hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-22 11:46:32 +01:00
Code Issues Packages Projects Releases Wiki Activity
82,643 Commits 1,672 Branches 157 Tags
alexet/avoid-path-node-java
Commit Graph

82643 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jeroen Ketema
9d5a465e9d C++: Remove unused options file 2025-05-16 15:11:40 +02:00
Mathias Vorreiter Pedersen
1d31a38362 C++: Regenerate the models for OpenSSL and sqlite after excluding tests in model-generation (sqlite is unaffected). 2025-05-16 13:53:16 +01:00
Mathias Vorreiter Pedersen
03d6633d41 Merge pull request #19501 from MathiasVP/as-expr-class-aggregate-literal 
C++: Make `node.asExpr() instanceof ClassAggregateLiteral` satisfiable
 2025-05-16 13:49:03 +01:00
Taus
579cf4a65a Merge pull request #19424 from github/tausbn/python-extract-hidden-file-by-default 
Python: Extract files in hidden dirs by default
 2025-05-16 14:43:47 +02:00
Mathias Vorreiter Pedersen
3df647f205 C++: Add change note. 2025-05-16 13:37:07 +01:00
Mathias Vorreiter Pedersen
bebc077c9e C++: Accept test changes. 2025-05-16 13:37:02 +01:00
Mathias Vorreiter Pedersen
560ffc0e9b C++: Regenerate the models for OpenSSL and sqlite after model-generation changes. 2025-05-16 13:33:59 +01:00
Mathias Vorreiter Pedersen
d6beb2a6a0 C++: Don't generate models for stuff we have modeled in Ql by hand. 2025-05-16 13:33:54 +01:00
Mathias Vorreiter Pedersen
de31595cd2 C++: Add generated sqlite models. 2025-05-16 13:32:01 +01:00
Mathias Vorreiter Pedersen
0290b4369c C++: Add generated OpenSSL models. 2025-05-16 13:31:59 +01:00
Mathias Vorreiter Pedersen
cadcb202e2 Merge pull request #19500 from MathiasVP/always-apply-manual-models-when-resolving-calls 
C++: Update static call target resolution semantics in dataflow
 2025-05-16 13:28:01 +01:00
Simon Friis Vindum
41e76e20b5 Rust: Add models auto-generated in bulk 2025-05-16 14:08:16 +02:00
Simon Friis Vindum
fb8b79edbf Rust: Skip model generation for functions with semicolon in canonical path 2025-05-16 14:08:09 +02:00
Mathias Vorreiter Pedersen
ffc1c6264e Merge pull request #19498 from MathiasVP/exclude-test-directories 
C++: Exclude tests in model generation
 2025-05-16 13:02:51 +01:00
Taus
9ee3e4cdf3 Python: Update change note 
Co-authored-by: yoff <yoff@github.com>
 2025-05-16 13:50:22 +02:00
Simon Friis Vindum
d66c12b7a9 Rust: Add MaD bulk generation script 2025-05-16 13:38:24 +02:00
Mathias Vorreiter Pedersen
e11ab0f125 Update cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/ExprNodes.qll 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-05-16 12:06:25 +01:00
Michael Nebel
5e72b8bbed Merge pull request #19497 from michaelnebel/csharp/gethashcode 
C#: Improve the query `cs/gethashcode-is-not-defined`.
 2025-05-16 12:37:41 +02:00
Napalys Klicius
f6a8909bfe Merge pull request #19356 from Napalys/js/merge_classes 
JS: Merge `ES6Class` to `FunctionStyleClass`
 2025-05-16 10:31:33 +02:00
Tom Hvitved
40624b21f8 Merge pull request #19503 from hvitved/rust/fix-semantic-merge-conflict 
Rust: Fix semantic merge conflict
 2025-05-16 09:17:53 +02:00
Tom Hvitved
8521becbd5 Rust: Fix semantic merge conflict 2025-05-15 20:53:35 +02:00
Mathias Vorreiter Pedersen
d31ddad832 C++: Small refactoring. 2025-05-15 18:04:57 +01:00
Mathias Vorreiter Pedersen
f731d0e630 C++: Add change note. 2025-05-15 17:39:51 +01:00
Mathias Vorreiter Pedersen
c3c6bb6e60 C++: Accept test changes. 2025-05-15 17:23:35 +01:00
Mathias Vorreiter Pedersen
783560cff6 C++: Add a subclass of PostUpdateNodes and ensure that 'node.asExpr() instanceof ClassAggregateLiteral' holds for this new node subclass. 2025-05-15 17:23:32 +01:00
Mathias Vorreiter Pedersen
0f21075722 C++: Add a test that demonstrate missing asExpr for aggregate literals. 2025-05-15 17:18:55 +01:00
Nora Dimitrijević
8a1987ab71 Merge pull request #19448 from d10c/d10c/ruby-printast-order-fix 
Ruby printAst: fix order for synth children of real parents
 2025-05-15 18:17:01 +02:00
Taus
2158eaa34c Python: Fix a bug in glob regex creation 
The previous version was tested on a version of the code where we had
temporarily removed the `glob.strip("/")` bit, and so the bug didn't
trigger then.

