gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2026-04-28 03:43:21 -07:00
Code Issues Packages Projects Releases Wiki Activity
6,070 Commits 57 Branches 49 Tags
master
Commit Graph

6070 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Matt Williams
87f0970dbc Update README with dynamic capa heading (#3060) 
* Update README with dynamic capa heading

Added a section heading for dynamic capabilities. Used lowercase to align with other headings.

* Update README.md

Added blank line before heading

Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com>

---------

Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com>
 2026-04-27 09:09:59 -06:00
Willi Ballenthin
b9f830619d update submodules 2026-04-23 18:04:10 +03:00
Willi Ballenthin
e745fa6aab style: ruff format changed files 2026-04-23 18:04:10 +03:00
Willi Ballenthin
a834c4c0a7 fix: clean up CHANGELOG bug fixes formatting 2026-04-23 18:04:10 +03:00
Willi Ballenthin
7484d3fc16 fix: loader.py reads entire file for magic byte check 
Closes #3029
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
9954d99402 fix: freeze/__init__.py: logically impossible condition 
Closes #3030
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
aa9f09db89 fix: render_default always returns empty string 
Closes #3012
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
a5082beed0 fix: remove unused gzip import in test_helpers.py 2026-04-23 18:04:10 +03:00
Willi Ballenthin
f6f3380fd3 fix: EXTENSIONS_DYNAMIC has inconsistent leading dots 
Closes #3028
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
6431be2c42 fix: rules/__init__.py: duplicate bytes_features line 
Closes #3027
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
62e6af31f8 fix: dotnetfile.py: missing import for capa.features.extractors.common 
Closes #3026
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
f17629a4eb fix: freeze/__init__.py: NO_ADDRESS < NO_ADDRESS returns True 
Closes #3025
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
c7d3de8bf8 fix: base_extractor.py: __metaclass__ is Python 2 syntax, ignored in Py3 
Closes #3024
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
58b7a9fc55 fix: elffile.py: get_base_address returns None instead of NO_ADDRESS 
Closes #3023
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
8bea7c700e fix: DNTokenOffsetAddress.__eq__ lacks type guard 
Closes #3022
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
3c61d9956d fix: ProcessAddress.__eq__ and ThreadAddress.__eq__ assert on type 
Closes #3021
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
a8fafe0d46 fix: optimizer doesn't recurse into And/Or/Some children 
Closes #3020
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
53158b4712 fix: find_dynamic_limitations_from_cli overwrites instead of OR-ing 
Closes #3019
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
9289f09f15 fix: load_one_jsonl_from_path: finally block runs on unrelated exceptions 
Closes #3018
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
8f946778ae fix: extract_os yields duplicate/contradictory OS values 
Closes #3017
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
527fb397ea fix: vverbose.py: render_call variable assigned but never used 
Closes #3016
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
d3e2bac803 fix: capabilities/common.py: if va: drops address 0x0 
Closes #3015
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
0345a15744 fix: _NoAddress.__eq__ unconditionally returns True 
Closes #3014
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
a07d314a31 fix: elf.py vdso_guess exception handler clobbers symtab_guess 
Closes #3013
 2026-04-23 18:04:10 +03:00
Willi Ballenthin
dc4d64cb01 vverbose: use capa.helpers.assert_never 
typing.assert_never isn't available until py3.11
 2026-04-23 16:11:58 +03:00
Willi Ballenthin
f5e3aa4a3b fix: address Pyright diagnostics in vivisect extractors (chunk 8) 
- basicblock.py: fix real bug (/ -> // for integer division in get_printable_len); type: ignore for _dis_regctx (dynamically set)
- extractor.py: cast+assert for funcy.cached_property basic_blocks/instructions; type: ignore for get_function_name Address vs int
- file.py: assert pe/IMAGE_NT_HEADERS not None instead of type: ignore
- function.py: cast+assert for funcy.cached_property basic_blocks/instructions; type: ignore for getBranches() base return type
- insn.py: type hint derefs() as Iterator[int]; isinstance guard before derefs calls; import Elf + isinstance assert for parsedbin; cast for f.basic_blocks[0] and bb.instructions; type: ignore for dynamically-injected REG_* constants and getBranches()
 2026-04-23 16:11:58 +03:00
Willi Ballenthin
191c889adf fix: remaining import, type annotation, and xfail type issues (chunk 7) 
