Subticket for #2204.\n\nScope:\n- Register a conservative Python taint source/sink model.\n- Cover common request-style remote-input sources such as request/req member reads.\n- Cover high-confidence Python sinks: os/subprocess command execution, eval/exec, open path usage, and conventional DB execute/query calls.\n- Add Python CFG call/member-read site substrate only as needed for the model to be observable by the existing taint matcher.\n- Keep sanitizers empty for this slice to avoid unsafe false kills.\n- Add focused fixtures proving real source-to-sink matching and conservative shadowing behavior.\n\nOut of scope:\n- Java models.\n- Broad framework-specific sanitizer modeling.\n- Interprocedural or property-flow precision changes beyond the existing taint substrate.
Subticket for #2204.\n\nScope:\n- Register a conservative Python taint source/sink model.\n- Cover common request-style remote-input sources such as request/req member reads.\n- Cover high-confidence Python sinks: os/subprocess command execution, eval/exec, open path usage, and conventional DB execute/query calls.\n- Add Python CFG call/member-read site substrate only as needed for the model to be observable by the existing taint matcher.\n- Keep sanitizers empty for this slice to avoid unsafe false kills.\n- Add focused fixtures proving real source-to-sink matching and conservative shadowing behavior.\n\nOut of scope:\n- Java models.\n- Broad framework-specific sanitizer modeling.\n- Interprocedural or property-flow precision changes beyond the existing taint substrate.