ec32510624858245e9024152a7341b3ff
 2021-10-01 11:32:07 +00:00
Artemiy Sartakov
f6986efbcc SourceToSinkFlowInspection: added local inference 
1. local inference for methods
2. fix to mark variables as safe
3. fixed error message in case when tainted value returned from untainted method

GitOrigin-RevId: 2398b6c10883616a505d2443543528e6cc96e9dc
 2021-08-18 09:46:16 +00:00
Artemiy Sartakov
4c26f710ff SourceToSinkFlowInspection: cr fixes (IJ-CR-10092): 
1. RestrictionInfoBuilder -> RestrictionInfoFactory
2. removed redundant extends from wildcards for RestrictionInfoFactory
3. specified package for Untainted annotation in description
4. replaced 'sink' with 'safe method' in inspection descriptions
5. TaintValue#getName -> TaintValue#getAnnotationName
6. formatting

GitOrigin-RevId: d87b8aa8b39653fa18bb96efe8cd90db81764b56
 2021-06-23 09:27:39 +00:00
Artemiy Sartakov
3a1d5cbeb5 SourceToSinkFlowInspection: cr fixes(IJ-CR-10092): 
1. moved SourceToSinkFlowInspection to jvm-analysis-impl
2. resused annos names from UntaintedAnnotationProvider
3. javadoc for public methods
4. renamed inspection to "Unsafe string is passed to safe method"
5. do not suggest to annotate element if it is already annotated with @PolyTainted

GitOrigin-RevId: 6121aa41cf72d1fe258a8ced0752d22370d18c54
 2021-06-19 08:46:16 +00:00