hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-24 04:36:35 +01:00
Code Issues Packages Projects Releases Wiki Activity
82,643 Commits 1,673 Branches 157 Tags
alexet/avoid-path-node-java
Commit Graph

82643 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Joe Farebrother
f8a0b1c5f9 Update docs, precision, and deprecate old library 2025-03-20 11:35:12 +00:00
Joe Farebrother
f750e22d91 Add case for exception flow 2025-03-20 11:35:01 +00:00
Joe Farebrother
c8fc56560d Check for wrapper classes 2025-03-20 11:34:51 +00:00
Joe Farebrother
ecb3050780 Update tests 2025-03-20 11:34:42 +00:00
Joe Farebrother
09694c448d Rewrite file not closed simple case using dataflow 2025-03-20 11:34:33 +00:00
Paolo Tranquilli
f06aa38746 Merge branch 'main' into redsun82/swift-count-nodes 2025-03-20 12:32:49 +01:00
Chris Smowton
d362c030b7 Merge pull request #19065 from smowton/smowton/admin/merge-rc317-into-main 
Merge rc/3.17 into main
 2025-03-20 11:31:03 +00:00
Paolo Tranquilli
15bc6fc496 Merge branch 'main' into redsun82/rules_rust 2025-03-20 12:28:52 +01:00
Napalys Klicius
221cc1977d Merge branch 'main' into js/underscore-string 2025-03-20 12:26:00 +01:00
Napalys
f4ca2dc1f3 Restricted taint to array elements. 2025-03-20 12:24:49 +01:00
Napalys
752f02f04d Fixed map modeling and added test cases. 2025-03-20 12:18:28 +01:00
Paolo Tranquilli
b77c13802b Rust: fix canonical paths broken on StructExpr and StructPath 
After the rename done in https://github.com/github/codeql/pull/19059,
canonical path extraction was lost on `StructExpr` and `StructPath` as
the identifiers used for the type in the `emit_detached!` macro were not
updated. This fixes that.
 2025-03-20 12:16:47 +01:00
Arthur Baars
f5fe531ab6 Rust: remove Stage::ref() trick 2025-03-20 12:15:41 +01:00
Napalys
38624a0d78 Added change note 2025-03-20 12:13:32 +01:00
Paolo Tranquilli
4110636032 Rust: preserve ordering in rust generated code 
This is a small devex improvement to the rust code generator.

Usage of `sorted` in `rustgen.py` was causing the generated code to be
completely reshuffled on renames, which made diffs hard to follow. As an
example see [this generated file diff](https://github.com/github/codeql/pull/19059/files#diff-c938ba77a3398dd4c633ada5702a03477705c24740a2f7d1e40d4b270d8c3f86).

This will make the order deterministically based on the order of
definitions in the schema file. This means that renames will find the
same place in the generated file, and the place in the generated file
will generally be more predictable with respect to the schema.

However, that does mean this change is heavily reshuffling the generated
code.
 2025-03-20 12:12:52 +01:00
Napalys
af567b49fb Simplified SuperAgentUrlRequest. 2025-03-20 12:10:37 +01:00
Napalys
539e2ef558 Added support for superagent.agent(). 2025-03-20 12:09:31 +01:00
Napalys
cdf4f5395f Enhance SuperAgent URL request handling for both method calls and direct calls 2025-03-20 12:09:26 +01:00
Napalys
2e1734eeba Added support for del function in superagent 2025-03-20 12:01:18 +01:00
Simon Friis Vindum
b02a249fbd Merge branch 'main' into rust-ti-1 2025-03-20 11:49:58 +01:00
Tom Hvitved
cbb9987a20 Merge remote-tracking branch 'upstream/main' into rust/dependency-renaming 2025-03-20 11:45:03 +01:00
Tom Hvitved
d19188db8f Address review comment 2025-03-20 11:39:52 +01:00
Arthur Baars
2804c13027 Rust: use optionalBarrier 2025-03-20 11:37:05 +01:00
Arthur Baars
5a91b94395 Refactor using OptionalStep 2025-03-20 11:37:04 +01:00
Simon Friis Vindum
b09669646d Merge pull request #19059 from paldepind/rust-record-to-struct 
Rust: Rename classes with `Record` to `Struct`
 2025-03-20 11:34:06 +01:00
Arthur Baars
d3e28772ae Rust/Python improve qldoc of SafeAccessCheck 2025-03-20 11:16:45 +01:00
Tamas Vajk
aa1ecc5cd9 C#: Update CompLog dependency to 0.9.8 2025-03-20 10:14:51 +01:00
Asger F
bf9d7484e4 JS: Use StringBuilder when building up type name 
This code was a bit of a performance cringe. It copied every character
into a temporary array, copied that into a String, and slow-appended
that onto another String.

