codeql

mirror of https://github.com/github/codeql.git synced 2025-12-18 09:43:15 +01:00

Author	SHA1	Message	Date
Robert Marsh	2d457e17d6	Swift: autoformat for CFG library	2024-01-05 21:28:07 +00:00
Robert Marsh	86f59a1c13	Swift: add AnnotatedExitNode to cfg to match prior interface	2024-01-05 21:25:08 +00:00
Robert Marsh	ea4855bc06	Swift: add change note for parameterized CFG library	2024-01-05 21:24:44 +00:00
Robert Marsh	2f0d052558	Swift: header comment for ControlFlowGraphParameter	2024-01-05 21:19:46 +00:00
Geoffrey White	0aec2b1bf4	Swift: Improve consistency of phrasing arouaround 'computationally hard'.	2024-01-05 13:21:01 +00:00
Geoffrey White	a0ea7148cb	Swift: Add GOOD and BAD comments in the sensitive data hashing examples as well.	2024-01-05 13:17:21 +00:00
Geoffrey White	80afa65751	Swift: Add GOOD and BAD comments.	2024-01-05 13:16:41 +00:00
Geoffrey White	657e4d4132	Apply suggestions from code review Co-authored-by: Ben Ahmady <32935794+subatoi@users.noreply.github.com>	2024-01-05 13:04:47 +00:00
Geoffrey White	2ab5e6f64c	Swift: Add link / reference to CryptoSwift.	2024-01-05 11:02:55 +00:00
Geoffrey White	4016033f88	Swift: Add dataflow test cases for property wrappers.	2024-01-04 15:39:20 +00:00
Geoffrey White	fb77e3733b	Swift: Add a test of SwiftUI secure fields as a sensitive data source.	2024-01-04 12:34:33 +00:00
Geoffrey White	31af8b9024	Swift: Test SwiftUI flow sources.	2024-01-04 09:28:10 +00:00
Robert Marsh	41ac0fca85	Swift: use toString and Location from shared CFG library	2024-01-03 21:11:15 +00:00
Robert Marsh	a9c917010f	Swift: fix missing keypath CFGs	2023-12-22 17:55:00 +00:00
Aditya Sharad	b1803d0ac2	Merge rc/3.12 into main	2023-12-21 16:40:51 -08:00
AlexDenisov	e43fafc249	Merge pull request #15116 from github/alexdenisov/improve-swift-autobuilder-further Swift: separate installation of dependencies and autobuilding	2023-12-21 17:35:34 +01:00
github-actions[bot]	8f72b0e4f7	Post-release preparation for codeql-cli-2.15.5	2023-12-19 10:32:57 +00:00
github-actions[bot]	19af35b29a	Release preparation for version 2.15.5	2023-12-18 21:22:44 +00:00
Alex Denisov	6cbf8abf59	Swift: do not trace codesign binary	2023-12-18 14:24:07 +01:00
Geoffrey White	1908575386	Swift: Add more test cases for launchOptions as a source.	2023-12-15 18:11:28 +00:00
Geoffrey White	f6a4970012	Swift: Autoformat.	2023-12-15 14:58:11 +00:00
Geoffrey White	0b04e4abe5	Swift: Address QL-for-QL alerts.	2023-12-15 14:48:30 +00:00
Geoffrey White	034daa9b35	Swift: Address false positives.	2023-12-15 13:29:49 +00:00
Geoffrey White	326242a1fb	Swift: Change note.	2023-12-15 11:39:09 +00:00
Geoffrey White	b7a533f879	Swift: Update .qhelp for Swift.	2023-12-15 11:32:14 +00:00
Alex Denisov	dd13ea3d0a	Swift: separate installation of dependencies and autobuilding `pod install` could generate Xcode projects files needed for autobuilding, so it's better to install dependencies first, and then do re-scan to pick up the new files.	2023-12-15 12:20:36 +01:00
Geoffrey White	0ff84b467f	Swift: Create examples for the .qhelp in Swift, and test them.	2023-12-15 11:14:05 +00:00
