codeql/python/change-notes/2021-01-12-flask-class-base...

289 B

lgtm,codescanning

  • Added modeling of flask class based view handlers (subclasses of flask.views.View and flask.views.MethodView). This means we're now able to detect routed parameters for request handler defined on these classes, as sources of remote user input (RemoteFlowSource).