py-ast-taint.py Assign handler never removed a name from the tainted set on reassignment, so a source-then-constant/sanitizer rebind (g=os.getenv(); g='safe'; os.system(g), or x=shlex.quote(x)) kept stale taint and fired false AST-CMD-EXEC findings. Assign now clears taint for target names when the RHS is not a source. No cross-expression propagation added — the f-string/concat/alias recall gap (#27) stays deferred to v8. #28: added fixtures+assertions locking the tainted subprocess/os.system AST-CMD-EXEC sink and the open(...,'w') AST-FILE-WRITE sink. Suite 1931/0. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_01TcQyMTQfyrsAapaCMPxTtQ |
||
|---|---|---|
| .. | ||
| ast-scan | ||
| dep-test | ||
| entropy | ||
| ide-extensions | ||
| memory-scan | ||
| posture-scan | ||
| signature-scan | ||
| skill-scan/hyperframes-like | ||
| supply-chain | ||
| transcripts | ||
| trigger-scan | ||
| workflows | ||