codeql

mirror of https://github.com/github/codeql.git synced 2025-12-19 18:33:16 +01:00

Author	SHA1	Message	Date
Paul1nh0	dd4e82126c	remove to another directory	2022-03-22 19:06:53 +08:00
Paul1nh0	2dad2c477b	query description added	2022-03-22 19:06:03 +08:00
Mathias Vorreiter Pedersen	5cbd86519b	C++: Add internal extraction errors query and modify the 'code-scanning-selectors' to exclude internal queries.	2022-03-22 10:52:02 +00:00
Jeroen Ketema	2d9b630fa8	C++: Fix `ExecTainted.ql` formatting	2022-03-21 23:28:58 +01:00
Jeroen Ketema	b79eb6d10d	C++: Encode string value of data flow nodes in `ExecState`	2022-03-21 21:29:42 +01:00
github-actions[bot]	a3e74efc21	Post-release preparation for codeql-cli-2.8.4	2022-03-21 19:36:47 +00:00
github-actions[bot]	dedc8c2254	Release preparation for version 2.8.4	2022-03-21 13:25:49 +00:00
Jeroen Ketema	e05227d3fe	C++: Add change note for the `cpp/command-line-injection` changes	2022-03-21 11:30:39 +01:00
ihsinme	151c93f502	Update DangerousUseOfExceptionBlocks.cpp	2022-03-21 09:52:14 +03:00
Jeroen Ketema	f8198c3123	C++: Use flow states in `cpp/command-line-injection`	2022-03-18 20:06:45 +01:00
4B5F5F4B	d4c7314484	Delete cve-2016-6480.ql commit by mistake	2022-03-17 09:49:28 +08:00
Geoffrey White	95a63a69a5	Merge branch 'main' into cwe497b	2022-03-16 11:09:46 +00:00
Paul1nh0	85b22647ac	Add query for double-fetch vulnerability	2022-03-16 18:16:49 +08:00
4B5F5F4B	2a29c201ff	Merge branch 'github:main' into main	2022-03-16 18:06:16 +08:00
4B5F5F4B	baf1c8d76b	Create cve-2016-6480.ql	2022-03-16 17:49:05 +08:00
ihsinme	2959150198	Update DangerousUseOfExceptionBlocks.ql	2022-03-16 09:30:38 +03:00
Mathias Vorreiter Pedersen	57922f56ee	Merge pull request #8424 from ihsinme/ihsinme-patch-fix077 Detection reduction on request	2022-03-15 16:17:47 +00:00
Geoffrey White	46f3f28a11	C++: Fix broken merge.	2022-03-15 14:53:25 +00:00
Geoffrey White	71e0da738d	Merge branch 'main' into cwe497b	2022-03-15 13:29:32 +00:00
Mathias Vorreiter Pedersen	9f014be7c7	Merge pull request #8447 from MathiasVP/add-missing-security-severity C++: Add missing `security-severity` tags	2022-03-15 11:29:28 +00:00
Geoffrey White	28315df405	Merge branch 'main' into cwe497b	2022-03-15 11:23:00 +00:00
Mathias Vorreiter Pedersen	7337ebd569	C++: Add missing 'security-severity' tags.	2022-03-15 10:54:36 +00:00
Mathias Vorreiter Pedersen	7e0e7d5004	Merge branch 'main' into use-taint-configuration-in-three-more-queries	2022-03-15 09:06:55 +00:00
ihsinme	62ecf54aaa	Update DangerousUseOfExceptionBlocks.cpp	2022-03-15 08:53:38 +03:00
ihsinme	e99eaeb256	Apply suggestions from code review Co-authored-by: Geoffrey White <40627776+geoffw0@users.noreply.github.com>	2022-03-15 08:53:00 +03:00
Arthur Baars	6a74e761c8	Merge pull request #8398 from github/post-release-prep/codeql-cli-2.8.3 Post-release preparation for codeql-cli-2.8.3	2022-03-14 21:05:09 +01:00
