Ahmed Farid
|
054e0726b0
|
Update UnsafeComparisonOfHeaderValue.py
|
2022-08-15 15:13:17 +01:00 |
|
Ahmed Farid
|
c578a34892
|
Update SafeComparisonOfHeaderValue.py
|
2022-08-15 15:12:38 +01:00 |
|
Ahmed Farid
|
773bb5fffd
|
Update SafeComparisonOfHeaderValue.py
|
2022-08-15 14:43:32 +01:00 |
|
Ahmed Farid
|
a724bd1e32
|
Update UnSafeComparisonOfSensitiveInfo.py
|
2022-08-15 14:42:17 +01:00 |
|
Erik Krogh Kristensen
|
0adb588fe8
|
Merge pull request #9712 from erik-krogh/badRange
JS/RB/PY/Java: add suspicious range query
|
2022-08-15 13:55:44 +02:00 |
|
Ahmed Farid
|
18b103dbd5
|
Update TimingAttackAgainstHash.py
|
2022-08-15 11:29:29 +01:00 |
|
Ahmed Farid
|
7d23b80582
|
Update TimingAttackAgainstHash.py
|
2022-08-15 11:29:09 +01:00 |
|
Ahmed Farid
|
521dbd0e82
|
Update TimingAttackAgainstSensitiveInfo.py
|
2022-08-15 11:28:51 +01:00 |
|
Ahmed Farid
|
5de103303d
|
Update TimingAttackAgainstHeader.py
|
2022-08-15 11:26:34 +01:00 |
|
Ahmed Farid
|
7cb1683f5b
|
Update TimingAttackAgainstSensitiveInfo.py
|
2022-08-15 11:21:40 +01:00 |
|
Ahmed Farid
|
0e0c6e08b5
|
Update TimingAttack.qll
|
2022-08-15 11:18:31 +01:00 |
|
Anders Schack-Mulligen
|
a3fb54c9de
|
Merge pull request #10007 from aschackmull/dataflow/source-node-identity
Dataflow: Fix identification of source PathNodes in the presence of source-to-source flow
|
2022-08-15 10:39:17 +02:00 |
|
erik-krogh
|
3a4a3437b5
|
fix some QL-for-QL warnings
|
2022-08-12 20:38:50 +02:00 |
|
erik-krogh
|
b54f037424
|
Merge branch 'main' into refacReDoS
|
2022-08-12 20:28:30 +02:00 |
|
erik-krogh
|
b9e96fb078
|
sync changes to other languages
|
2022-08-12 20:28:12 +02:00 |
|
Ahmed Farid
|
01490414e8
|
Update TimingAttackAgainstHeader.py
|
2022-08-12 12:25:31 +01:00 |
|
github-actions[bot]
|
21d0c78376
|
Post-release preparation for codeql-cli-2.10.3
|
2022-08-11 23:20:39 +00:00 |
|
github-actions[bot]
|
57c4f9145b
|
Release preparation for version 2.10.3
|
2022-08-11 11:12:15 +00:00 |
|
Erik Krogh Kristensen
|
73df8e4c7d
|
Merge pull request #9832 from erik-krogh/misspellings
Fix lots of misspellings
|
2022-08-11 12:43:26 +02:00 |
|
Rasmus Wriedt Larsen
|
ff23f8ef86
|
Merge pull request #9855 from tausbn/python-fix-bad-scope_entry_transfer-join
Python: Fix bad join in scope entry transfer
|
2022-08-11 11:55:51 +02:00 |
|
Erik Krogh Kristensen
|
887f6557ed
|
fix common misspellings throughout github/codeql
|
2022-08-10 23:21:41 +02:00 |
|
Anders Schack-Mulligen
|
abad133ab5
|
Dataflow: Fix identification of source PathNodes in the presence of source-to-source flow.
|
2022-08-10 15:02:56 +02:00 |
|
yoff
|
b8931d36ca
|
python: give InterpretNode empty charpred
InterpreNode is going away, but we need a dummy implementation.
However, we do not need any instances, and some tests get confused.
