codeql

mirror of https://github.com/github/codeql.git synced 2025-12-19 18:33:16 +01:00

Author	SHA1	Message	Date
Mathias Vorreiter Pedersen	b70836e241	C++: Modify the API to not expose dataflow nodes.	2025-08-01 11:34:49 +01:00
Mathias Vorreiter Pedersen	33d05984c8	C++: Stick the exposed SSA classes into a public SSA module.	2025-08-01 11:34:47 +01:00
Mathias Vorreiter Pedersen	32e6d0934e	C++: Drive-by fix: These files imported both the public dataflow files and the internal ones. Let's only import the internal ones.	2025-08-01 11:34:45 +01:00
Napalys Klicius	e980798ede	Added step through yargs/yargs constructor and chained methods.	2025-08-01 12:01:30 +02:00
Mathias Vorreiter Pedersen	7ede3aa516	C++: Fix imports.	2025-08-01 10:35:34 +01:00
Mathias Vorreiter Pedersen	0d91622d18	C++: Rename SsaInternals to SsaImpl and SsaInternalsCommon to SsaImplCommon.	2025-08-01 10:34:14 +01:00
Napalys Klicius	e8eb9be3f6	Add command injection tests for CLI argument parsing libraries	2025-08-01 11:02:59 +02:00
Geoffrey White	01d24c4f83	Merge branch 'main' into sqlx	2025-07-31 16:02:36 +01:00
Mathias Vorreiter Pedersen	18289702ca	C++: Add an example of double negation to the IR tests.	2025-07-31 15:49:05 +01:00
codeqlhelper	4323e6853f	Update cpp/ql/src/change-notes/2025-07-27-avoid-reporting-static-global-variable.md Co-authored-by: Geoffrey White <40627776+geoffw0@users.noreply.github.com>	2025-07-31 21:17:29 +08:00
Mathias Vorreiter Pedersen	c8f4b287d1	C++: Add a comment on the old SSA library.	2025-07-31 14:07:38 +01:00
Mathias Vorreiter Pedersen	7e93b99ff9	C++: Add change note.	2025-07-31 13:57:19 +01:00
Mathias Vorreiter Pedersen	8691075aae	Update cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/SsaInternals.qll Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2025-07-31 13:52:21 +01:00
Mathias Vorreiter Pedersen	5a91aa2105	C++: Expose SSA definitions from dataflow.	2025-07-31 13:45:03 +01:00
Geoffrey White	58680c94bc	Rust: Repair BadCtorInitialization.ql's StdCall using getCanonicalPath.	2025-07-31 13:28:56 +01:00
Simon Friis Vindum	abc58ac8b3	Rust: Add metric and debug predicates for type that reach the length limit	2025-07-31 14:20:32 +02:00
Mathias Vorreiter Pedersen	1dae787605	C++: Drive-by fix suggested by Schack. This now matches the predicate in C#.	2025-07-31 12:58:05 +01:00
Napalys Klicius	3f9061abdb	Added change note	2025-07-31 13:20:38 +02:00
Napalys Klicius	d28a6e6352	Added new test cases for regexp injection with enviromental variable threat model enabled	2025-07-31 13:20:37 +02:00
Napalys Klicius	8583257574	Created new folder for test with threat models disabled	2025-07-31 13:20:30 +02:00
Ian Lynagh	492e27b8e8	Merge pull request #20141 from igfoo/igfoo/kotlin-2.2.20-beta2 Kotlin: Support 2.2.20-beta2	2025-07-31 12:00:17 +01:00
Napalys Klicius	021aa13ee2	Added change note	2025-07-31 12:45:34 +02:00
Napalys Klicius	5f538209c9	Exlucde environmental variables from default detection in regexp injection	2025-07-31 12:09:30 +02:00
Napalys Klicius	791a7e242e	Updated qhelp for cors permissive configuration	2025-07-31 11:31:10 +02:00
Napalys Klicius	2baca58b27	Removed deprecations from cors as it was moved out experimental	2025-07-31 11:08:22 +02:00
Napalys Klicius	fd4233e30e	Moved apollo modeling to MaD	2025-07-31 10:58:38 +02:00
Joe Farebrother	79d1deb28d	Update python/ql/src/Classes/SubclassShadowing/SubclassShadowing.ql Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2025-07-31 06:05:48 +01:00
Joe Farebrother	71a6b22815	Update python/ql/src/Classes/SubclassShadowing/examples/SubclassShadowingBad.py Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2025-07-31 06:05:25 +01:00
Geoffrey White	42ced8aa3d	Rust: Add examples to tests.	2025-07-30 17:51:32 +01:00
Geoffrey White	b6e60e4087	Rust: Address small bugs in the test.	2025-07-30 17:51:31 +01:00
Geoffrey White	215fe7d0b3	Rust: Clean up the alert message.	2025-07-30 17:51:30 +01:00
Geoffrey White	e585e677c8	Rust: Add qhelp and examples.	2025-07-30 17:51:28 +01:00
Joe Farebrother	1efc09bbba	Update integration tests	2025-07-30 15:54:39 +01:00
Joe Farebrother	63577f0cca	Add extra example	2025-07-30 15:52:26 +01:00
Joe Farebrother	2516f9452e	Move to subfolder	2025-07-30 15:17:19 +01:00
Ian Lynagh	e589019e04	Kotlin: Use 2.2.20-Beta2 rather than 2.2.20-Beta1	2025-07-30 14:14:14 +01:00
Ian Lynagh	4ea6133042	Kotlin: Add 2.2.20-Beta2 jars	2025-07-30 14:13:02 +01:00
Ian Lynagh	c78818d7dd	Kotlin: Remove 2.2.20-Beta1 jars	2025-07-30 14:12:43 +01:00
Joe Farebrother	34317d2d4a	Update documentation	2025-07-30 13:56:28 +01:00
Joe Farebrother	796a6060b2	Exclude setters and update tests	2025-07-30 13:56:05 +01:00
Joe Farebrother	af94ebe1fc	Modernize attribute shadows subclass, Add cases for properties	2025-07-30 13:55:11 +01:00
Simon Friis Vindum	3bc1d47738	Merge pull request #20130 from paldepind/rust/type-inference-fn Rust: Implement type inference for closures and calls to closures	2025-07-30 13:13:57 +02:00
Napalys Klicius	84ffbbec33	Added missing doc strings	2025-07-30 10:51:38 +00:00
Napalys Klicius	95743d7109	Added inline test expectations for cors permissive config	2025-07-30 10:42:55 +00:00
codeqlhelper	ee3e7e34ba	Merge pull request #1 from geoffw0/initnotrun .expected CPP: Add .expected file for the InitialisationNotRun test	2025-07-30 18:36:29 +08:00
Napalys Klicius	92daa7d42c	Updated suite expectations	2025-07-30 10:32:11 +00:00
Geoffrey White	c0638a5fcb	CPP: Update .expected for the changes here.	2025-07-30 11:24:57 +01:00
Anders Schack-Mulligen	5ca9c090a8	Merge pull request #20132 from aschackmull/ssa/guardvalue SSA: Update data flow integration and BarrierGuard interface to use GuardValue.	2025-07-30 12:23:17 +02:00
Napalys Klicius	358617f533	Move CORS misconfiguration query from experimental to Security	2025-07-30 10:22:59 +00:00
Geoffrey White	d6fddde6e0	CPP: Add .expected (results before query changes here).	2025-07-30 11:22:56 +01:00

... 19 20 21 22 23 ...

82643 Commits