hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-21 11:16:30 +01:00
Code Issues Packages Projects Releases Wiki Activity
82,643 Commits 1,672 Branches 157 Tags
alexet/avoid-path-node-java
Commit Graph

82643 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Geoffrey White
66d6770c3f Rust: If we're inferring both ways, it should really be to any element. 2025-06-17 10:47:35 +01:00
Geoffrey White
69da4e7462 Rust: Move inferArrayExprType logic into typeEquality predicate. 2025-06-17 10:45:57 +01:00
Paolo Tranquilli
e9a071032c Rust: address review on docs 2025-06-17 11:19:59 +02:00
Mathias Vorreiter Pedersen
e1b9d9fe75 Merge pull request #19787 from MathiasVP/add-cpp-exception-edges-out-of-calls 
C++: Add exception edges out of calls inside `try` statements
 2025-06-17 10:05:46 +01:00
idrissrio
9fb47cc125 C++: add tests for attribute extraction on namespace 2025-06-17 10:52:27 +02:00
Simon Friis Vindum
f18acdf11f Rust: Generalize type of debug predicate 2025-06-17 10:34:42 +02:00
Simon Friis Vindum
a0bc455d53 Rust: Account for borrows in operators in type inference 2025-06-17 10:34:41 +02:00
Simon Friis Vindum
cc234f2d19 Rust: Add a type inference test 2025-06-17 10:34:39 +02:00
Simon Friis Vindum
ebdffcc4ef Rust: Refactor and generalize Call 2025-06-17 10:34:38 +02:00
Napalys Klicius
ac533ea809 Merge pull request #19771 from Napalys/js/sanitizer_serialize 
JS: Improve XSS detection for `serialize-javascript` with tainted objects
 2025-06-17 10:02:39 +02:00
Michael Nebel
d296ee7d50 C#: Update integration test expected output. 2025-06-17 10:00:12 +02:00
Michael Nebel
819ee33239 C#: Do not add complexity queries that should be configurable to the Code Quality suite. 2025-06-17 10:00:11 +02:00
Michael Nebel
758a6b5487 C#: Add change note. 2025-06-17 10:00:09 +02:00
Michael Nebel
3301924777 C#: Update integration test expected output. 2025-06-17 10:00:02 +02:00
Tom Hvitved
909e95f373 Merge pull request #19782 from hvitved/csharp/type-arg-unique 
C#: Handle non-unique type arguments when computing generics strings
 2025-06-17 09:59:48 +02:00
Michael Nebel
96b7250b61 C#: Mass enable quality queries and update tags. 2025-06-17 09:56:43 +02:00
Tom Hvitved
a188adc09b C#: Handle non-unique type arguments when computing generics strings 2025-06-17 09:30:49 +02:00
Michael Nebel
87b52cc347 Merge pull request #19716 from michaelnebel/csharp/gethashcodeisnotdefined 
C#: Add `cs/gethashcode-is-not-defined` to the Code Quality suite.
 2025-06-17 08:43:26 +02:00
Napalys Klicius
72528749f2 JS: add change note 2025-06-17 08:34:34 +02:00
Napalys Klicius
060b98d36c JS: enchance middleware taint tracking via local source 2025-06-17 08:30:19 +02:00
Napalys Klicius
fc0c8a8f5a JS: update change note 2025-06-17 08:20:35 +02:00
Kasper Svendsen
7f38a7ff2f Merge pull request #19590 from kaspersv/kaspersv/overlay-inline-warning 
Overlay: Add QL for QL query to warn about possible non-inlining across overlay frontier
 2025-06-17 08:03:34 +02:00
Tom Hvitved
4576880622 Merge pull request #19777 from hvitved/shared/summary-stack-mad-repr-unique 
Shared: Make sure `getMadRepresentation` is unique
 2025-06-16 20:00:18 +02:00
REDMOND\brodes
2b6a8321fd Crypto: Update JCA model to account for Model.qll changes. 2025-06-16 12:53:48 -04:00
Mathias Vorreiter Pedersen
9f3569b980 C++: Accept test changes. 2025-06-16 17:53:35 +01:00
REDMOND\brodes
6c9c969573 Crypto: Remove dead comments 2025-06-16 12:43:29 -04:00
Mathias Vorreiter Pedersen
7355f555a5 C++: Add an exception edge out of calls inside try statements. 2025-06-16 17:27:11 +01:00
REDMOND\brodes
7c18686462 Crypto: Further ql-for-ql alert alert fixes. 2025-06-16 12:14:09 -04:00
Jeroen Ketema
4bed44d4d2 Merge pull request #19775 from jketema/seh-2 
C++: Generate SEH edges for pointer dereference loads/stores in `__try` blocks
 2025-06-16 18:00:39 +02:00
REDMOND\brodes
790a60784e Crypto: Acronym change from OpenSSL to OpenSsl, AVC to Avc and EVP to Evp. 2025-06-16 10:56:31 -04:00
Napalys Klicius
da21a064ac JS: add _parsedUrl as remote input source 2025-06-16 16:28:30 +02:00
Napalys Klicius
67aac7abfa JS: add test cases for middleware property assignment tracking 2025-06-16 16:26:08 +02:00
REDMOND\brodes
90e480bbe8 Merge branch 'pawel_signatures_conversion' of https://github.com/bdrodes/codeql into pawel_signatures_conversion 2025-06-16 09:23:05 -04:00
REDMOND\brodes
45fa2c94da Crypto: Code review cleanup. 2025-06-16 09:22:11 -04:00
Jeroen Ketema
4228828b66 C++: Address review comments 2025-06-16 15:02:08 +02:00
Nicolas Will
f975428243 Merge branch 'main' into pawel_signatures_conversion 2025-06-16 14:57:53 +02:00
idrissrio
09bc57a003 C++: update stats file 2025-06-16 14:34:08 +02:00
idrissrio
fc9e5bdbf7 C++: add upgrade and downgrade scripts 2025-06-16 14:34:07 +02:00
idrissrio
927c220ddc C++: add change note for Namespace 2025-06-16 14:34:06 +02:00
idrissrio
e6f118374f C++: add predicate to Namespace class to retrieve associated attributes 2025-06-16 14:34:05 +02:00
idrissrio
b112b93d75 C++: add namespaceattributes table to store namespace attributes 2025-06-16 14:34:04 +02:00
Tom Hvitved
631b14a0df Rust: Fix three models 2025-06-16 14:28:06 +02:00
Tom Hvitved
41f7138627 Shared: Make sure getMadRepresentation is unique 2025-06-16 14:28:05 +02:00
Napalys Klicius
b14b661cd1 JS: add change note 2025-06-16 14:12:39 +02:00
Napalys Klicius
0c31838aa5 JS: mass add missing quality related tags to relevant queries 2025-06-16 14:05:57 +02:00
Paolo Tranquilli
0d803698ac Go: remove language tests from workflows 
Now that they are run internally using QLucie.
 2025-06-16 14:01:40 +02:00
Napalys Klicius
0d5f5104d1 Updated UriEncodingSanitizer comment 2025-06-16 13:08:16 +02:00
Napalys Klicius
798721bd71 JS: add change note 2025-06-16 13:08:14 +02:00
Napalys Klicius
bdbc49c63f JS: Removed encodeURI from request forgery sanitizer list 2025-06-16 13:08:11 +02:00
Napalys Klicius
eca69e1654 JS: remove serialize-javascript from JsonParsers.qll as it is not a parser 2025-06-16 12:59:36 +02:00