Release Notes - SonarPython - Version 1.16 - HTML format

Sub-task

  • [SONARPY-429] - Migrate FieldNameCheck to strongly typed AST

New Feature

  • [SONARPY-321] - Rule S4787: Encrypting data is security-sensitive
  • [SONARPY-323] - Rule S4792: Configuring loggers is security-sensitive
  • [SONARPY-324] - Rule S2245: Using pseudorandom number generators (PRNGs) is security-sensitive
  • [SONARPY-372] - Rule S5439: HTML autoescape mechanism should not be globally disabled

Task

  • [SONARPY-329] - Symbols' full qualified names resolution: consider alias
  • [SONARPY-391] - Migrate SymbolTable to strongly typed AST to migrate UnusedLocalVariableCheck
  • [SONARPY-394] - Migrate rules based on NewSymbolsAnalyzer to strongly typed AST
  • [SONARPY-401] - SymbolTable should consistently resolve qualified name of nested symbols
  • [SONARPY-414] - SymbolTable: Symbol#qualifiedName based on strongly typed AST
  • [SONARPY-426] - Remove `Tree` suffix and `Py` prefix from AST class names
  • [SONARPY-428] - S1481 should not raise issues on unused imports

Improvement

  • [SONARPY-349] - Rule S4790: Support PyCrypto and Cryptodome
  • [SONARPY-373] - Rule S4507 should consider settings.py in addition to global_settings.py
  • [SONARPY-410] - Improve SelfAssignmentCheck to handle multiple assignments

False-Positive

  • [SONARPY-310] - UselessParenthesisAfterKeywordCheck should not raise issues on generator expressions

Edit/Copy Release Notes

The text area below allows the project release notes to be edited and copied to another document.