1
0
mirror of https://github.com/danog/psalm.git synced 2024-11-26 20:34:47 +01:00
Commit Graph

511 Commits

Author SHA1 Message Date
Markus Staab
86af28aa31
Document more taint types (#4704)
* Document more taint types

Taken from the TaintKind enum

* Add more of a description

Co-authored-by: Matthew Brown <github@muglug.com>
2021-01-29 11:46:26 +01:00
Matthew Brown
2ea96069eb
Add example from @ludofleury's solution 2021-01-29 11:46:24 +01:00
Lukas Reschke
2f8a5028d5
Add more verbose description for TaintedHtml (#4668)
Ref https://github.com/vimeo/psalm/issues/4590
2021-01-29 11:46:22 +01:00
Matt Brown
684340cbe3
Fix #4656 - separate UnusedConstructor from UnusedMethod 2021-01-29 11:46:21 +01:00
Matthew Brown
7edb8ef3f8
Fix taint description 2021-01-29 11:46:19 +01:00
Matt Brown
02b1cc2288
Change TaintedText to TaintedCallable 2021-01-29 11:46:17 +01:00
Lukas Reschke
3fb73564f6
Advertise SARIF export in the documentation (#4633) 2021-01-29 11:46:16 +01:00
Lukas Reschke
2ad5eee193
Add dedicated types for 'file', 'header' and 'cookie' (#4630)
* [WIP] Add dedicated sinks for 'file', 'header' and 'cookie'

* Add documentation

* Add mapping for taint flows

* Add tests

* Fix test
2021-01-29 11:46:16 +01:00
Mikhail Snetkov
f969b01db4
Fix missing bracket in docs (#4614) 2021-01-29 11:46:15 +01:00
Lukas Reschke
ce05165384
Split LDAP into custom category (#4604)
- Adds ldap_escape as sanitizer
- Defines the right parameters to ldap_search as sink
- Wrote documentation
- Added tests
2021-01-29 11:46:14 +01:00
Lukas Reschke
99d094b5e0
Add SSRF sinks (#4592) 2021-01-29 11:46:14 +01:00
Matt Brown
db566c7c4d
Improve documentation for taints a little
Ref #4590
2021-01-29 11:46:13 +01:00
Matt Brown
2c69618347
Break out TaintedInput issues into a lot of separate ones 2021-01-29 11:46:13 +01:00
Lukas Reschke
6105732e8a
Fix typo (#4555) 2021-01-29 11:46:11 +01:00
Lukas Reschke
7079cff31c
$expr->name is not prefixed with $ (#4554)
The example as-is would currently not flag the following code:

```
	public function foo() {
		$foo = $bad_data;
		\shell_exec($foo);
        } 
```

Switching it to `bad_data` made it work.
2021-01-29 11:46:11 +01:00
Matthew Brown
51abbc9074
Update MixedOperand.md 2021-01-29 11:46:06 +01:00
Matthew Brown
39ad587c3e
Update to more specific example 2021-01-29 11:46:04 +01:00
Matthew Brown
5d1dd3ca65
Add @weirdan's fix 2021-01-29 11:46:04 +01:00
Matthew Brown
afc38b841c
Add aka 2021-01-29 11:45:01 +01:00
Matthew Brown
647e7de70c
Fix brackets 2021-01-29 11:45:01 +01:00
Matt Brown
881068d5c0
Detect when targets are incorrectly targeted 2021-01-29 11:44:36 +01:00
Matt Brown
951c3715f7
Fix tests 2021-01-29 11:44:33 +01:00
Matthew Brown
831bcdc057
Experiment with PHP 7.1 compatibility (#4421)
* Experiment with PHP 7.1 compatibility

* Let’s hop
2021-01-29 11:44:32 +01:00
Matt Brown
1137d91ca4
Add docs 2021-01-29 11:44:30 +01:00
Niclas van Eyk
5f019cef53
Initial proposal for psalm-require-{extends, implements} (#4361)
* initial implementation of psalm-require-extends

