Skip to content

1 python cryptography module upgrades #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
bdrodes wants to merge 896 commits into from
Closed

1 python cryptography module upgrades #2

bdrodes wants to merge 896 commits into from

Conversation

@bdrodes
Copy link

@bdrodes bdrodes commented Dec 21, 2022

Updates to support API modeling for cryptography.

tiferet and others added 30 commits November 29, 2022 13:20
@tiferet
Delete StandardEndpointFilters.
05a943c 
All remaining functionality in `StandardEndpointFilters` is only being used in `EndpointCharacteristics`, so it can be moved there as a small set of helper predicates.
@tiferet
AtmConfig inherits from TaintTracking::Configuration.
50291c7 
That way the specific configs which inherit from `AtmConfig` also inherit from `TaintTracking::Configuration`.

This removes the need for two separate config classes for each query.
@tiferet
Move the definition of isSource to the base class:
cd24ec8 
A long as we're not boosting sources, `isSource` is identical to `isKnownSource`.
@tiferet
Move the definition of isSink to the base class:
a710b72 
Holds if `sink` is a known taint sink or an "effective" sink.
@tiferet
Remove code duplication in query .ql files:
75cd7a9 
Define the query for finding ATM alerts in the base class `AtmConfig`, and call it from each query's .ql file.
@tiferet
Doc suggestion from code review
6f807e9
@erik-krogh
use the query compilation cache in the ATM qltest
84ce232
@erik-krogh
combine into one job, and run on an XL runner
0eae638
@hmac
Merge pull request github#11114 from hmac/case-barrier-guard-3
375403f 
Ruby: Add case string comparison barrier guard
Merge remote-tracking branch 'upstream/main'
dc8b13a
@tiferet
Suggestion from code review:
c5184d3 
Name the query configuration e.g. `NosqlInjectionATMConfig` rather than `Configuration`.
@hmac
Ruby: Add flow summaries for ActiveSupport::JSON
0a98559
@hmac
Ruby: Model various JSON methods
5259d4a
@hmac
Ruby: Model to_json ActiveSupport extension
eff763d
@hmac
Ruby: update test fixture
1bd2dd0
@hmac
Ruby: US spelling
35a6201
@github-actions
Add changed framework coverage reports
13f4a0e
@hmac
Ruby: Add change note
d20d1e5
@hmac
Ruby: Remove redundant dataflow test
6725767
@hmac
Ruby: Fix typo in documentation
14a19d2 
This import isn't needed.
@hmac
Ruby: Model JSON.pretty_generate
dab7970
@tiferet
Merge pull request github#11323 from github/tiferet/simplify-configs
e2e3667 
ATM: Simplify query configurations
@tiferet
Add a boosted version of XssThroughDOM
b885249
Merge remote-tracking branch 'upstream/main'
2923d0c
@redsun82
Merge pull request github#11483 from github/redsun82/cache
da57307 
Swift: tentative fix for the bazel cache
Merge remote-tracking branch 'upstream/main'
b6f240e
@atorralba
Merge pull request github#11485 from github/workflow/coverage/update
594b7ef 
Update CSV framework coverage reports
Merge remote-tracking branch 'upstream/main'
d81e084
@erik-krogh
Merge branch 'main' into test-ci
3d0c9c4
@erik-krogh
remove unused environment variable
045e6ef
your-name and others added 13 commits December 5, 2022 16:40
Merge remote-tracking branch 'upstream/main'
86cc483
@bdrodes
Adding additional hashing algorithms, and block mode predicates. Also…
40abfe3 
… adding 'isKnown' support to get the universe of possible options. Finally added an unknown algorithm stub, so if no match is found, we can consistently have a string representing unknown.
@bdrodes
Changing BlockMode to use the isKnownCipherBlockModeAlgorithm predica…
2c477c7 
…te, and to have a fail safe 'unknown' option. If a block mode is unknown, the isWeak predicate will not stipulate the algorithm is weak by default. An isKnown predicate is added to determine if the algorithm is known.
@bdrodes
Updating cryptodrome and crytopgraphy framework libraries to allow fo…
a50b01f 
… finding block modes that aren't known. This avoids cases where the library is updated and we don't recognize new modes as being weak or strong, instead they would've been ignored entirely.
@bdrodes
Interim partially working refactor of crypto libraries for python.
9bf37b3
@bdrodes
Updates for key derivation in stdlib
36fb8f0
@bdrodes
Deleting workflow from branch.
1ff5cc5
@bdrodes
Cleanup
60bff80
@bdrodes
More cleanup
05f91f3
@bdrodes
More cleanup
a1368a4
@bdrodes
adding a predicate to determine if an encryption algorithm is asymmetric
8564580
@bdrodes
updating algorithm names. Removed some entries that are redundant, an…
1be6bc3 
…d should be caught through name normalization. Added EAX block mode.
@bdrodes
Changed mechanics for unknown block mode.
066270c
@bdrodes bdrodes closed this Dec 21, 2022
ropwareJB pushed a commit that referenced this pull request Jul 25, 2023
@owen-mc
Merge pull request github#13672 from owen-mc/go/make-parameter-nodes-…
5f76caf 
…for-unused-parameters-2

