hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-19 10:23:15 +01:00
Code Issues Packages Projects Releases Wiki Activity
82,643 Commits 1,671 Branches 157 Tags
alexet/avoid-path-node-java
Commit Graph

3543 Commits

Author SHA1 Message Date
Nora Dimitrijević
79e982af38 Merge pull request #19661 from d10c/d10c/csharp/diff-informed 
C#: mass enable diff-informed data flow
 2025-06-17 14:52:24 +02:00
Michael Nebel
819ee33239 C#: Do not add complexity queries that should be configurable to the Code Quality suite. 2025-06-17 10:00:11 +02:00
Michael Nebel
758a6b5487 C#: Add change note. 2025-06-17 10:00:09 +02:00
Michael Nebel
96b7250b61 C#: Mass enable quality queries and update tags. 2025-06-17 09:56:43 +02:00
Michael Nebel
87b52cc347 Merge pull request #19716 from michaelnebel/csharp/gethashcodeisnotdefined 
C#: Add `cs/gethashcode-is-not-defined` to the Code Quality suite.
 2025-06-17 08:43:26 +02:00
Owen Mansel-Chan
538a5af1d1 Merge pull request #19738 from owen-mc/pr/felickz/19530 
Set CWE-134 from 9.3 to 7.3 CVSS score for memory safe languages (#2)
 2025-06-12 10:27:28 +01:00
Nora Dimitrijević
f2085c2293 C#: mass enable diff-informed data flow 
An auto-generated patch that enables diff-informed data flow in the obvious cases.

