Skip to content

Navigation Menu

Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

pixee / codemodder-python Public

Notifications You must be signed in to change notification settings
Fork 10
Star 39

Code
Issues 26
Pull requests 1
Actions
Projects
Wiki
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Actions
Projects
Wiki
Security
Insights

Releases: pixee/codemodder-python

Releases · pixee/codemodder-python

3.18.0

04 Feb 17:18

clavedeluna

This commit was created on GitHub.com and signed with GitHub’s verified signature.

GPG key ID: B5690EEEBB952194

Verified

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

3.18.0 Latest

Latest

What's Changed

Update isort requirement from <5.14,>=5.12 to >=5.12,<6.1 by @dependabot in #982
Update semgrep requirement from <1.105,>=1.99 to >=1.99,<1.107 by @dependabot in #983
Update dependency openai to >=1.61,<1.62 by @renovate in #984
Update boltons requirement from <24.2,>=21.0 to >=21.0,<25.1 by @dependabot in #987
add tokens fields to codetf by @clavedeluna in #988

Full Changelog: 3.17.0...3.18.0

Contributors

renovate, dependabot, and clavedeluna

Assets 2

Loading

All reactions

3.17.0

27 Jan 14:32

clavedeluna

This commit was created on GitHub.com and signed with GitHub’s verified signature.

GPG key ID: B5690EEEBB952194

Verified

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

3.17.0

What's Changed

Update dependency libcst to >=1.6,<1.7 by @renovate in #967
Update semgrep requirement from <1.100,>=1.99 to >=1.99,<1.104 by @dependabot in #968
New Codemod: Sonar Flask Secure Cookie by @andrecsilva in #969
Update dependency numpy to ~=2.2.1 by @renovate in #951
Update dependency python-json-logger to v3 by @renovate in #953
Update dependency types-wtforms to v3.2.1.20241221 by @renovate in #961
Update openai requirement from <1.58,>=1.57 to >=1.57,<1.60 by @dependabot in #972
Update openai requirement from <1.60,>=1.57 to >=1.57,<1.61 by @dependabot in #976
Update semgrep requirement from <1.104,>=1.99 to >=1.99,<1.105 by @dependabot in #977
Update pre-commit hooks by @github-actions in #947
New Sonar codemode: use-secure-protocols by @andrecsilva in #973

Full Changelog: 3.16.0...3.17.0

What's Changed

Update dependency libcst to >=1.6,<1.7 by @renovate in #967
Update semgrep requirement from <1.100,>=1.99 to >=1.99,<1.104 by @dependabot in #968
New Codemod: Sonar Flask Secure Cookie by @andrecsilva in #969
Update dependency numpy to ~=2.2.1 by @renovate in #951
Update dependency python-json-logger to v3 by @renovate in #953
Update dependency types-wtforms to v3.2.1.20241221 by @renovate in #961
Update openai requirement from <1.58,>=1.57 to >=1.57,<1.60 by @dependabot in #972
Update openai requirement from <1.60,>=1.57 to >=1.57,<1.61 by @dependabot in #976
Update semgrep requirement from <1.104,>=1.99 to >=1.99,<1.105 by @dependabot in #977
Update pre-commit hooks by @github-actions in #947
New Sonar codemode: use-secure-protocols by @andrecsilva in #973
generalize sarif loc code by @clavedeluna in #979

Full Changelog: 3.16.0...3.17.0

Contributors

renovate, andrecsilva, and 2 other contributors

Assets 2

Loading

All reactions

3.16.0

09 Jan 14:39

drdavella

This commit was created on GitHub.com and signed with GitHub’s verified signature.

GPG key ID: B5690EEEBB952194

Verified

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

3.16.0

What's Changed

Add --sonar-json CLI flag; deprecate existing sonar flags by @drdavella in #965
Use proper finding IDs for sonar and semgrep SARIF by @drdavella in #956

Full Changelog: 3.15.0...3.16.0

Contributors

drdavella

Assets 2

Loading

All reactions

3.15.0

08 Jan 16:12

drdavella

This commit was created on GitHub.com and signed with GitHub’s verified signature.

GPG key ID: B5690EEEBB952194

Verified

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

3.15.0

What's Changed

Added CWE links for several codemods by @andrecsilva in #964

Full Changelog: 3.14.3...3.15.0

Contributors

andrecsilva

Assets 2

Loading

All reactions

3.14.3

02 Jan 15:45

drdavella

This commit was created on GitHub.com and signed with GitHub’s verified signature.

GPG key ID: B5690EEEBB952194

Verified

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

3.14.3

What's Changed

Fix sonar issues and hotspots parsing by @drdavella in #962

Full Changelog: 3.14.2...3.14.3

Contributors

drdavella

Assets 2

Loading

All reactions

3.14.2

20 Dec 20:00

drdavella

This commit was created on GitHub.com and signed with GitHub’s verified signature.

GPG key ID: B5690EEEBB952194

Verified

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

3.14.2

What's Changed

Fix finding IDs for semgrep sarifs by @drdavella in #960

Full Changelog: 3.14.1...3.14.2

Contributors

drdavella

Assets 2

Loading

All reactions

3.14.1

18 Dec 19:34

drdavella

This commit was created on GitHub.com and signed with GitHub’s verified signature.

GPG key ID: B5690EEEBB952194

Verified

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

3.14.1

What's Changed

Update dependency openai to >=1.57,<1.58 by @renovate in #945
Update dependency semgrep to >=1.99,<1.100 by @renovate in #946
Finding ID is optional according to the spec by @drdavella in #959

Full Changelog: 3.14.0...3.14.1

Contributors

renovate and drdavella

Assets 2

Loading

All reactions

3.14.0

05 Dec 15:35

clavedeluna

This commit was created on GitHub.com and signed with GitHub’s verified signature.

GPG key ID: B5690EEEBB952194

Verified

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

3.14.0

What's Changed

ResultSet or behavior needs update for storing tools by @clavedeluna in #944

Full Changelog: 3.13.0...3.14.0

Contributors

clavedeluna

Assets 2

Loading

All reactions

3.13.0

05 Dec 11:20

clavedeluna

This commit was created on GitHub.com and signed with GitHub’s verified signature.

GPG key ID: B5690EEEBB952194

Verified

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

3.13.0

What's Changed

store sarif tool data by @clavedeluna in #943
Update fixed findings metadata to align with CodeTF spec by @drdavella in #941
Code transformers populate fix quality metadata by @drdavella in #942

Full Changelog: 3.12.0...3.13.0

Contributors

drdavella and clavedeluna

Assets 2

Loading

All reactions

3.12.0

03 Dec 21:01

drdavella

This commit was created on GitHub.com and signed with GitHub’s verified signature.

GPG key ID: B5690EEEBB952194

Verified

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

3.12.0

What's Changed

Semgrep and codeql finding ids by @drdavella in #939

Full Changelog: 3.11.0...3.12.0

Contributors

drdavella

Assets 2

Loading

All reactions

Previous 1 2 3 4 5 … 8 9 Next

Previous Next

Footer

© 2025 GitHub, Inc.

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.