hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-23 20:26:32 +01:00
Code Issues Packages Projects Releases Wiki Activity
82,643 Commits 1,672 Branches 157 Tags
alexet/avoid-path-node-java
Commit Graph

82643 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Asger F
c8817d9667 JS: Parse with proper locations 2025-03-27 11:51:23 +01:00
Asger F
cc2bec0808 JS: Ensure correct value is used in parseNameExpression() 
The call to expect() below here updates 'token' and 'value' to that of the NEXT token (not the name).

The code happened to work because the 'value' field is only updated if a token with a relevant value is found. E.g. if a name token could be followed by another name, then we would have seen the wrong name here.
 2025-03-27 11:51:21 +01:00
Asger F
6868f66108 JS: Restrict size of hasNameParts 
Test updates look OK. Some intermediate results are omitted but the
qualified name of the final type names are still present.
 2025-03-27 11:51:20 +01:00
Asger F
b1554443d8 JS: Update TRAP output 2025-03-27 11:51:19 +01:00
Asger F
328bf753b4 JS: Benign test updates 2025-03-27 11:51:17 +01:00
Asger F
fa53ff9f3e JS: Update extractor version string 2025-03-27 11:51:16 +01:00
Asger F
3a6089740e JS: Separate JSDoc qualified names into individual identifiers 2025-03-27 11:51:14 +01:00
Asger F
c61454b5ca JS: Remove unused 'spec' field 2025-03-27 11:51:13 +01:00
Simon Friis Vindum
0d75054955 Rust: Implement toString on type aliases and add docs 2025-03-27 11:34:39 +01:00
Michael B. Gale
2aee47b257 Merge pull request #18850 from github/mbg/csharp/inject-proxy-urls 
C#: Automatically use configured private registry feeds
 2025-03-27 10:11:05 +00:00
Geoffrey White
8598d619f2 Rust: Add a test case involving a Drop method. 2025-03-27 09:39:25 +00:00
Arthur Baars
9dd7b20db7 Merge pull request #18960 from github/aibaars/rust-tainted-path 
Rust: TaintedPath query
 2025-03-27 10:37:36 +01:00
Tamas Vajk
d824d24c49 Improve code quality 2025-03-27 10:31:48 +01:00
Napalys Klicius
d771a91c9c Update javascript/ql/lib/change-notes/2025-03-26-async-fileRead.md 
Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
 2025-03-27 10:21:23 +01:00
Geoffrey White
d1a0237e87 Rust: Correct a few details in the test. 2025-03-27 09:20:25 +00:00
Michael Nebel
0a0ec180ec Merge pull request #19114 from michaelnebel/csharp/modelgenparammodifiers 
C#: Correct printing of returns via out/ref parameters in model generation.
 2025-03-27 10:03:27 +01:00
Tamás Vajk
3fbfc41814 Merge pull request #18974 from tamasvajk/tamasvajk/rename-ccr-suite-quality 
Rename the CCR query suite to code-quality
 2025-03-27 10:01:48 +01:00
Tamas Vajk
b5684fd5b2 Change ccr suite name to code-quality in python script 2025-03-27 08:36:53 +01:00
Tamas Vajk
34e8318797 Rename the CCR query suite to code-quality 2025-03-27 08:36:53 +01:00
Paolo Tranquilli
d4b2ec09b6 Merge branch 'main' into redsun82/rust-analyzer-update 2025-03-26 17:30:52 +01:00
Geoffrey White
c84e2cd7cb Rust: Reduce the workaround (fixes duplicate results). 2025-03-26 15:40:45 +00:00
Geoffrey White
0a04191a61 Rust: Effect of merging main (duplicate results). 2025-03-26 15:06:03 +00:00
Geoffrey White
56f330d545 Merge branch 'main' into deallocation 2025-03-26 14:58:32 +00:00
Marco Gario
288fcb6092 Update CWE-829 description for clarity 2025-03-26 15:53:20 +01:00
idrissrio
9d2e0c5f21 Merge branch 'main' into idrissrio/preprocessor-multiline 2025-03-26 15:08:34 +01:00
idrissrio
9af65001b3 C++: accept changes after C++ extractor preprocessor fix 2025-03-26 15:08:04 +01:00
Michael Nebel
8bda7ce6be C#: Update model generator expected test output. 2025-03-26 15:07:44 +01:00
Michael Nebel
8763d18c91 C#: Correct printing of out and ref notes in the model generator. 2025-03-26 15:06:26 +01:00
Michael Nebel
bcefdc8893 C#: Add model generator test cases with in/out parameters. 2025-03-26 15:06:13 +01:00
Tom Hvitved
023ffe22a0 C#: Make getPreUpdateNode Unique Again 2025-03-26 14:42:00 +01:00
Napalys
bf9a21fce2 Added change note 2025-03-26 14:27:13 +01:00
Napalys
200bf391ce Enhance NodeJSLib data flow handling through await. 2025-03-26 14:24:52 +01:00
Napalys
762ca2f8f5 Added test case with async readFile, currently not flagged. 2025-03-26 14:21:44 +01:00
Tamas Vajk
4e37e5add5 Add change note 2025-03-26 13:50:39 +01:00
Marco Gario
b1737858fa UntrustedCheckout: Try and differentiate between two versions of the rule 2025-03-26 12:49:48 +00:00
Arthur Baars
bf76505880 Rust: address comments 2025-03-26 13:28:44 +01:00
Marco Gario
29a23a3d20 Update UseOfKnownVulnerableAction.ql 
Name should not end in a `.`
 2025-03-26 13:28:34 +01:00
Nicolas Will
bec69ca106 Refactor consumer and generic source model 2025-03-26 13:27:32 +01:00
Nicolas Will
9cd0340d21 Remove rankdir=LR; from DOT output 2025-03-26 13:26:45 +01:00
Erik Krogh Kristensen
a0c3176dd6 Merge branch 'main' into lcartey/support-sap-json-formats 2025-03-26 12:15:54 +01:00
Owen Mansel-Chan
c8a1ad6b28 Merge pull request #19120 from github/workflow/coverage/update 
Update CSV framework coverage reports
 2025-03-26 10:58:19 +00:00
Napalys
a78e0e914f Added change note. 2025-03-26 11:45:25 +01:00
Tamas Vajk
68f96d39d2 Make working directory name the same on all OS 2025-03-26 11:42:59 +01:00
Napalys
ae645e49ba Added support for @hapi/hapi server. 2025-03-26 11:41:11 +01:00
Napalys
649b4e07e2 Added test cases for @hapi/hapi 2025-03-26 11:35:58 +01:00
Tom Hvitved
284df7fcf3 Rust: Also resolve crate paths in non-source files 2025-03-26 11:29:34 +01:00
Tamas Vajk
f6968af3ae Add expected XSS test results 2025-03-26 11:03:32 +01:00
Owen Mansel-Chan
73348f2fd9 Merge branch 'main' into workflow/coverage/update 2025-03-26 09:59:26 +00:00
Joe Farebrother
d23c3b8a74 Revert manual magic 
This appeared to cause timeouts on DCA.
 2025-03-26 09:23:49 +00:00
Óscar San José
df721f8d1a Merge pull request #19119 from github/oscarsj/deprecate-ubuntu-20 
Replace occurences of ubuntu-20 by ubuntu-22 in .github/workflows
 2025-03-26 09:42:20 +01:00