codeql

mirror of https://github.com/github/codeql.git synced 2025-12-21 19:26:31 +01:00

Author	SHA1	Message	Date
Erik Krogh Kristensen	4df2e5d937	Merge pull request #10096 from erik-krogh/acronyms-part1 make acronyms camelcase	2022-08-24 09:33:53 +02:00
erik-krogh	27fcc90a97	Merge branch 'main' into msgConsis	2022-08-24 09:21:43 +02:00
erik-krogh	a50234adb0	apply suggestion from review	2022-08-23 15:41:37 +02:00
erik-krogh	5e3cb08ed2	rename stateInPumpableRegexp to stateInRelevantRegexp	2022-08-23 12:40:45 +02:00
erik-krogh	1a7d3ee831	update expected output after changing queries	2022-08-23 12:35:32 +02:00
erik-krogh	afadcd9b45	use a more detailed alert message in bitwise-sign-check	2022-08-23 11:18:45 +02:00
erik-krogh	82d9180892	only have one deprecated alias for XmlDtd	2022-08-23 10:38:23 +02:00
erik-krogh	a57981ea69	apply suggestions from review	2022-08-23 10:18:14 +02:00
erik-krogh	45e78a355f	ensure call-apply.js is seen as a module	2022-08-23 10:11:46 +02:00
erik-krogh	b5f9012033	fix deprecation warnings in ATM tests	2022-08-23 08:08:39 +02:00
erik-krogh	f7846a598e	add change-notes	2022-08-23 07:54:01 +02:00
erik-krogh	78ba7650b3	change the change-notes	2022-08-23 07:28:46 +02:00
erik-krogh	7e0bd5bde4	update expected output of tests	2022-08-22 21:41:47 +02:00
erik-krogh	60908de089	update js/nested-loops-with-same-variable to match cpp	2022-08-22 21:41:46 +02:00
erik-krogh	20625ae60d	update {js/go/py}/xpath-injection to match csharp/java	2022-08-22 21:41:46 +02:00
erik-krogh	b5458b2125	update js/insecure-randomness to match csharp	2022-08-22 21:41:46 +02:00
erik-krogh	9cdd8cc8f5	update js/tainted-format-string to match ruby/java	2022-08-22 21:41:46 +02:00
erik-krogh	9395f156de	update {js/py}/command-line-injection to match csharp/java	2022-08-22 21:41:46 +02:00
erik-krogh	3553f3d9b8	update {rb/py/js/go}/path-injection to match java/csharp	2022-08-22 21:41:45 +02:00
erik-krogh	39c1832995	update {cpp/js}/bitwise-sign-check to match java	2022-08-22 21:41:45 +02:00
erik-krogh	b471a401cc	update {rb/js/java}/unused-parameter to match python	2022-08-22 21:41:45 +02:00
erik-krogh	594fbc678e	update js/zip-slip to match java/go/csharp	2022-08-22 21:41:45 +02:00
erik-krogh	28083ebe09	run the implicit-this patch	2022-08-22 21:23:31 +02:00
erik-krogh	a593a52b5e	add missing qldoc (that was already missing?)	2022-08-22 21:22:39 +02:00
erik-krogh	e89e0eb7fb	make some acronyms camelCase	2022-08-22 21:22:35 +02:00
erik-krogh	9c95dcc126	add change-note	2022-08-22 14:09:19 +02:00
erik-krogh	2ac5441aec	rename the XMLDTD class to XmlDTD	2022-08-22 14:09:19 +02:00
erik-krogh	1a89ddae5d	update some comments from XML to Xml	2022-08-22 14:09:19 +02:00
erik-krogh	ce9f69a639	rename all occurrences of XML to Xml	2022-08-22 14:08:31 +02:00
Rasmus Wriedt Larsen	61bf2154cd	Merge branch 'main' into shared-http-client-request	2022-08-22 12:05:37 +02:00
erik-krogh	2fd09d34de	improve performance of global dataflow by inlining a step predicate	2022-08-22 08:35:19 +02:00
erik-krogh	2f11f3760e	simplify getALibraryInputParameter by adding more general dataflow for the arguments object	2022-08-22 08:32:43 +02:00
Erik Krogh Kristensen	11b039c1f1	add tests	2022-08-22 08:29:28 +02:00
Erik Krogh Kristensen	31c09ba678	implement flow for `.apply()` by adding a `ReflectiveParametersNode` data-flow node	2022-08-22 08:29:28 +02:00
Erik Krogh Kristensen	d86b7f6c54	recognize an access to the `arguments` object as library-input	2022-08-22 08:29:24 +02:00
Erik Krogh Kristensen	7b1ef7473e	change `ArrayCreationStep` to a `PreCallGraphStep` and unrestrict the storeStep	2022-08-22 08:15:54 +02:00
erik-krogh	049af68bc2	restrict suffix-construction to relevant regexps	2022-08-21 20:35:39 +02:00
erik-krogh	0aebc90b61	don't lowercase the endpointExample, and correctly handle root states	2022-08-21 18:38:47 +02:00
erik-krogh	bcf4c57060	Merge branch 'main' into redosPrefix	2022-08-19 19:22:49 +02:00
erik-krogh	d052b1e3c9	also support regular expressions without repetitions	2022-08-19 19:21:44 +02:00
Tom Hvitved	663096fe3a	Remove redundant overrides	2022-08-19 13:57:41 +02:00
erik-krogh	26fcf6b25b	apply suggestions from review	2022-08-18 15:00:57 +02:00
Rasmus Wriedt Larsen	e6b4d12f94	Sync `ConceptsShared`	2022-08-18 13:42:52 +02:00
Asger F	349331d6ca	Merge pull request #10082 from asgerf/js/exports-handling2 JS: Handle nested conditions in "exports" section	2022-08-18 11:10:59 +02:00
erik-krogh	de3e1c39e4	use the shared regular expression libraries in `js/case-sensitive-middleware-path`	2022-08-18 10:07:55 +02:00
erik-krogh	473bc92e2d	move the `PrefixConstruction` module out of the `ReDoSPruning` module	2022-08-18 10:07:48 +02:00
Harry Maclean	70ec70940a	Merge pull request #8142 from github/hmac/incomplete-multi-char-sanitization	2022-08-18 10:02:39 +12:00
Erik Krogh Kristensen	e93ff8672c	Merge pull request #10075 from erik-krogh/depOld delete old deprecations	2022-08-17 21:21:57 +02:00
erik-krogh	6b9f01535b	change All to Most in the change-notes	2022-08-17 15:34:57 +02:00
Mathias Vorreiter Pedersen	1eb0f6a12e	Merge pull request #10081 from erik-krogh/desugar add desugered to the typo database	2022-08-17 13:56:59 +01:00

... 55 56 57 58 59 ...

10661 Commits