Matt Brown
|
26b4cd1fb9
|
Fix #4529 - allow unsetting with complex array key
|
2020-11-14 08:57:25 -05:00 |
|
Matthew Brown
|
1c66646e72
|
Fix formatting
|
2020-11-05 19:23:54 -05:00 |
|
Matt Brown
|
d47d817843
|
Fix #4479 - use correct keys in message
|
2020-11-05 10:13:08 -05:00 |
|
Matt Brown
|
724b25b918
|
Change control_flow_graph to data_flow_graph
|
2020-10-13 17:28:12 -04:00 |
|
Matt Brown
|
516141a380
|
Rename ControlFlowGraph to more appropriate DataFlowGraph
|
2020-10-13 16:49:03 -04:00 |
|
Matt Brown
|
14efde286f
|
4.x - refactor unused variable detection
This turns unused variable detection into an explicit control-flow problem, where before we had a more simplistic mark-and-sweep algorithm
|
2020-09-30 12:28:13 -04:00 |
|
Brown
|
19f88a2e31
|
Add improvements from unused variable checks
|
2020-09-28 00:45:02 -04:00 |
|
Brown
|
56cddd16bf
|
Rename TaintGraph to ControlFlowGraph because it’s about to do more
|
2020-09-20 23:59:52 -04:00 |
|
Brown
|
0f6a271858
|
Improve file-based suppression of taints
|
2020-09-20 19:37:25 -04:00 |
|
Brown
|
2968b3b065
|
Add to StatementsAnalyzer taint object instead of Context
|
2020-09-20 18:42:21 -04:00 |
|
Brown
|
abb9502921
|
Rename Taint object to TaintGraph
|
2020-09-20 18:27:02 -04:00 |
|
orklah
|
24a38f21ce
|
Use array destructuring when possible (#4221)
* list usage
* fix inversion
|
2020-09-20 12:55:38 -04:00 |
|
orklah
|
a9a364e363
|
Misc improvements (#4216)
* misc changes
* fix CI
|
2020-09-20 08:55:28 -04:00 |
|
orklah
|
f66d57f19d
|
add native return types (#4116)
* add native return types
* remove redundant phpdoc
|
2020-09-04 16:26:33 -04:00 |
|
Brown
|
92239add4d
|
Add some backwards-incompatible changes for 4.x
|
2020-08-30 11:44:14 -04:00 |
|
Matthew Brown
|
9dfdcbef31
|
Fix #3928 - preserve list-ness when assigning with no offset
|
2020-08-03 12:30:58 -04:00 |
|
Brown
|
76bd5b6278
|
Refactor type comparison
|
2020-07-21 19:40:35 -04:00 |
|
Brown
|
67b2edc328
|
Allow more things to be suppressed with @psalm-suppress TaintedInput
|
2020-07-02 11:53:51 -04:00 |
|
Brown
|
ae7c5b095b
|
Fix #3712 - allow taints to be suppressed with @psalm-suppress
|
2020-07-01 23:23:45 -04:00 |
|
Brown
|
70ab4c18f4
|
Fix #3720 - allow literal unions in keys to map to object-like arrays
|
2020-07-01 18:57:19 -04:00 |
|
Brown
|
dd25b81d3a
|
Fix #3670 - taint mixed foreach access
|
2020-06-24 19:16:30 -04:00 |
|
Brown
|
49f0592794
|
Improve tracking of array taints
|
2020-06-18 18:48:19 -04:00 |
|
Brown
|
562a7c1ca4
|
Track taints from all tainted arrays
|
2020-06-18 13:45:58 -04:00 |
|
Brown
|
f609a01497
|
Move static property fetch analyzer to own class
|
2020-06-18 11:53:24 -04:00 |
|
Brown
|
953be61cf2
|
Allow limiting connected taint paths
|
2020-05-25 23:28:11 -04:00 |
|
Brown
|
7e7456c863
|
Make taint checks more thorough
|
2020-05-25 17:10:53 -04:00 |
|
Brown
|
118b700436
|
Simplify sink mapping for internal calls
|
2020-05-25 13:10:06 -04:00 |
|
Matthew Brown
|
1d17c02fba
|
Fix #3442 - support broader type after initial array assignment
|
2020-05-23 23:23:50 -04:00 |
|
Matthew Brown
|
187b944680
|
Add faster taint analysis
|
2020-05-22 12:33:29 -04:00 |
|
Brown
|
5ee1487a01
|
Make ExpressionAnalyzer more beautiful
|
2020-05-18 15:13:27 -04:00 |
|
Brown
|
73f8f963fa
|
Expand out class constants as early as possible
Fixes #3128
|
2020-04-12 20:38:36 -04:00 |
|
Brown
|
9d2957d339
|
Fix a few more edge-cases
|
2020-04-12 01:26:11 -04:00 |
|
Brown
|
db7447abd7
|
Make array coercion-to--mixed rules a little more lenient
|
2020-04-10 16:21:48 -04:00 |
|
Brown
|
3a4dd70403
|
Prevent MixedMethodCall from generated array offsetGet calls
|
2020-04-09 11:45:15 -04:00 |
|
Brown
|
bd92ec6cd3
|
Detect nested issues
|
2020-04-09 10:42:54 -04:00 |
|
Brown
|
bd2104c5ba
|
Merge with mixed in nested arrays
|
2020-04-09 09:27:21 -04:00 |
|
Brown
|
d868710b2b
|
Fix handling of built arrays
|
2020-04-08 16:11:11 -04:00 |
|
Brown
|
067104e170
|
Fix #3084 - keep track of upper and lower bounds of inferred template types
|
2020-04-07 00:13:56 -04:00 |
|
Brown
|
fca6585f6e
|
Be more lenient when inside isset
|
2020-04-04 11:15:13 -04:00 |
|
Matthew Brown
|
6ad3d039df
|
Prevent more array<mixed,...> creation
|
2020-02-22 12:12:40 -05:00 |
|
Matthew Brown
|
db17c85dd6
|
Fix #2787 - make accessing undefined objectlike key an error
|
2020-02-22 00:29:59 -05:00 |
|
Brown
|
6e8088776d
|
Use better return type for SimpleXMLElement::offsetGet
|
2020-02-18 10:58:56 -05:00 |
|
Matthew Brown
|
653353709a
|
Use MethodIdentifier object instead of string
|
2020-02-14 20:54:26 -05:00 |
|
Brown
|
b87161785d
|
Be even more permissive
|
2020-02-13 17:58:15 -05:00 |
|
Brown
|
1c42875179
|
Support lowercase-string and warn about unnecessary calls to strtolower
|
2020-02-13 16:38:58 -05:00 |
|
Brown
|
3b6f53a356
|
Revert "Fix #2724 - make sure behaviour is not dependent on array type"
This reverts commit 1df03b0ff2 .
|
2020-01-31 17:25:15 -05:00 |
|
Brown
|
1df03b0ff2
|
Fix #2724 - make sure behaviour is not dependent on array type
|
2020-01-31 16:46:05 -05:00 |
|
Matthew Brown
|
5eb2ebc508
|
Add more type-system protections for bad array args
|
2020-01-29 23:41:17 -05:00 |
|
Matthew Brown
|
9fa2db1b6c
|
Move Union::getTypes to Union::getAtomicTypes
|
2020-01-04 12:20:26 -05:00 |
|
Matthew Brown
|
55c2f7faa2
|
Fix #2508 - don’t replace templated types with generic ones inside own function
|
2019-12-28 18:38:02 -05:00 |
|