Matthew Brown
7edb8ef3f8
Fix taint description
2021-01-29 11:46:19 +01:00
Matt Brown
02b1cc2288
Change TaintedText to TaintedCallable
2021-01-29 11:46:17 +01:00
Lukas Reschke
3fb73564f6
Advertise SARIF export in the documentation ( #4633 )
2021-01-29 11:46:16 +01:00
Lukas Reschke
2ad5eee193
Add dedicated types for 'file', 'header' and 'cookie' ( #4630 )
...
* [WIP] Add dedicated sinks for 'file', 'header' and 'cookie'
* Add documentation
* Add mapping for taint flows
* Add tests
* Fix test
2021-01-29 11:46:16 +01:00
Mikhail Snetkov
f969b01db4
Fix missing bracket in docs ( #4614 )
2021-01-29 11:46:15 +01:00
Lukas Reschke
ce05165384
Split LDAP into custom category ( #4604 )
...
- Adds ldap_escape as sanitizer
- Defines the right parameters to ldap_search as sink
- Wrote documentation
- Added tests
2021-01-29 11:46:14 +01:00
Lukas Reschke
99d094b5e0
Add SSRF sinks ( #4592 )
2021-01-29 11:46:14 +01:00
Matt Brown
db566c7c4d
Improve documentation for taints a little
...
Ref #4590
2021-01-29 11:46:13 +01:00
Matt Brown
2c69618347
Break out TaintedInput issues into a lot of separate ones
2021-01-29 11:46:13 +01:00
Lukas Reschke
6105732e8a
Fix typo ( #4555 )
2021-01-29 11:46:11 +01:00
Lukas Reschke
7079cff31c
$expr->name is not prefixed with $ ( #4554 )
...
The example as-is would currently not flag the following code:
```
public function foo() {
$foo = $bad_data;
\shell_exec($foo);
}
```
Switching it to `bad_data` made it work.
2021-01-29 11:46:11 +01:00
Matthew Brown
51abbc9074
Update MixedOperand.md
2021-01-29 11:46:06 +01:00
Matthew Brown
39ad587c3e
Update to more specific example
2021-01-29 11:46:04 +01:00
Matthew Brown
5d1dd3ca65
Add @weirdan's fix
2021-01-29 11:46:04 +01:00
Matthew Brown
afc38b841c
Add aka
2021-01-29 11:45:01 +01:00
Matthew Brown
647e7de70c
Fix brackets
2021-01-29 11:45:01 +01:00
Matt Brown
881068d5c0
Detect when targets are incorrectly targeted
2021-01-29 11:44:36 +01:00
Matt Brown
951c3715f7
Fix tests
2021-01-29 11:44:33 +01:00
Matthew Brown
831bcdc057
Experiment with PHP 7.1 compatibility ( #4421 )
...
* Experiment with PHP 7.1 compatibility
* Let’s hop
2021-01-29 11:44:32 +01:00
Matt Brown
1137d91ca4
Add docs
2021-01-29 11:44:30 +01:00
Niclas van Eyk
5f019cef53
Initial proposal for psalm-require-{extends, implements} ( #4361 )
...
* initial implementation of psalm-require-extends
* Added @psalm-require-implements
* Added shortcode for ExtensionRequirementViolation
* Docs & cofig entries for @pasalm-require-{implements,extends}
* Added requirement violations to issues.md
2021-01-29 11:41:10 +01:00
Matthew Brown
e11be08f89
4.x ( #4363 )
...
* Enable --diff mode by default
* Bump required version
2021-01-29 11:39:58 +01:00
Marco Perone
91e8e26937
add documentation for pure-callable ( #4329 )
2021-01-29 11:39:55 +01:00
Marco Perone
e3bb43641c
provide documentation for ensureArrayIntOffsetsExist configuration option ( #4328 )
2021-01-29 11:39:55 +01:00
feek
a19f738967
feature: universal object crates ( #3948 )
...