* Added @psalm-require-implements

* Added shortcode for ExtensionRequirementViolation

* Docs & cofig entries for @pasalm-require-{implements,extends}

* Added requirement violations to issues.md
2021-01-29 11:41:10 +01:00
Matthew Brown
e11be08f89
4.x (#4363)
* Enable --diff mode by default

* Bump required version
2021-01-29 11:39:58 +01:00
Marco Perone
91e8e26937
add documentation for pure-callable (#4329) 2021-01-29 11:39:55 +01:00
Marco Perone
e3bb43641c
provide documentation for ensureArrayIntOffsetsExist configuration option (#4328) 2021-01-29 11:39:55 +01:00
feek
a19f738967
feature: universal object crates (#3948)
* feature: universal object crates

* docs: document universal object crate config option

Co-authored-by: Matthew Brown <github@muglug.com>
2021-01-29 11:39:48 +01:00
Leighton Thomas
c4cbe8dfdc
Fix #3543 - add documentation for @psalm-type and @psalm-import-type (#4291) 2021-01-29 11:39:48 +01:00
Matt Brown
8cbbfbf58b
Update docs to match 4.x config flags 2021-01-29 11:39:48 +01:00
Matthew Brown
780bc14de3
Add vendor/bin 2021-01-29 11:39:47 +01:00
Matthew Brown
451e2c4d56
Update the managing section
cc @weirdan
2021-01-29 11:39:46 +01:00
Matthew Brown
606040eb85
Update the discovering plugins docs 2021-01-29 11:39:46 +01:00
Matthew Brown
0baf88167c
Improve language 2021-01-29 11:39:46 +01:00
Matthew Brown
ed24cfe665
Fix casing 2021-01-29 11:39:46 +01:00
Matt Brown
64a9310d5e
Fix test 2021-01-29 11:39:46 +01:00
Matt Brown
d924a57026
Add config and docs for InvalidNamedArgument 2021-01-29 11:39:45 +01:00
Simon Podlipsky
9d9584033b
Mention $XDG_CACHE_HOME in cache docs (#4268) 2021-01-29 11:39:45 +01:00
Matthew Brown
53f9ba5b3b
Add slightly better language 2021-01-29 11:39:44 +01:00
Bruno Ribarić
bd3d7dc92b
Fix typo (#4261)
* Fix typo

* Remove word

Co-authored-by: Matthew Brown <github@muglug.com>
2021-01-29 11:39:44 +01:00
Matthew Brown
1a0e0b41de
Add more accurate description of functionality 2021-01-29 11:39:44 +01:00
Claas Augner
e1926164a8
fix(docs): add missing issues to error levels (#4171) 2021-01-29 11:38:57 +01:00
Lexidor Digital
5d95cceb21
[easy fix] Update example for @no-named-arguments (#4170)
The text mentions `@no-named-arguments`, but the example shows `@no-named-params`.
`@no-named-params` can not be found in the psalm source.
Updated example to `@no-named-arguments`.
[https://github.com/vimeo/psalm/search?q=no-named-params&unscoped_q=no-named-params](search for no-named-params) 1 result (this example)
[https://github.com/vimeo/psalm/search?q=no-named-arguments&unscoped_q=no-named-arguments](search for no-named-arguments) 2 results (this example and in CommentAnalyzer.php)
2021-01-29 11:38:57 +01:00
Adrien LUCAS
ac8c2db016
Document Xdebug usage (#4164)
* Document Xdebug usage

* Change to non-persistent approache

Co-authored-by: Bruce Weirdan <weirdan@gmail.com>

Co-authored-by: Bruce Weirdan <weirdan@gmail.com>
2021-01-29 11:38:57 +01:00
Brown
8a17987af1
Fix documentation 2021-01-29 11:38:57 +01:00
Brown
307790fbac
Make new InvalidLiteralArgument issue for strpos refs
Ref #4070
2021-01-29 11:38:57 +01:00
Brown
568cbfb1be
Fix tests 2021-01-29 11:38:56 +01:00
Alfred Bez
1d4bd84ce4
Document cacheDirectory behaviour (#4149) 2021-01-29 11:38:54 +01:00
Hans-Helge Buerger
7e6a3c7b55
Fix link to template annotations (#4125) 2021-01-29 11:38:53 +01:00