Go: make `ParameterNode`s for unused parameters #2 (make a disjoint class for unused ones)
bdrodes pushed a commit that referenced this pull request Sep 6, 2024
@am0o0
Merge pull request #2 from jketema/amammad-cpp-bombs
05bdce1 
C++: Fix zstd and clean up test
bdrodes pushed a commit that referenced this pull request Jan 9, 2025
Merge pull request #2 from GitHubSecurityLab/refactor_cfgscope
e9c1114 
Refactor CfgScopes and Ast predicate names
bdrodes pushed a commit that referenced this pull request Jan 9, 2025
Merge pull request #2 from github/separate_sources
186f9d0 
Split sources by taint type
LWSimpkins pushed a commit that referenced this pull request Feb 5, 2025
@asgerf
Merge pull request #2 from hvitved/js/source-on-same-line
7bf69d9 
Test: Remove location parsing
LWSimpkins pushed a commit that referenced this pull request Mar 28, 2025
@owen-mc
Merge pull request github#19088 from owen-mc/review/egregius313/18913
6d61820 
Go: Add database source models for the github.com/couchbase/gocb package (#2)
LWSimpkins pushed a commit that referenced this pull request Mar 28, 2025
@owen-mc
Merge pull request github#19090 from owen-mc/review/egregius313/18902
dc242da 
Go: Add `database` source models for the `squirrel` package (#2)
dilanbhalla pushed a commit that referenced this pull request May 15, 2025
@Napalys
Merge pull request #2 from asgerf/js/fastify-addhook
63402ea 
JS: Add isMiddlewareSetup() hook to Routing model
dilanbhalla pushed a commit that referenced this pull request May 15, 2025
@nicolaswill
Merge pull request #2 from nicolaswill/knewbury01/JCA-sample
83617e0 
Implement first stage cryptography modelling and queries
dilanbhalla pushed a commit that referenced this pull request Jun 2, 2025
@owen-mc
Merge pull request github#19556 from owen-mc/java/pr/19512
663c83d 
Java: Fix SpringRequestMappingMethod URL Extraction #2
LWSimpkins pushed a commit that referenced this pull request Jun 9, 2025
@owen-mc
Merge pull request github#19561 from owen-mc/go/mad/bigquery-sql-inje…
e7e4286 
…ction-sink

Go: Add BigQuery as a sink for SQLi queries #2
ropwareJB pushed a commit that referenced this pull request Jul 1, 2025
@owen-mc
Merge pull request github#19738 from owen-mc/pr/felickz/19530
538a5af 
Set CWE-134 from 9.3 to 7.3 CVSS score for memory safe languages (#2)
dilanbhalla pushed a commit that referenced this pull request Oct 17, 2025
@bdrodes
Merge pull request #2 from bdrodes/signature_model_refactor_experimental
73b3398 
Signature model refactor experimental
dilanbhalla pushed a commit that referenced this pull request Nov 24, 2025
@felickz
Merge pull request #2 from felickz/copilot/fix-1760475-601388369-59cd…
20e23f8 
…8e3d-0895-49ec-9025-a9864c8e5367

Fix generate-code-scanning-query-list.py to handle empty code-quality-extended suites
ropwareJB pushed a commit that referenced this pull request Dec 15, 2025
@owen-mc
Improve formatting of tags #2
220fd08
ropwareJB pushed a commit that referenced this pull request Dec 15, 2025
@owen-mc
Use set literals #2
992bd68
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.