On this page:
1.3.3-funcrel
Updates
- Corrected configuration for the common rule "Avoid Too Many Copy Pasted Artifacts". Now new violations in Python code might be visible in the dashboard.
Resolved issues
| Internal ID | Ticket ID | Summary |
|---|---|---|
| PYTHON-197 | 22189 | Corrected bug on string evaluation leading to a crash with message "Analysis Runner has stopped working .." |
1.3.2-funcrel
Updates
- TCC rules defining default entry/end points corrected from previous changes (1.3.1-funcrel) so that their effect is bounded to Python objects only.
- TCC rule for default entry-points on Python Script objects only applies when scripts are not called from elsewhere.
- TCC rule on SQL-related objects in Python (Standard End Point - Python - Query) now applies to "Python Query", "Python ORM Mapping" and "Python File Query" objects (removed previous reference to "SQL Named Query").
- Change from 'callLink' to 'useLink' between Python File Query objects and Dml Script (or SQL Script in older versions of the sqlanalyzer extension) objects.
1.3.1-funcrel
Updates
- Reference list in quality rule 1021044 (Avoid Python string interpolations to prevent SQL injections) is updated.
- Support for Python super(). This feature corrects a number of incorrect call-links to methods out of the enclosing class hierarchy.
- URL resolution of web services involving global variables are improved.
- TCC default entry/end points from specific types to general categories (concerning web services) are generalized.
New rule
Following rule has been added in this release:
| 1021076 | Avoid mutable default parameter values |
1.3.0-funcrel
Updates
- Support for urllib3 (creation of objects). Partial support for quality rules (see Limitations main text)
- Corrected code line counting of objects using decorators
- Improved resolution of method calls
1.3.0-beta1
New features
- A Python discoverer is shipped together with the extension to automatically create Python analysis units when .py files are present.
Resolved issues
Following table lists the bugs resolved in the current release.
| Internal ID | Ticket ID | Summary |
|---|---|---|
| PYTHON-174 | Update quality rule description (1021016): 'Avoid weak encryption algorithm (Python)'' | |
| PYTHON-175 | Improvements in robustness based on analysis performed in diverse Python applications. | |
| PYTHON-181 | Incorrect link from Flask Operation to Python Class (now the link is correctly created to the method) |
1.3.0-alpha2
Resolved issues
Following table lists the bugs resolved in the current release.
| Internal ID | Ticket ID | Summary |
|---|---|---|
| PYTHON-170 | Detect SQL queries coming from SQL files | |
| PYTHON-171 | SQLAlchemy (Python SQL toolkit) support | |
| PYTHON-172 | Enhance detection of Python Flask web services |
1.3.0-alpha1
Updates
- Creation of links to external programs called from Python (see section Calls to external program from Python).
New rules
The following rules have been added in this release:
| 1021072 | Avoid shadowing class variables |
| 1021074 | Avoid manipulating a list while iterating over it |
For the complete list of rules in 1.3.0-alpha1, see: https://technologies.castsoftware.com/rules?sec=srs_python&ref=||1.3.0-alpha1
Resolved issues
| Internal ID | Ticket ID | Summary |
|---|---|---|
| PYTHON-163 | Links between Python and SQL for raw() calls used in Django framework |