am0o0
|
b5e7716579
|
remove flow states, remove string as sources
|
2024-07-28 11:26:18 +02:00 |
|
am0o0
|
46ddddc8cf
|
Merge tag 'codeql-cli/v2.18.1' into amammad-java-JWT
Compatible with CodeQL CLI 2.18.1
|
2024-07-28 11:23:20 +02:00 |
|
am0o0
|
85b02b1399
|
use MethodCall instead of MethodAccess, change query id
|
2024-07-28 10:42:44 +02:00 |
|
am0o0
|
494f0b709e
|
Merge branch 'main' into amammad-java-JWT
|
2024-07-28 10:37:26 +02:00 |
|
am0o0
|
14cf47b906
|
comply with PascalCase/camelCase, remove redundant import
|
2024-07-28 10:28:28 +02:00 |
|
Chris Smowton
|
e3559d8f93
|
Adjust test expectations
|
2024-07-28 10:27:11 +02:00 |
|
Chris Smowton
|
142d7ae005
|
Make test compatible with Servlet 2.5; use old Servlet stubs
|
2024-07-28 10:26:58 +02:00 |
|
Jeroen Ketema
|
e1329dff72
|
Merge pull request #16947 from github/calumgrant/attributes
C++: Update attributes test output
|
2024-07-26 21:05:46 +02:00 |
|
Florin Coada
|
b6aea3cde1
|
Merge pull request #17083 from github/changedocs/2.18.1
Update codeql changelog to version 2.18.1
|
2024-07-26 18:23:16 +01:00 |
|
Florin Coada
|
d189526283
|
Update docs/codeql/codeql-overview/codeql-changelog/codeql-cli-2.18.1.rst
Co-authored-by: Aditya Sharad <6874315+adityasharad@users.noreply.github.com>
|
2024-07-26 18:16:12 +01:00 |
|
Florin Coada
|
707acdef08
|
Update codeql-cli-2.18.1.rst
|
2024-07-26 17:25:58 +01:00 |
|
Florin Coada
|
450137d2cf
|
Update codeql changelog to version 2.18.1
|
2024-07-26 17:15:23 +01:00 |
|
Jami
|
0ba5a74f6a
|
Merge pull request #17074 from jcogs33/jcogs33/java/fix-regex-use-comments
Java: fix comments about use of sink kind `regex-use`
|
2024-07-26 08:57:39 -04:00 |
|
Sylwia Budzynska
|
a05266c236
|
Formatting
|
2024-07-26 14:55:58 +02:00 |
|
Jami
|
ff9093f2de
|
Merge branch 'main' into jcogs33/java/add-apache-ant-path-inj-sinks
|
2024-07-26 08:54:27 -04:00 |
|
Sylwia Budzynska
|
358a1b3a20
|
Fix tests
|
2024-07-26 14:19:06 +02:00 |
|
Sylwia Budzynska
|
6d1c00742f
|
Add tests and change note
|
2024-07-26 14:15:43 +02:00 |
|
Sylwia Budzynska
|
221c18934c
|
Add models
|
2024-07-26 13:23:39 +02:00 |
|
Florin Coada
|
8eb3b31ee2
|
Merge pull request #17060 from github/changedocs/2.18.0
Update unified changelog for 2.17.6 and 2.18.0
|
2024-07-26 11:35:41 +01:00 |
|
Florin Coada
|
72e05c952e
|
Merge branch 'main' into changedocs/2.18.0
|
2024-07-26 11:27:41 +01:00 |
|
Mathias Vorreiter Pedersen
|
c0263bef5a
|
Merge pull request #17062 from MathiasVP/speed-up-alias-analysis-4
C++: Speed up alias analysis
|
2024-07-26 10:02:02 +01:00 |
|
Mathias Vorreiter Pedersen
|
6b68cf6bdc
|
Merge pull request #17076 from MathiasVP/add-missing-write-side-effect-to-remquo
C++: Add missing write side effect to `std::remquo`
|
2024-07-26 09:56:57 +01:00 |
|
Jeroen Ketema
|
06a3bf8808
|
Merge pull request #17077 from jketema/explicit-bool2
C++: Add more `explicit(bool)` tests
|
2024-07-26 10:55:54 +02:00 |
|
Anders Schack-Mulligen
|
822f8b06f0
|
Merge pull request #17011 from aschackmull/dataflow/provenance-postprocess-qltest
Shared: Add support for provenance pretty-printing as a qltest postprocess step.