|
2022-08-10 10:57:30 +00:00 |
|
Rasmus Wriedt Larsen
|
40d25cb34c
|
Merge pull request #9849 from tausbn/python-fix-bad-essa-getInput-join
Python: Fix bad join in ESSA `getInput`
|
2022-08-10 11:45:23 +02:00 |
|
yoff
|
75ac24a847
|
Merge branch 'main' into python-dataflow/flow-summaries-from-scratch
|
2022-08-10 10:57:59 +02:00 |
|
Rasmus Wriedt Larsen
|
b541103b7f
|
Merge pull request #9846 from tausbn/python-fix-bad-syntactic_call_count-join
Python: Fix bad join in `syntactic_call_count`
|
2022-08-10 10:09:51 +02:00 |
|
Erik Krogh Kristensen
|
559ec7ba56
|
Merge branch 'main' into repeatedWord
|
2022-08-09 21:22:47 +02:00 |
|
Erik Krogh Kristensen
|
49276b1f38
|
Merge branch 'main' into refacReDoS
|
2022-08-09 16:18:46 +02:00 |
|
Erik Krogh Kristensen
|
0abbd50ca1
|
apply changes based on docs review
|
2022-08-09 13:51:40 +02:00 |
|
Rasmus Wriedt Larsen
|
f89b32183f
|
Merge branch 'main' into typetracker-decorators
|
2022-08-08 11:52:09 +02:00 |
|
Ahmed Farid
|
21f9ee449a
|
Delete UnSafeComparison.py
|
2022-08-05 12:49:00 +01:00 |
|
Ahmed Farid
|
d9e85a9064
|
Delete SafeComparison.py
|
2022-08-05 12:48:51 +01:00 |
|
Ahmed Farid
|
c7828bf9b4
|
Create UnSafeComparisonOfSensitiveInfo.py
|
2022-08-05 12:47:58 +01:00 |
|
Ahmed Farid
|
dd61383469
|
Create SafeComparisonOfSensitiveInfo.py
|
2022-08-05 12:46:46 +01:00 |
|
Anders Schack-Mulligen
|
3d47875b60
|
Dataflow: Generate shorter RA/DIL names.
|
2022-08-05 11:00:56 +02:00 |
|
Anders Schack-Mulligen
|
d3dcc3ce3a
|
Dataflow: Sync.
|
2022-08-05 11:00:56 +02:00 |
|
Ahmed Farid
|
5eef14a0a9
|
Update SafeComparisonOfHeaderValue.py
|
2022-08-04 12:51:30 +01:00 |
|
Ahmed Farid
|
a6af455eae
|
Create UnsafeComparisonOfHeaderValue.py
|
2022-08-04 12:50:55 +01:00 |
|
Ahmed Farid
|
a98a77ad40
|
Create SafeComparisonOfHeaderValue.py
|
2022-08-04 12:48:19 +01:00 |
|
Ahmed Farid
|
e1435afea9
|
Rename python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstHeaderValue.qhelp to python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstHeaderValue/TimingAttackAgainstHeaderValue.qhelp
|
2022-08-04 12:45:01 +01:00 |
|
Ahmed Farid
|
76c8e7d2e8
|
Rename python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstHeaderValue.ql to python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstHeaderValue/TimingAttackAgainstHeaderValue.ql
|
2022-08-04 12:44:45 +01:00 |
|
Ahmed Farid
|
428132a58e
|
Rename python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstSensitiveInfo.ql to python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstSensitiveInfo/TimingAttackAgainstSensitiveInfo.ql
|
2022-08-04 12:44:10 +01:00 |
|
Ahmed Farid
|
a34478d58f
|
Rename python/ql/src/experimental/Security/CWE-208/PossibleTimingAttackAgainstSensitiveInfo.ql to python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstSensitiveInfo/PossibleTimingAttackAgainstSensitiveInfo.ql
|
2022-08-04 12:43:53 +01:00 |
|
Ahmed Farid
|
59f05b4d62
|
Rename python/ql/src/experimental/Security/CWE-208/PossibleTimingAttackAgainstSensitiveInfo.qhelp to python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstSensitiveInfo/PossibleTimingAttackAgainstSensitiveInfo.qhelp
|
2022-08-04 12:43:35 +01:00 |
|
Ahmed Farid
|
fe51a917ec
|
Rename python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstSensitiveInfo.qhelp to python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstSensitiveInfo/TimingAttackAgainstSensitiveInfo.qhelp
|
2022-08-04 12:43:21 +01:00 |
|
Ahmed Farid
|
ae4ded08fa
|
Update and rename TimingAttackAgainstHeader.qlref to TimingAttackAgainstHeaderValue.qlref
|
2022-08-04 12:42:52 +01:00 |
|
Ahmed Farid
|
a747bacbe5
|
Rename python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstHash.ql to python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstHash/TimingAttackAgainstHash.ql
|
2022-08-04 12:42:08 +01:00 |
|
Ahmed Farid
|
cf36a30909
|
Rename python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstHash.qhelp to python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstHash/TimingAttackAgainstHash.qhelp
|
2022-08-04 12:41:51 +01:00 |
|
Ahmed Farid
|
4b0c42951f
|
Rename python/ql/src/experimental/Security/CWE-208/UnSafeComparisonOfHash.py to python/ql/src/experimental/Security/CWE-208/TimingAttackAgainstHash/UnSafeComparisonOfHash.py
|
2022-08-04 12:41:27 +01:00 |
|
Ahmed Farid
|
cf47104f62
|
Update TimingAttackAgainstHeaderValue.ql
|
2022-08-04 12:39:31 +01:00 |
|