codeql

mirror of https://github.com/github/codeql.git synced 2025-12-18 01:33:15 +01:00

Author	SHA1	Message	Date
Geoffrey White	891f05c5ae	C++: Add a test for simple sinks involving ZMQ networking library.	2024-03-28 21:50:07 +00:00
Mathias Vorreiter Pedersen	4a55b6fbdf	C++: Make 'cpp/uninitialized-local' a path-problem query.	2024-03-18 15:02:33 +00:00
Mathias Vorreiter Pedersen	2fc0922b29	Merge branch 'main' into bring-back-type-barriers-in-non-constant-format	2024-03-13 22:46:35 +00:00
Mathias Vorreiter Pedersen	3ea39a2553	C++: Add some query tests.	2024-03-13 11:39:34 +00:00
Mathias Vorreiter Pedersen	f97b6e2848	C++: Stop conflating pointers and indirections in the query.	2024-03-11 18:48:19 +00:00
Mathias Vorreiter Pedersen	7b0df57d7a	C++: Remove the two configurations that depend on flow state to speed up performance on ChakraCore.	2024-03-11 13:56:22 +00:00
Mathias Vorreiter Pedersen	01fc7432cb	C++: Add more tests.	2024-03-06 22:17:33 -08:00
Mathias Vorreiter Pedersen	bf84f3a936	C++: Add FN.	2024-03-06 21:19:17 -08:00
Mathias Vorreiter Pedersen	fc9919a5b6	C++: Add a test that exercise the 'last field' check.	2024-03-06 21:17:55 -08:00
Mathias Vorreiter Pedersen	c2db5f490e	C++: Add more FNs and FPs to show examples of where the 'successor typing' strategy fails.	2024-03-06 21:16:51 -08:00
Mathias Vorreiter Pedersen	cf4c8eb517	C++: Add more tests.	2024-03-06 21:15:25 -08:00
Mathias Vorreiter Pedersen	8ae6fa5366	C++: Add a new query 'cpp/type-confusion' for detecting type confusion vulnerabilities.	2024-03-06 21:11:32 -08:00
Mathias Vorreiter Pedersen	4e913592fa	Merge branch 'main' into cpp-non-constant-format-as-path-query	2024-03-01 09:26:00 +00:00
Mathias Vorreiter Pedersen	2eb8d13439	C++: Accept test changes.	2024-03-01 09:25:25 +00:00
Mathias Vorreiter Pedersen	0bf29f0a62	Merge branch 'main' into model-experiments	2024-02-22 15:05:53 +00:00
Mathias Vorreiter Pedersen	b927968e88	Merge pull request #15516 from microsoft/51-2cppnon-constant-format-alter-not-const-source C++: Change sources in `NonConstantFormat.ql`	2024-02-17 00:01:58 +01:00
Mathias Vorreiter Pedersen	7c22146f46	C++: Accept query test changes.	2024-02-16 16:33:44 +01:00
Mathias Vorreiter Pedersen	be54a41593	C++: Accept query test changes.	2024-02-16 15:01:50 +01:00
Anders Schack-Mulligen	7eb5e1833d	C++: Add empty provenance column to expected files.	2024-02-09 11:32:08 +01:00
Mathias Vorreiter Pedersen	6f5ed9ad3b	C++: Accept test changes.	2024-02-01 20:15:15 +00:00
Mathias Vorreiter Pedersen	4b5a203b46	Merge pull request #15463 from microsoft/42-false-positive-cpp-uninitializedlocal False positive fix for cpp/uninitialized-local	2024-01-31 09:31:31 +00:00
Benjamin Rodes	13cf555cee	False positive fix for cpp/uninitialized-local	2024-01-29 13:21:05 -05:00
Benjamin Rodes	b7648bcf27	Adding test cases.	2024-01-26 15:19:07 -05:00
Mathias Vorreiter Pedersen	44124158c4	Merge pull request #15078 from alexet/unique-pointer-temporary CPP: Add query for detecting invalid uses of temporary unique pointers.	2023-12-20 11:16:01 +01:00
Alex Eyers-Taylor	49e1467581	CPP: Fix handling of ternary operators in tempory queries and add tests.	2023-12-15 11:03:23 +00:00