|
2024-07-26 10:51:59 +02:00 |
|
Jeroen Ketema
|
a944922c97
|
C++: Add more explicit(bool) tests
|
2024-07-26 09:47:01 +02:00 |
|
Arthur Baars
|
b34b589005
|
Merge branch 'main' into aibaars/proxy-tests
|
2024-07-26 09:24:54 +02:00 |
|
Owen Mansel-Chan
|
c051d33cc7
|
Merge branch 'main' into dataflow/provenance-postprocess-qltest
|
2024-07-26 08:04:05 +01:00 |
|
Joe Farebrother
|
ebeb187fd9
|
Remove unneeded experimental file
|
2024-07-25 23:16:48 +01:00 |
|
Geoffrey White
|
52020f7e5b
|
Merge pull request #17028 from geoffw0/cryptodoc
C++: Improve query doc advice for using encryption
|
2024-07-25 21:46:16 +01:00 |
|
RobbingDaHood
|
feb31d2006
|
Merge branch 'main' into 17052-second-try-do-not-expose-error-message
|
2024-07-25 18:13:49 +02:00 |
|
Mathias Vorreiter Pedersen
|
91edf82c8a
|
C++: Add more missing overrides.
|
2024-07-25 17:13:26 +01:00 |
|
Mathias Vorreiter Pedersen
|
b640bdccdc
|
C++: Accept test changes.
|
2024-07-25 17:13:10 +01:00 |
|
Mathias Vorreiter Pedersen
|
52f8f04e9d
|
C++: Add write side effect to 'remquo'.
|
2024-07-25 17:12:56 +01:00 |
|
Daniel Winther Petersen
|
1c1ba7734f
|
Now alerts about exposing exception.getMessage() in servlet responses are split out of java/stack-trace-exposure into its own alert java/error-message-exposure because this is a better fit.
|
2024-07-25 18:12:45 +02:00 |
|
Jami
|
91f5f086fb
|
Merge pull request #17025 from jcogs33/jcogs33/java/adjust-url-syntheticfield
Java: add TaintInheritingContent for URL synthetic fields
|
2024-07-25 12:11:39 -04:00 |
|
Mathias Vorreiter Pedersen
|
d2f5734ac5
|
C++: Add FP.
|
2024-07-25 17:08:47 +01:00 |
|
Arthur Baars
|
9d6260b334
|
Copy os.environment
Prevents cryptic "OSError: [WinError 10106] The requested service provider could not be loaded or initialized" error from Python subprocess call
|
2024-07-25 17:59:11 +02:00 |
|
Mathias Vorreiter Pedersen
|
30abc958a8
|
Merge pull request #16982 from MathiasVP/promote-unsigned-difference-expression-compared-zero-to-code-scanning
C++: Promote `cpp/unsigned-difference-expression-compared-zero` to Code Scanning
|
2024-07-25 16:18:39 +01:00 |
|
Jami Cogswell
|
eea3e82cca
|
Java: fix 'regex-use' comments
|
2024-07-25 10:39:03 -04:00 |
|
Geoffrey White
|
27314aac16
|
Apply suggestions from code review
Co-authored-by: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
|
2024-07-25 15:17:21 +01:00 |
|
Owen Mansel-Chan
|
1aa63c3f2e
|
Accept model numbering changes
|
2024-07-25 14:55:50 +01:00 |
|
Jeroen Ketema
|
9d75782c44
|
Merge pull request #17073 from jketema/explicit-bool
C++: Add additional test cases for `explict` and `explicit(bool)` specifiers
|
2024-07-25 15:40:38 +02:00 |
|
Mathias Vorreiter Pedersen
|
087b0dac1d
|
C++: Fix QLDoc.
|
2024-07-25 14:38:26 +01:00 |
|
Alex Ford
|
9fb657c4c4
|
Merge pull request #16781 from alexrford/rb/weak-sensitive-data-hashing
Add `rb/weak-sensitive-data-hashing` query port
|
2024-07-25 14:11:42 +01:00 |
|
Mathias Vorreiter Pedersen
|
4d3377b116
|
Merge branch 'main' into promote-unsigned-difference-expression-compared-zero-to-code-scanning
|
2024-07-25 14:00:05 +01:00 |
|
Jeroen Ketema
|
3e7a60c1a6
|
C++: Add additional test cases for explict and explicit(bool) specifiers
Note that the `explict(bool)` specifiers currently do not end up in the
database.
|
2024-07-25 14:41:44 +02:00 |
|
Anders Schack-Mulligen
|
c693f03462
|
Merge pull request #17070 from aschackmull/dataflow/pptype-refactor
Dataflow: Replace `ppReprType` with `DataFlowType.toString`.
|
2024-07-25 14:30:08 +02:00 |
|
Geoffrey White
|
245f43dd58
|
Merge pull request #17064 from geoffw0/swiftbobs
Swift: Minor fixes
|
2024-07-25 13:05:19 +01:00 |
|
Owen Mansel-Chan
|
a6cb511ed7
|
Convert XPath injection sinks to MaD
|
2024-07-25 12:56:06 +01:00 |
|
Owen Mansel-Chan
|
f3069c8fbb
|
Improve XPath injection test (incl extra sinks)
Currently the extra sinks are not detected. This will be fixed in the
next commit.
|
2024-07-25 12:55:05 +01:00 |
|