We now correctly remember if the glob ends in `/`, and add an extra part
in that case. This way, if the path ends with multiple slashes, they
effectively get consolidated into a single one, which results in the
correct semantics.
 2025-05-15 15:34:11 +00:00
Aditya Sharad
f814849154 Merge pull request #19427 from felickz/unpinned-actions-tags-docs 
Adding comprehensive docs for customizing `actions/unpinned-tag` query
 2025-05-15 20:29:58 +05:30
Taus
c8cca126a1 Python: Bump extractor version 2025-05-15 14:59:33 +00:00
Taus
72ae633a64 Python: Update change note and extractor config 
Removes the previously added extractor option and updates the change
note to explain how to use `paths-ignore` to exclude files in hidden
directories.
 2025-05-15 14:58:32 +00:00
Taus
96558b53b8 Python: Update test 
The second test case now sets the `paths-ignore` setting in the config
file in order to skip files in hidden directories.
 2025-05-15 14:53:15 +00:00
Taus
98388be25c Python: Remove special casing of hidden files 
If it is necessary to exclude hidden files, then adding
```
paths-ignore: ['**/.*/**']
```
to the relevant config file is recommended instead.
 2025-05-15 14:49:17 +00:00
Taus
61719cf448 Python: Fix a bug in glob conversion 
If you have a filter like `**/foo/**` set in the `paths-ignore` bit of
your config file, then currently the following happens:

- First, the CodeQL CLI observes that this string ends in `/**` and
  strips off the `**` leaving `**/foo/`
- Then the Python extractor strips off leading and trailing `/`
  characters and proceeds to convert `**/foo` into a regex that is
  matched against files to (potentially) extract.

The trouble with this is that it leaves us unable to distinguish
between, say, a file `foo.py` and a file `foo/bar.py`. In other words,
we have lost the ability to exclude only the _folder_ `foo` and not any
files that happen to start with `foo`.

To fix this, we instead make a note of whether the glob ends in a
forward slash or not, and adjust the regex correspondingly.
 2025-05-15 14:48:06 +00:00
Mathias Vorreiter Pedersen
e75dcd27f5 C++: Accept test changes. 2025-05-15 15:28:13 +01:00
Mathias Vorreiter Pedersen
69a1a87aa4 C++: Update semantics of picking the static call target in dataflow. 2025-05-15 15:25:29 +01:00
Mathias Vorreiter Pedersen
c6df9505c0 C++: Add tests to exercise the upcoming behavior of function dispatch when there are model-generated summaries AND source definitions. 2025-05-15 15:05:17 +01:00
Tom Hvitved
60cc63f4d4 Merge pull request #19474 from hvitved/rust/builtins-resolution 
Rust: Type inference and path resolution for builtins
 2025-05-15 15:22:32 +02:00
Mathias Vorreiter Pedersen
e80c3b5c0b C++: Exclude tests (by matching paths) in model generation. 2025-05-15 13:24:32 +01:00
Michael Nebel
4d7901573a C#: Add change note. 2025-05-15 14:07:50 +02:00
Michael Nebel
3080dfafb6 C#: Update test expected output. 2025-05-15 14:04:40 +02:00
Michael Nebel
72d3814e08 C#: Include dictionary indexers and more methods in cs/gethashcode-is-not-defined. 2025-05-15 14:03:22 +02:00
Michael Nebel
4b2d323cb6 C#: Add some more test cases. 2025-05-15 13:48:51 +02:00
Michael Nebel
2c5d85e186 C#: Convert cs/gethashcode-is-not-defined to inline expectations tests. 2025-05-15 13:35:08 +02:00
Jeroen Ketema
51229a6b48 Merge pull request #19493 from jketema/delete-expr 
C++: Fix IR edge case where there are no function calls taking an argument
 2025-05-15 13:31:48 +02:00
Chris Smowton
084222ec58 Inline version-specific override code where there is now only one version 2025-05-15 12:13:14 +01:00
Chris Smowton
79171a9232 Fold v_1_5_0 and v_1_5_20 files forwards into v_1_6_0, dropping any that are overridden 2025-05-15 11:39:26 +01:00
Tom Hvitved
9d37597461 Address review comments 2025-05-14 20:50:40 +02:00
Neil Mendum
1a1c9b4ea4 actions: add some missing permissions 2025-05-14 17:28:54 +01:00
Nora Dimitrijević
96bdfbf76b Fix inefficient pattern: if-exists -> exists-or-not-exists 2025-05-14 15:36:45 +02:00