Jeroen Ketema	2065ecff66	C++: Only consider the maximum buffer size for badly bounded write	2023-12-15 10:46:13 +01:00
Mathias Vorreiter Pedersen	0c100eb122	C++: Accept test changes.	2023-12-14 14:44:58 +00:00
Alex Eyers-Taylor	e9bc5a54ea	CPP: Add query for detecting invalid uses of temporary unique pointers.	2023-12-12 16:22:20 +00:00
Mathias Vorreiter Pedersen	90b06c2046	C++: Switch the source of use-after-free and double-free to be post-update nodes.	2023-12-08 14:41:29 +00:00
Mathias Vorreiter Pedersen	e648058d30	C++: Accept test changes.	2023-12-07 23:11:28 +00:00
Mathias Vorreiter Pedersen	8ce4bbec33	Merge pull request #14867 from MathiasVP/reduce-duplication-from-operators C++: Reduce duplication from crement operations	2023-12-05 11:57:48 +00:00
Jeroen Ketema	7f1bd499ce	C++: Add test annotation	2023-12-04 17:53:08 +01:00
Jeroen Ketema	3e2397a3d1	C++: Fix `chmod` prototype in toctou test and additional test	2023-12-04 16:15:44 +01:00
Mathias Vorreiter Pedersen	359b15bb60	C++: Fix FP by special-casing compound assignments in 'asExprInternal'.	2023-12-04 11:29:51 +00:00
Mathias Vorreiter Pedersen	ce28c9b485	C++: Add more CWE-119 testcases with compound assignments instead of increments.	2023-12-04 11:22:16 +00:00
Mathias Vorreiter Pedersen	c1561e8675	Merge branch 'main' into reduce-duplication-from-operators	2023-11-30 14:30:50 +00:00
Mathias Vorreiter Pedersen	2b36ba33f0	C++: Add support for 'data' in the query.	2023-11-28 12:57:59 +00:00
Mathias Vorreiter Pedersen	7b8d164692	C++: Add more good test cases.	2023-11-28 11:58:33 +00:00
Mathias Vorreiter Pedersen	62c432f3c7	C++: Tabs -> Spaces.	2023-11-28 11:52:17 +00:00
Mathias Vorreiter Pedersen	e10caa68f6	C++: Add tests.	2023-11-28 09:06:24 +00:00
Mathias Vorreiter Pedersen	e94cde9b4b	C++: Move the use-after-free tests to subdirectory.	2023-11-28 09:06:24 +00:00
Mathias Vorreiter Pedersen	204acbacc5	C++: Add a new query for detecting calls to 'c_str' on temporary objects.	2023-11-28 09:06:24 +00:00
Jeroen Ketema	ee35bfb290	C++: Do not use `isReturnValue` in `getenv`, `gets`, and `fgets` models	2023-11-24 16:38:15 +01:00
Mathias Vorreiter Pedersen	e438671846	Merge pull request #14896 from MathiasVP/no-dtt-in-user-controlled-bypass C++: Rewrite `cpp/user-controlled-bypass` away from `DefaultTaintTracking`	2023-11-24 14:43:10 +00:00
Mathias Vorreiter Pedersen	2681617f28	C++: Undo the workaround in 'cpp/tainted-permissions-check'.	2023-11-24 10:56:11 +00:00
Mathias Vorreiter Pedersen	5604fd7d80	C++: Rewrite 'cpp/user-controlled-bypass' away from 'DefaultTaintTracking'.	2023-11-23 17:35:54 +00:00
Jeroen Ketema	7834626e26	C++: Rewrite `cpp/tainted-permissions-check` to not use `DefaultTaintTracking`	2023-11-23 14:52:53 +01:00
Jeroen Ketema	1fbe23228e	C++: Update test to reflect updated test results	2023-11-22 16:49:13 +01:00
Jeroen Ketema	bb1945f899	C++: Rewrite `cpp/tainted-format-string` away from `DefaultTaintTracking`	2023-11-22 16:49:13 +01:00
Mathias Vorreiter Pedersen	a80dbc5200	C++: Accept test changes.	2023-11-21 17:50:11 +00:00

1 2 3 4 5 ...

906 Commits