Anders Schack-Mulligen	1ea1130271	Merge pull request #15062 from aschackmull/dataflow/deprecate-flowstatestring Dataflow: Deprecate FlowStateString.	2023-12-15 11:59:04 +01:00
Geoffrey White	363ec0a917	Swift: Update swift/summary/query-sinks.	2023-12-14 20:22:36 +00:00
Geoffrey White	9ec08c1c4b	Swift: Add a couple of sinks missing from sensitive data hashing as well.	2023-12-14 18:04:35 +00:00
Geoffrey White	3a900f1f8b	Swift: Fix some inconsistencies in the test cases.	2023-12-14 18:04:34 +00:00
Geoffrey White	7ba18e64a0	Swift: Add sinks for algorithms that are OK for sensitive data hashing but not for password hashing.	2023-12-14 18:04:34 +00:00
Geoffrey White	c2d49c0fff	Swift: Address a weakness in the sensitive data regexs.	2023-12-14 18:04:34 +00:00
Geoffrey White	87eb96ed3b	Swift: Add more cases to test.	2023-12-14 18:04:34 +00:00
Geoffrey White	22ed20dd7c	Swift: Upgrade SecKeyCopyExternalRepresentation source to be considered a password / key rather than a miscellaneous credential.	2023-12-14 18:04:34 +00:00
Robert Marsh	3738e19db6	Swift: fix compilation failures outside CFG code	2023-12-14 16:39:51 +00:00
Geoffrey White	10b4c98e80	Swift: Move password sources to be reported by the new query.	2023-12-14 16:09:47 +00:00
Geoffrey White	5faa25fc6c	Swift: Make passwords their own sensitive data type.	2023-12-14 16:09:47 +00:00
Geoffrey White	b5a45c64ff	Swift: Define barriers, additional flow steps and sinks.	2023-12-14 16:09:47 +00:00
Geoffrey White	e5bf929cdb	Swift: Split off WeakPasswordHashingExtensions.qll as we normally do.	2023-12-14 16:09:46 +00:00
Geoffrey White	db1508d108	Swift: Trivial changes - query ID / metadata, imports.	2023-12-14 16:09:46 +00:00
Geoffrey White	9774c3cb4f	Swift: Copy WeakPasswordHashing query from csharp.	2023-12-14 16:09:45 +00:00
Geoffrey White	be7d0acfea	Swift: Minor fixes for the existing weak sensitive data hashing query (naming consistency, remove unused import).	2023-12-14 16:09:45 +00:00
Mathias Vorreiter Pedersen	04ca36f9b0	Merge pull request #15106 from geoffw0/revrevtest Swift: Revert:Revert "Swift: CommonCrypto test cases for the BrokenCryptoAlgorithm query"	2023-12-14 15:56:46 +00:00
Geoffrey White	7e6ff7c826	Swift: Disable the part of the test that triggers an extraction issue.	2023-12-14 15:04:48 +00:00
Geoffrey White	3193ceb3f9	Merge pull request #15052 from geoffw0/pointermodels Swift: Expand models for UnsafePointer and friends	2023-12-14 14:46:48 +00:00
Anders Schack-Mulligen	a1068ce2f9	Dataflow: deprecate references	2023-12-14 15:05:33 +01:00
Geoffrey White	987cdff862	Revert "Revert "Swift: CommonCrypto test cases for the BrokenCryptoAlgorithm query"" This reverts commit `a478980e48`.	2023-12-14 13:56:35 +00:00
Geoffrey White	36d0148aa1	Swift: Comment out lines that don't extract correctly right now.	2023-12-14 13:27:05 +00:00
Tom Hvitved	c8b4a215bc	Merge pull request #14573 from hvitved/flow-summary-impl-param Move `FlowSummaryImpl.qll` to `dataflow` pack	2023-12-14 12:24:15 +01:00

... 12 13 14 15 16 ...

4437 Commits