Geoffrey White	73710e9edb	C++: Fix QLDoc.	2022-03-14 19:11:43 +00:00
Geoffrey White	7c93eb1eaf	C++: Fix large newtype.	2022-03-14 19:06:41 +00:00
Geoffrey White	d1b04b4e07	C++: Use asDefiningArgument() where appropriate.	2022-03-14 17:53:47 +00:00
Mathias Vorreiter Pedersen	7593ebaa62	C++: Use 'getAstVariable' now that 'getASTVariable' is deprecated.	2022-03-14 13:38:27 +00:00
Mathias Vorreiter Pedersen	50b77761f1	C++: Port the 'predictable' barrier from 'DefaultTaintTracking' to 'cpp/unclear-array-index-validation' to prevent an explosion of new results.	2022-03-14 13:14:07 +00:00
Mathias Vorreiter Pedersen	7c411b4bad	C++: Respond to review comments	2022-03-14 11:57:28 +00:00
Mathias Vorreiter Pedersen	0da5d91955	Merge branch 'main' into use-taint-configuration-in-three-more-queries	2022-03-14 11:12:23 +00:00
Mathias Vorreiter Pedersen	31b1e4079f	C++: Prevent join-on-enclosing-callable in 'cpp/return-stack-allocated-memory'.	2022-03-14 11:01:07 +00:00
Erik Krogh Kristensen	bbb2847ec1	Merge pull request #8323 from erik-krogh/acronyms Enforcing consistent casing of acronyms	2022-03-14 11:38:25 +01:00
ihsinme	1db759cc4d	Update InsecureTemporaryFile.ql	2022-03-14 09:33:08 +03:00
4B5F5F4B	597603a3a6	Create cve-2017-5123.ql Add query to detect CVE-2017-5123	2022-03-14 09:44:30 +08:00
4B5F5F4B	4030561eb7	Delete CVE	2022-03-14 09:43:04 +08:00
4B5F5F4B	880c12bd34	Create CVE	2022-03-14 09:42:40 +08:00
Jeroen Ketema	a8b2805aeb	Merge pull request #8246 from ihsinme/ihsinme-patch-82 CPP: Add query for CWE-754: Improper Check for Unusual or Exceptional Conditions when using functions scanf	2022-03-11 12:54:49 +01:00
Erik Krogh Kristensen	69353bb014	patch upper-case acronyms to be PascalCase	2022-03-11 11:10:33 +01:00
Mathias Vorreiter Pedersen	272e096190	Merge branch 'main' into use-taint-configuration-in-three-more-queries	2022-03-11 09:24:03 +00:00
github-actions[bot]	3a5ebbb861	Post-release preparation for codeql-cli-2.8.3	2022-03-11 09:23:34 +00:00
Jeroen Ketema	007e33ad46	Fix C++ changelog heading and itemization	2022-03-10 23:11:07 +01:00
github-actions[bot]	6b194bc55f	Release preparation for version 2.8.3	2022-03-10 19:43:58 +00:00
Mathias Vorreiter Pedersen	bff10e8ea1	C++: Add change note.	2022-03-10 10:59:04 +00:00
Mathias Vorreiter Pedersen	0d3e47bcae	C++: Pick the offset expression as the sink in 'cpp/unclear-array-index-validation' (and not the array expression).	2022-03-10 10:57:51 +00:00
Mathias Vorreiter Pedersen	693eca2179	C++: Give 'cpp/unclear-array-index-validation' precision low.	2022-03-10 10:17:08 +00:00
Geoffrey White	9e3156dd1c	Merge branch 'main' into cwe497c	2022-03-10 09:05:58 +00:00
Mathias Vorreiter Pedersen	dfb20f7721	Merge pull request #8368 from MathiasVP/add-must-flow-lib C++: Factor must-flow predicates out of two queries	2022-03-09 17:07:23 +00:00

... 29 30 31 32 33 ...

6899 Commits