- fixtures.py: add import capa.render.result_document; local import capa.loader in functions
- fixtures.py: fix xfail reason type annotation (None -> str = "")
- main.py: type: ignore for PyInstaller-injected sys._MEIPASS
 2026-04-23 16:11:58 +03:00
Willi Ballenthin
89a365fa3d fix: address Optional member access and type mismatch in tests (chunk 6) 
- test_binexport_accessors.py: type: ignore on .expression accesses guarded by test assertions
- test_freeze_dynamic.py: assert isinstance DynamicFeatureExtractor before compare_extractors
- test_binja_features.py: type: ignore on binaryninja guarded by skipif decorator
 2026-04-23 16:11:58 +03:00
Willi Ballenthin
2b536e2f53 fix: address type override, alias parameter, and Statement.children issues (chunk 5) 
- engine.py: type: ignore for children/replace_child hasattr-guarded subclass attrs
- result_document.py: type: ignore for Pydantic analysis field override and alias args
- render/proto/__init__.py: type: ignore on Pydantic alias argument lines
- rules/__init__.py: type: ignore on ensure_feature_valid_for_scopes StringFactory calls
- result_document.py: fix Scope|None by extracting scope var with assert
 2026-04-23 16:11:58 +03:00
Willi Ballenthin
96cabbcc6b fix: address reportAttributeAccessIssue and override mismatches (chunk 4) 
- dnfile/helpers.py, insn.py: add import dnfile.mdtable; type: ignore dnfile Unknown returns
- dnfile/extractor.py: rename get_basic_blocks param f->fh
- pefile.py: rename f/bb->fh/bbh stub params; type: ignore for pefile OPTIONAL_HEADER stubs
- ghidra/file.py, helpers.py: initialize addr=0 before conditional loop
 2026-04-23 16:11:58 +03:00
Willi Ballenthin
b34079208c fix: address reportPossiblyUnbound diagnostics (chunk 3) 
- elf.py: fix bug where vdso_guess except handler set symtab_guess=None
- result_document.py: add assert_never after StaticAnalysis/DynamicAnalysis
- binexport2/helpers.py: guard empty operand_expressions with early return
- tests/fixtures.py: restructure kernel32-64.dll_ workaround to single if/else
 2026-04-23 16:11:58 +03:00
Willi Ballenthin
ad8ed3b0b3 fix: align base_extractor abstract method parameter names with all concrete implementations 2026-04-23 16:11:58 +03:00
Willi Ballenthin
d16a85bdba fix: add missing explicit submodule imports for Pyright attribute resolution 2026-04-23 16:11:58 +03:00
Willi Ballenthin
25edb58fdd rules: raise InvalidRule instead of asserting 2026-04-23 16:11:58 +03:00
Willi Ballenthin
ab629e9a8a changelog 2026-04-23 16:11:58 +03:00
Willi Ballenthin
30b97dc9af fix: use tempfile.TemporaryFile as context manager, drop tfile=None guard 2026-04-23 16:11:58 +03:00
Willi Ballenthin
fe4fece1bc fix: revert disable_progress to bool=False, drop Optional[bool]=None workaround 2026-04-23 16:11:58 +03:00
Willi Ballenthin
295ae3ee4b fix: add missing submodule imports for Pyright attribute access 2026-04-23 16:11:58 +03:00
Willi Ballenthin
0655263ed3 fix: add inline explanations to all type: ignore comments 2026-04-23 16:11:58 +03:00
Willi Ballenthin
eb0d313264 fix: type: ignore placement for Pydantic alias parameters in freeze/__init__.py 2026-04-23 16:11:58 +03:00
Willi Ballenthin
aa502d3523 fix: rename unused self to _self in filter closures in base_extractor.py 2026-04-23 16:11:58 +03:00
Willi Ballenthin
546f0b77ea fix: private imports, return types, and unused imports in elffile.py and test_optimizer.py 2026-04-23 16:11:58 +03:00
Willi Ballenthin
7e75f97614 fix: type narrowing, unused imports, and TextIOWrapper guard in main.py 2026-04-23 16:11:58 +03:00
Willi Ballenthin
98d62bd39a fix: assert_never for exhaustive checks, tfile/line unbound, import paths, progress columns 2026-04-23 16:11:58 +03:00
Willi Ballenthin
dadf8b0961 fix: type annotations for disable_progress and module attribute access 2026-04-23 16:11:58 +03:00
Willi Ballenthin
2881939dc3 fix: possibly unbound variables and type annotations in elf.py and address.py 2026-04-23 16:11:58 +03:00
Moritz
74276c8c40 Merge pull request #3006 from mandiant/dependabot/pip/pydantic-2.13.0 
build(deps): bump pydantic from 2.12.4 to 2.13.0
 2026-04-17 15:23:57 +00:00
dependabot[bot]
e72f8baea6 build(deps): bump rich from 14.3.2 to 15.0.0 (#3007) 
Bumps [rich](https://github.com/Textualize/rich) from 14.3.2 to 15.0.0.
- [Release notes](https://github.com/Textualize/rich/releases)
- [Changelog](https://github.com/Textualize/rich/blob/master/CHANGELOG.md)
- [Commits](https://github.com/Textualize/rich/compare/v14.3.2...v15.0.0)

---
updated-dependencies:
- dependency-name: rich
  dependency-version: 15.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-16 12:36:42 -06:00
Mike Hunhoff
3cd0e7867b Merge branch 'master' into dependabot/pip/pydantic-2.13.0 2026-04-16 12:36:15 -06:00
Moritz
557f521713 tests: update expected Binary Ninja version to 5.3 (#3011) 2026-04-16 12:35:43 -06:00