hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #36 from rdmarsh2/rdmarsh/cpp/add-security-tags

Browse Source 
C++: add security tags to more queries
This commit is contained in:
Jonas Jensen
2018-08-14 12:07:28 +02:00
committed by GitHub
parent 58a2639518 9cf599fb59
commit da02c45102
23 changed files with 26 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
cpp/ql/src/Critical/DescriptorMayNotBeClosed.ql
View File

@@ -5,6 +5,7 @@
* @id cpp/descriptor-may-not-be-closed
* @problem.severity warning
* @tags efficiency
* security
* external/cwe/cwe-775
*/
import semmle.code.cpp.pointsto.PointsTo

1
cpp/ql/src/Critical/DescriptorNeverClosed.ql
View File

@@ -5,6 +5,7 @@
* @id cpp/descriptor-never-closed
* @problem.severity warning
* @tags efficiency
* security
* external/cwe/cwe-775
*/
import semmle.code.cpp.pointsto.PointsTo

1
cpp/ql/src/Critical/GlobalUseBeforeInit.ql
View File

@@ -5,6 +5,7 @@
* @id cpp/global-use-before-init
* @problem.severity warning
* @tags reliability
* security
* external/cwe/cwe-457
*/
import cpp

1
cpp/ql/src/Critical/InconsistentNullnessTesting.ql
View File

@@ -5,6 +5,7 @@
* @id cpp/inconsistent-nullness-testing
* @problem.severity warning
* @tags reliability
* security
* external/cwe/cwe-476
*/
import cpp

1
cpp/ql/src/Critical/InitialisationNotRun.ql
View File

@@ -5,6 +5,7 @@
* @id cpp/initialization-not-run
* @problem.severity warning
* @tags reliability
* security
* external/cwe/cwe-456
*/
import cpp

1
cpp/ql/src/Critical/LateNegativeTest.ql
View File

@@ -7,6 +7,7 @@
* @id cpp/late-negative-test
* @problem.severity warning
* @tags reliability
* security
* external/cwe/cwe-823
*/
import cpp

1
cpp/ql/src/Critical/MissingNegativityTest.ql
View File

@@ -5,6 +5,7 @@
* @id cpp/missing-negativity-test
* @problem.severity warning
* @tags reliability
* security
* external/cwe/cwe-823
*/
import cpp

1
cpp/ql/src/Critical/MissingNullTest.ql
View File

@@ -5,6 +5,7 @@
* @id cpp/missing-null-test
* @problem.severity recommendation
* @tags reliability
* security
* external/cwe/cwe-476
*/
import cpp

1
cpp/ql/src/Critical/OverflowCalculated.ql
View File

@@ -5,6 +5,7 @@
* @id cpp/overflow-calculated
* @problem.severity warning
* @tags reliability
* security
* external/cwe/cwe-131
* external/cwe/cwe-120
*/

1
cpp/ql/src/Critical/OverflowDestination.ql
View File

@@ -6,6 +6,7 @@
* @id cpp/overflow-destination
* @problem.severity warning
* @tags reliability
* security
* external/cwe/cwe-119
* external/cwe/cwe-131
*/

1
cpp/ql/src/Critical/ReturnStackAllocatedObject.ql
View File

@@ -9,6 +9,7 @@
* @id cpp/return-stack-allocated-object
* @problem.severity warning
* @tags reliability
* security
* external/cwe/cwe-562
*/
import semmle.code.cpp.pointsto.PointsTo

3
cpp/ql/src/Likely Bugs/Arithmetic/BadAdditionOverflowCheck.ql
View File

@@ -10,6 +10,9 @@
* @id cpp/bad-addition-overflow-check
* @tags reliability
* correctness
* security
* external/cwe/190
* external/cwe/192
*/
import cpp

1
cpp/ql/src/Likely Bugs/Conversion/CastArrayPointerArithmetic.ql
View File

@@ -9,6 +9,7 @@
* @precision high
* @tags correctness
* reliability
* security
* external/cwe/cwe-119
* external/cwe/cwe-843
* @id cpp/upcast-array-pointer-arithmetic

1
cpp/ql/src/Likely Bugs/Format/NonConstantFormat.ql
View File

@@ -10,6 +10,7 @@
* @id cpp/non-constant-format
* @tags maintainability
* correctness
* security
* external/cwe/cwe-134
*/
import cpp

1
cpp/ql/src/Likely Bugs/Format/SnprintfOverflow.ql
View File

@@ -8,6 +8,7 @@
* @id cpp/overflowing-snprintf
* @tags reliability
* correctness
* security
*/
import cpp

1
cpp/ql/src/Likely Bugs/Format/WrongNumberOfFormatArguments.ql
View File

@@ -8,6 +8,7 @@
* @id cpp/wrong-number-format-arguments
* @tags reliability
* correctness
* security
* external/cwe/cwe-685
*/
import cpp

1
cpp/ql/src/Likely Bugs/Format/WrongTypeFormatArguments.ql
View File

@@ -8,6 +8,7 @@
* @id cpp/wrong-type-format-argument
* @tags reliability
* correctness
* security
* external/cwe/cwe-686
*/

1
cpp/ql/src/Likely Bugs/Memory Management/StrncpyFlippedArgs.ql
View File

@@ -8,6 +8,7 @@
* @id cpp/bad-strncpy-size
* @tags reliability
* correctness
* security
* external/cwe/cwe-676
* external/cwe/cwe-119
* external/cwe/cwe-251

1
cpp/ql/src/Likely Bugs/Memory Management/SuspiciousCallToMemset.ql
View File

@@ -10,6 +10,7 @@
* @precision medium
* @tags reliability
* correctness
* security
* external/cwe/cwe-676
*/
import cpp

1
cpp/ql/src/Likely Bugs/Memory Management/SuspiciousCallToStrncat.ql
View File

@@ -8,6 +8,7 @@
* @id cpp/unsafe-strncat
* @tags reliability
* correctness
* security
* external/cwe/cwe-676
* external/cwe/cwe-119
* external/cwe/cwe-251

1
cpp/ql/src/Likely Bugs/Memory Management/SuspiciousSizeof.ql
View File

@@ -9,6 +9,7 @@
* @id cpp/suspicious-sizeof
* @tags reliability
* correctness
* security
* external/cwe/cwe-467
*/
import cpp

1
cpp/ql/src/Likely Bugs/Memory Management/UnsafeUseOfStrcat.ql
View File

@@ -8,6 +8,7 @@
* @id cpp/unsafe-strcat
* @tags reliability
* correctness
* security
* external/cwe/cwe-676
* external/cwe/cwe-120
* external/cwe/cwe-251

2
cpp/ql/src/Likely Bugs/OO/SelfAssignmentCheck.ql
View File

@@ -7,6 +7,8 @@
* @id cpp/self-assignment-check
* @problem.severity warning
* @tags reliability
* security
* external/cwe/cwe-826
*/
import cpp