Builds on https://github.com/github/codeql/pull/18344 and https://github.com/github/codeql-patch/pull/88
 2025-06-11 18:56:25 +02:00
Michael Nebel
f038e2f809 Merge pull request #19589 from michaelnebel/csharp/dereference 
C#: Improve `cs/dereference-*` queries and add to the Code Quality suite.
 2025-06-11 13:40:58 +02:00
Michael Nebel
dc81f5a6b2 Merge pull request #19713 from michaelnebel/csharp/freezequalityinsecurityandquality 
C#: Freeze quality queries in the security-and-quality suite.
 2025-06-10 16:19:45 +02:00
Michael Nebel
99dc923f1f C#: Add cs/gethashcode-is-not-defined to the Code Quality suite. 2025-06-10 15:45:41 +02:00
Michael Nebel
a15b9a8eae C#: Freeze quality queries in the security-and-quality suite. 2025-06-10 13:34:03 +02:00
Tamás Vajk
7a632e8a47 Merge pull request #19650 from tamasvajk/quality/string-concat-loop 
Add `cs/string-concatenation-in-loop` to the quality suite
 2025-06-10 11:49:24 +02:00
github-actions[bot]
21463a9653 Post-release preparation for codeql-cli-2.22.0 2025-06-09 18:50:20 +00:00
github-actions[bot]
88ba02edf8 Release preparation for version 2.22.0 2025-06-09 18:14:51 +00:00
Chad Bentz
371a50e6c4 Merge branch 'main' into cwe-134 2025-06-09 11:22:40 -04:00
Chad Bentz
53a6133e6f Add change-notes for csharp/java/swift 2025-06-06 12:23:59 -04:00
Chad Bentz
77e49f1f90 Merge branch 'main' into cwe-134 2025-06-06 11:16:10 -04:00
Michael Nebel
bc4ff598c3 C#: Add change-note. 2025-06-03 13:25:02 +02:00
Michael Nebel
77fa45050e C#: Add cs/dereferenced-value-is-always-null and cs/dereferenced-value-may-be-null to the Code Quality suites. 2025-06-03 13:25:01 +02:00
Tamas Vajk
92541ffdd8 Add cs/string-concatenation-in-loop to the quality suite 2025-06-03 10:51:38 +02:00
github-actions[bot]
d2c6875eac Post-release preparation for codeql-cli-2.21.4 2025-05-27 18:16:21 +00:00
github-actions[bot]
bfb91e95e3 Release preparation for version 2.21.4 2025-05-27 17:22:05 +00:00
Michael Nebel
bae16f07ff C#: Change note. 2025-05-22 08:42:37 +02:00
Michael Nebel
19e9197874 C#: The field access should be on this for it to be compatible with readonly. 2025-05-21 15:19:26 +02:00
Michael Nebel
8108c72c17 C#: Exclude structs from being flagged in cs/missed-readonly-modifier. 2025-05-21 15:19:25 +02:00
Michael Nebel
3a1cd3f734 C#: Add cs/missed-readonly-modifier to the code-quality suite. 2025-05-21 11:34:40 +02:00
Chad Bentz
8a81aa1762 Set CWE-134 from 9.3 to 7.3 CVSS score for memory safe languages 
- Sync up to score given to javascript/ruby
 2025-05-19 14:43:08 -04:00
Michael Nebel
dabeddb62d Add change-notes. 2025-05-19 09:26:49 +02:00
Michael Nebel
03ecd24469 Lower the precision of a range of harcoded password queries to remove them from query suites. 2025-05-19 09:26:45 +02:00
Michael Nebel
4d7901573a C#: Add change note. 2025-05-15 14:07:50 +02:00
Michael Nebel
72d3814e08 C#: Include dictionary indexers and more methods in cs/gethashcode-is-not-defined. 2025-05-15 14:03:22 +02:00
Michael Nebel
ef4c921b5a Merge pull request #19482 from michaelnebel/csharp/code-quality-call-to-gc 
C#: Add `cs/call-to-gc` to the code quality suite.
 2025-05-14 13:03:24 +02:00
Michael Nebel
7531a95d22 Merge pull request #19271 from michaelnebel/csharp/uncontrolled-format-string 
C#: Improve precision of `cs/uncontrolled-format-string`.
 2025-05-14 10:39:38 +02:00
Mathias Vorreiter Pedersen
e903d76fa0 Merge pull request #19443 from MathiasVP/generate-more-value-preserving-summaries-2 
Shared: Generate more value-preserving flow summaries
 2025-05-14 09:12:28 +01:00
github-actions[bot]
5f9dd75d7d Post-release preparation for codeql-cli-2.21.3 2025-05-13 21:49:43 +00:00
github-actions[bot]
2de4a01c86 Release preparation for version 2.21.3 2025-05-13 21:14:27 +00:00
Michael Nebel
f5903eaf2d C#: Add cs/call-to-gc to the code quality suite. 2025-05-13 14:46:29 +02:00
Michael Nebel
09dc3c88b3 C#: Update model generator implementation and test expected output. 2025-05-13 13:44:40 +01:00
Michael Nebel
3449a34018 C#: Address review comments. 2025-05-13 14:20:06 +02:00
Simon Friis Vindum
014e7dc4bc Shared: Remove change note for internal MaD generator 2025-05-13 09:50:07 +02:00
Michael Nebel
6cc3c820b4 C#: Add change note. 2025-05-12 15:45:03 +02:00
Michael Nebel
133e8d4897 C#: Include CompositeFormat.Parse as Format like method. 2025-05-12 15:44:59 +02:00
Mathias Vorreiter Pedersen
bce5f2539f C++/C#/Java/Rust: Fixup tests. 2025-05-02 16:52:05 +01:00
Mathias Vorreiter Pedersen
4d2f2b89e7 Shared/Java/C#/Rust/C++: Rename 'captureHeuristicFlow' to 'captureFlow'. 2025-05-02 14:02:41 +01:00
Simon Friis Vindum
c6d95ceeb0 Shared: Remove the language-specific model generator scripts 2025-05-02 13:21:10 +02:00
Mathias Vorreiter Pedersen
d5bc95daeb Merge branch 'main' into generate-more-value-preserving-summaries-2 2025-05-02 10:51:11 +01:00
Michael Nebel
74669cb0cb Merge pull request #19382 from michaelnebel/shared/modelgenrefactor 
Shared: Re-factor summary, source and sink model generators into separate modules.
 2025-05-02 09:38:24 +02:00
Tamás Vajk
cb1c3736fe Merge pull request #19413 from tamasvajk/quality/query-suite-selector 
Add code quality suite selector and use that in the code quality suites
 2025-05-02 08:18:48 +02:00
Owen Mansel-Chan
0863c87572 Add change notes 2025-05-01 10:33:24 +01:00
Mathias Vorreiter Pedersen
cd47379700 C#: Fixup queries and accept test changes. 2025-04-30 20:34:30 +01:00