Note that the call to Characters.toChars is redundant here as advance()
doesn't return a code point; it returns -1 or a UTF-16 char. The -1 case
is checked for before reaching the call, so we can just cast it to
a char and use it directly.

We use a StringBuilder to accumulate the string. Normally it's faster
to track the start/end indices and do a substring(), but that won't
work in the JSDoc extractor because of the star-skipping logic in
advance().
 2025-03-20 09:43:10 +01:00
Tamas Vajk
9bdec217e4 Clean test files and add new test cases 2025-03-20 09:32:27 +01:00
Tamás Vajk
246c8276e0 Update java/ql/lib/semmle/code/java/UnitTests.qll 
Co-authored-by: Jami <57204504+jcogs33@users.noreply.github.com>
 2025-03-20 09:22:13 +01:00
REDMOND\brodes
63aaebbea6 . 2025-03-19 18:30:06 -04:00
Jon Janego
f698d0a060 Update query-metadata-style-guide.md 2025-03-19 16:58:30 -05:00
Jon Janego
14d178f817 Update query-metadata-style-guide.md 
minor tag changes to align with existing tags
 2025-03-19 16:56:37 -05:00
Geoffrey White
0f622b38ab Rust: Update test results. 2025-03-19 18:42:50 +00:00
Geoffrey White
b609bbb4d8 Merge branch 'main' into convtest 2025-03-19 18:41:56 +00:00
Geoffrey White
bbef3fe7fa Rust: Test dataflow through conversions. 2025-03-19 18:13:23 +00:00
Napalys
e5c179d5a4 Added test cases for superagent 2025-03-19 17:44:22 +01:00
Chris Smowton
9a2a13ed55 Merge remote-tracking branch 'origin/main' into smowton/admin/merge-rc317-into-main 2025-03-19 16:01:29 +00:00
Simon Friis Vindum
0d770c8c91 Rust: Improve handling of type parameters with trait bounds 2025-03-19 16:34:23 +01:00
idrissrio
11c71f03f3 C++: Accept changes after C++ extractor preprocessor fix 2025-03-19 16:34:00 +01:00
Paolo Tranquilli
7c8eb9ea0d Codegen: implement db_table_name in cppgen 2025-03-19 15:14:15 +01:00
Paolo Tranquilli
9639d6c8bb Codegen: implement db_table_name in rustgen 2025-03-19 15:14:15 +01:00
Paolo Tranquilli
f48aa79927 Codegen: implement db_table_name in qlgen 2025-03-19 15:14:15 +01:00
Paolo Tranquilli
fc9e066ecd Codegen: implement db_table_name in dbschemegen 2025-03-19 15:14:14 +01:00
Paolo Tranquilli
841214f0f4 Codegen: introduce property-only pragmas 2025-03-19 15:14:14 +01:00
Paolo Tranquilli
91b7329652 Codegen: update dependencies 2025-03-19 15:14:13 +01:00
Paolo Tranquilli
53c235dfd5 Bazel: bump python version to 3.12 2025-03-19 15:14:13 +01:00
Napalys
cb18408502 Added data as model for ApolloServer. 2025-03-19 13:36:06 +01:00
Napalys
23fdc3534f Added test case @apollo/server with SSRF. 2025-03-19 13:34:27 +01:00
Simon Friis Vindum
aa97bf932a Rust: Add type inference tests 2025-03-19 13:26:06 +01:00