michaelnebel
diff --git a/‎docs/codeql/support/reusables/frameworks.rst
Lines changed: 1 addition & 0 deletions b/‎docs/codeql/support/reusables/frameworks.rst
Lines changed: 1 addition & 0 deletions
diff --git a/‎python/change-notes/2021-09-02-add-SQLAlchemy-modeling.md
Lines changed: 2 additions & 0 deletions b/‎python/change-notes/2021-09-02-add-SQLAlchemy-modeling.md
Lines changed: 2 additions & 0 deletions
diff --git a/‎python/ql/lib/semmle/python/Frameworks.qll
Lines changed: 2 additions & 1 deletion b/‎python/ql/lib/semmle/python/Frameworks.qll
Lines changed: 2 additions & 1 deletion
diff --git a/‎python/ql/src/experimental/semmle/python/frameworks/SqlAlchemy.qll renamed to ‎python/ql/lib/semmle/python/frameworks/SqlAlchemy.qll
Lines changed: 0 additions & 1 deletion b/‎python/ql/src/experimental/semmle/python/frameworks/SqlAlchemy.qll renamed to ‎python/ql/lib/semmle/python/frameworks/SqlAlchemy.qll
Lines changed: 0 additions & 1 deletion
diff --git a/‎python/ql/test/experimental/library-tests/frameworks/sqlalchemy/ConceptsTest.expected renamed to ‎python/ql/test/library-tests/frameworks/sqlalchemy/ConceptsTest.expected b/‎python/ql/test/experimental/library-tests/frameworks/sqlalchemy/ConceptsTest.expected renamed to ‎python/ql/test/library-tests/frameworks/sqlalchemy/ConceptsTest.expected
diff --git a/‎python/ql/test/experimental/library-tests/frameworks/sqlalchemy/ConceptsTest.ql renamed to ‎python/ql/test/library-tests/frameworks/sqlalchemy/ConceptsTest.ql b/‎python/ql/test/experimental/library-tests/frameworks/sqlalchemy/ConceptsTest.ql renamed to ‎python/ql/test/library-tests/frameworks/sqlalchemy/ConceptsTest.ql
diff --git a/‎python/ql/test/experimental/library-tests/frameworks/sqlalchemy/InlineTaintTest.expected renamed to ‎python/ql/test/library-tests/frameworks/sqlalchemy/InlineTaintTest.expected b/‎python/ql/test/experimental/library-tests/frameworks/sqlalchemy/InlineTaintTest.expected renamed to ‎python/ql/test/library-tests/frameworks/sqlalchemy/InlineTaintTest.expected
diff --git a/‎python/ql/test/experimental/library-tests/frameworks/sqlalchemy/InlineTaintTest.ql renamed to ‎python/ql/test/library-tests/frameworks/sqlalchemy/InlineTaintTest.ql b/‎python/ql/test/experimental/library-tests/frameworks/sqlalchemy/InlineTaintTest.ql renamed to ‎python/ql/test/library-tests/frameworks/sqlalchemy/InlineTaintTest.ql
diff --git a/‎python/ql/test/experimental/library-tests/frameworks/sqlalchemy/SqlExecution.py renamed to ‎python/ql/test/library-tests/frameworks/sqlalchemy/SqlExecution.py b/‎python/ql/test/experimental/library-tests/frameworks/sqlalchemy/SqlExecution.py renamed to ‎python/ql/test/library-tests/frameworks/sqlalchemy/SqlExecution.py
diff --git a/‎python/ql/test/experimental/library-tests/frameworks/sqlalchemy/new_tests.py renamed to ‎python/ql/test/library-tests/frameworks/sqlalchemy/new_tests.py b/‎python/ql/test/experimental/library-tests/frameworks/sqlalchemy/new_tests.py renamed to ‎python/ql/test/library-tests/frameworks/sqlalchemy/new_tests.py
@@ -177,6 +177,7 @@ Python built-in support
    psycopg2, Database
    sqlite3, Database
    peewee, Database ORM
+   SQLAlchemy, Database ORM
    cryptography, Cryptography library
    pycryptodome, Cryptography library
    pycryptodomex, Cryptography library
 
@@ -0,0 +1,2 @@
+lgtm,codescanning
+* Added modeling of SQL execution in the `SQLAlchemy` PyPI package, resulting in additional sinks for the SQL Injection query (`py/sql-injection`). This modeling was originally [submitted as a contribution by @mrthankyou](https://github.com/github/codeql/pull/5680).
@@ -20,13 +20,14 @@ private import semmle.python.frameworks.MarkupSafe
 private import semmle.python.frameworks.Multidict
 private import semmle.python.frameworks.Mysql
 private import semmle.python.frameworks.MySQLdb
+private import semmle.python.frameworks.Peewee
 private import semmle.python.frameworks.Psycopg2
 private import semmle.python.frameworks.PyMySQL
 private import semmle.python.frameworks.Rsa
 private import semmle.python.frameworks.Simplejson
+private import semmle.python.frameworks.SqlAlchemy
 private import semmle.python.frameworks.Stdlib
 private import semmle.python.frameworks.Tornado
-private import semmle.python.frameworks.Peewee
 private import semmle.python.frameworks.Twisted
 private import semmle.python.frameworks.Ujson
 private import semmle.python.frameworks.Yaml
 
@@ -10,7 +10,6 @@ private import semmle.python.dataflow.new.DataFlow
 private import semmle.python.dataflow.new.TaintTracking
 private import semmle.python.ApiGraphs
 private import semmle.python.Concepts
-private import experimental.semmle.python.Concepts
 // This import is done like this to avoid importing the deprecated top-level things that
 // would pollute the namespace
 private import semmle.python.frameworks.PEP249::PEP249 as PEP249
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,2 @@`
	`1`	`+lgtm,codescanning`
	`2`	+* Added modeling of SQL execution in the `SQLAlchemy` PyPI package, resulting in additional sinks for the SQL Injection query (`py/sql-injection`). This modeling was originally [submitted as a contribution by @mrthankyou](https://github.com/github/codeql/pull/5680).