* feature: universal object crates
* docs: document universal object crate config option
Co-authored-by: Matthew Brown <github@muglug.com>
2021-01-29 11:39:48 +01:00
Leighton Thomas
c4cbe8dfdc
Fix #3543 - add documentation for @psalm-type and @psalm-import-type ( #4291 )
2021-01-29 11:39:48 +01:00
Matt Brown
8cbbfbf58b
Update docs to match 4.x config flags
2021-01-29 11:39:48 +01:00
Matthew Brown
780bc14de3
Add vendor/bin
2021-01-29 11:39:47 +01:00
Matthew Brown
451e2c4d56
Update the managing section
...
cc @weirdan
2021-01-29 11:39:46 +01:00
Matthew Brown
606040eb85
Update the discovering plugins docs
2021-01-29 11:39:46 +01:00
Matthew Brown
0baf88167c
Improve language
2021-01-29 11:39:46 +01:00
Matthew Brown
ed24cfe665
Fix casing
2021-01-29 11:39:46 +01:00
Matt Brown
64a9310d5e
Fix test
2021-01-29 11:39:46 +01:00
Matt Brown
d924a57026
Add config and docs for InvalidNamedArgument
2021-01-29 11:39:45 +01:00
Simon Podlipsky
9d9584033b
Mention $XDG_CACHE_HOME in cache docs ( #4268 )
2021-01-29 11:39:45 +01:00
Matthew Brown
53f9ba5b3b
Add slightly better language
2021-01-29 11:39:44 +01:00
Bruno Ribarić
bd3d7dc92b
Fix typo ( #4261 )
...
* Fix typo
* Remove word
Co-authored-by: Matthew Brown <github@muglug.com>
2021-01-29 11:39:44 +01:00
Matthew Brown
1a0e0b41de
Add more accurate description of functionality
2021-01-29 11:39:44 +01:00
Claas Augner
e1926164a8
fix(docs): add missing issues to error levels ( #4171 )
2021-01-29 11:38:57 +01:00
Lexidor Digital
5d95cceb21
[easy fix] Update example for @no-named-arguments ( #4170 )
...
The text mentions `@no-named-arguments`, but the example shows `@no-named-params`.
`@no-named-params` can not be found in the psalm source.
Updated example to `@no-named-arguments`.
[https://github.com/vimeo/psalm/search?q=no-named-params&unscoped_q=no-named-params ](search for no-named-params) 1 result (this example)
[https://github.com/vimeo/psalm/search?q=no-named-arguments&unscoped_q=no-named-arguments ](search for no-named-arguments) 2 results (this example and in CommentAnalyzer.php)
2021-01-29 11:38:57 +01:00
Adrien LUCAS
ac8c2db016
Document Xdebug usage ( #4164 )
...
* Document Xdebug usage
* Change to non-persistent approache
Co-authored-by: Bruce Weirdan <weirdan@gmail.com>
Co-authored-by: Bruce Weirdan <weirdan@gmail.com>
2021-01-29 11:38:57 +01:00
Brown
8a17987af1
Fix documentation
2021-01-29 11:38:57 +01:00
Brown
307790fbac
Make new InvalidLiteralArgument issue for strpos refs
...
Ref #4070
2021-01-29 11:38:57 +01:00
Brown
568cbfb1be
Fix tests
2021-01-29 11:38:56 +01:00
Alfred Bez
1d4bd84ce4
Document cacheDirectory behaviour ( #4149 )
2021-01-29 11:38:54 +01:00
Hans-Helge Buerger
7e6a3c7b55
Fix link to template annotations ( #4125 )
2021-01-29 11:38:53 +01:00
orklah
cf590d13b0
Config reportInfo to speed up analysis for big projects ( #4095 )
2021-01-29 11:38:51 +01:00
Brown
a0a7f8a98b
Catch unmatched matches
2021-01-29 11:38:50 +01:00
Alfred Bez
6db3f45114
InvalidClass is also reported if the casing in the namespace is wrong ( #4090 )
2021-01-29 11:38:50 +01:00
Brown
c96ba8d1f5
Add some backwards-incompatible changes for 4.x
2021-01-29 11:38:48 +01:00