Added
- Scala: ellipsis are now allowed in for loop headers, so you can write patterns
likefor (...; $X <- $Y if $COND; ...) { ... }to match nested for loops. (#5650)
Fixed
- taint-mode: In some scenarios some statements were not being included in the
CFG used by taint tracking, and as a result some expected findings were not being
reported (i.e. false negatives). This affected mainly languages like Scala where
traditional control-flow constructs are expressions rather than statements (or,
seen in a different way, every statement returns a value). (#5652)
Changed
--verboseno longer toggles the display of timing information, use
--verbose --timeto display this information.