8276 Commits

Author	SHA1	Message	Date
Tom Hvitved	c93e4385f2	C#: Add a test for a comment with a mapped location	2024-10-28 14:20:24 +01:00
Michael Nebel	058fcc1a51	Merge pull request #17853 from michaelnebel/csharp/madtests ... C#: Re-factor test for CWE-611/UntrustedDataInsecureXml.ql to pretty print models.	2024-10-28 13:38:26 +01:00
Michael Nebel	82ff545424	C#: Re-factor test for CWE-611/UntrustedDataInsecureXml.ql to pretty print models in test case.	2024-10-28 10:36:32 +01:00
github-actions[bot]	0e5ba2b23e	Add changed framework coverage reports	2024-10-28 00:21:56 +00:00
Michael Nebel	c1b1c62616	C#: Address review comments.	2024-10-23 15:25:52 +02:00
Michael Nebel	146c88fabb	C#: Update test expected output where the results are not affected.	2024-10-23 13:08:21 +02:00
Michael Nebel	5495a211f2	C#: Update exception information exposure expected output.	2024-10-23 13:08:19 +02:00
Michael Nebel	cad9aa21d8	C#: Update flow summaries test expected output.	2024-10-23 13:08:18 +02:00
Michael Nebel	b7b6feed04	C#: Re-generate .NET 8 Runtime models.	2024-10-23 13:08:17 +02:00
Michael Nebel	9cd9ebfda9	C#: Add manual models for StringWriter.	2024-10-23 13:08:15 +02:00
Michael Nebel	87caf3d826	C#: Add change note.	2024-10-23 13:08:14 +02:00
Michael Nebel	d3a359b498	C#: Update .NET 8 models.	2024-10-23 13:08:13 +02:00
Michael Nebel	00ccd20452	C#: Delete all .NET 8 Runtime models.	2024-10-23 13:08:11 +02:00
Michael Nebel	20b5a7b6f0	C#: Update expected test output.	2024-10-23 13:08:10 +02:00
Michael Nebel	062a2ad97d	C#: Include exception property accesses in the exception information exposure query.	2024-10-23 13:08:08 +02:00
Michael Nebel	1217c55c36	C#: Add change note.	2024-10-21 12:08:03 +02:00
Michael Nebel	191658f637	C#: Update expected test output.	2024-10-21 12:04:31 +02:00
Michael Nebel	b2b1a3ea65	C#: Consider string.ReplaceLineEndings(string) as a sanitizer for log forging.	2024-10-21 12:03:59 +02:00
Michael Nebel	0b8e83dc87	C#: Add log forging false positive example using ReplaceLineEndings.	2024-10-21 11:55:09 +02:00
Anders Schack-Mulligen	c20f12fa6c	Add qldoc.	2024-10-16 14:35:23 +02:00
Anders Schack-Mulligen	7b43100af5	C#: Add support for speculative taint flow.	2024-10-16 14:35:19 +02:00
Anders Schack-Mulligen	c80627a3d3	Dataflow: add plumbing for adding provenance to state-steps.	2024-10-16 14:35:18 +02:00
github-actions[bot]	079ab77a38	Post-release preparation for codeql-cli-2.19.2	2024-10-15 12:16:59 +00:00
github-actions[bot]	255f55cf1a	Release preparation for version 2.19.2	2024-10-15 10:29:25 +00:00
Tom Hvitved	4df9cd88ef	Merge pull request #17658 from hvitved/shared/cfg-conditional-splitting ... Shared `ConditionalCompletionSplitting` implementation	2024-10-10 13:21:38 +02:00
Michael Nebel	5d4ceeebb5	Shared: Only generate df summary model in the mixed query in case no context sensitive model exist.	2024-10-09 13:04:32 +02:00
Tom Hvitved	5d925d36d3	C#: Adopt shared ConditionalCompletionSplitting implementation	2024-10-09 11:02:15 +02:00
Chad Bentz	2458d16426	Clarify threat model flow sources comment in LogForgingQuery.qll	2024-10-01 23:04:22 -04:00
Anders Schack-Mulligen	6081ba5902	Merge pull request #17604 from aschackmull/java/neutral-overrides ... Java/C#: Add overrides to the interpretation of neutral MaD models.	2024-10-01 14:55:54 +02:00
github-actions[bot]	e97878ed63	Post-release preparation for codeql-cli-2.19.1	2024-09-30 19:49:00 +00:00
github-actions[bot]	455c8c5953	Release preparation for version 2.19.1	2024-09-30 17:59:48 +00:00
Anders Schack-Mulligen	5c4b4d644a	C#: Accept test changes.	2024-09-30 16:27:50 +02:00
Anders Schack-Mulligen	a8f55d93cb	C#: Add overrides to the interpretation of neutral MaD models.	2024-09-30 15:23:27 +02:00
Tamas Vajk	29948e4c0b	C#: reduce extraction message severity for missing text files	2024-09-30 12:31:07 +02:00
Michael Nebel	6f74387600	Merge pull request #17521 from michaelnebel/modelgen/moreimprovements ... C#/Java: Content based model generation improvements.	2024-09-30 11:22:30 +02:00
Michael Nebel	0b39c5b982	C#/Java: Update model generator expected output.	2024-09-27 09:22:29 +02:00
Michael Nebel	80497f551e	Shared: Only make unlifted models in case the API itself is relevant.	2024-09-27 09:22:25 +02:00
Michael Nebel	3d1a403655	C#: Add example of content based summary on private method.	2024-09-27 09:22:20 +02:00
Michael Nebel	8310faa2e9	C#/Java: Add a query that uses both content based and non-content based model generation.	2024-09-27 09:22:11 +02:00
Tom Hvitved	7c473c38c0	Merge pull request #17585 from hvitved/shared/cfg-scope-no-first-consistency ... Shared: Add CFG consistency check for scopes with missing entry points	2024-09-26 14:05:08 +02:00
Rasmus Wriedt Larsen	381ea93ec3	Merge pull request #17424 from RasmusWL/active-threat-model-source ... Go/Java/C#: Rename `ThreatModelFlowSource` to `ActiveThreatModelSource`	2024-09-26 13:08:17 +02:00
Michael Nebel	a128383760	C#/Java: Add some dfc-generated test cases.	2024-09-26 13:01:01 +02:00
Michael Nebel	9a923d62ad	C#/Java: Updated expected test output.	2024-09-26 13:00:52 +02:00
Michael Nebel	0cd4ccb790	C#/Java: Update model generator expected test output.	2024-09-26 12:49:18 +02:00
Michael Nebel	aae8660acc	C#/Java: Add some examples of missing synthetic field element flow.	2024-09-26 12:00:29 +02:00
Michael Nebel	58513cadbf	C#/Java: Add model generator test examples.	2024-09-26 12:00:25 +02:00
Michael Nebel	dd993c3900	Merge pull request #17509 from michaelnebel/modelgen/parammodule ... C#/Java: Re-factor the model generator to be a parameterized module.	2024-09-26 10:57:16 +02:00
Michael Nebel	297d32180c	Merge pull request #17582 from michaelnebel/csharp/attributecollectionsinks ... C#: `AttributeCollection` is no longer considered a HTML sink.	2024-09-26 09:17:31 +02:00
Michael Nebel	1dcc6ac2b1	C#: Address review comments.	2024-09-25 17:06:19 +02:00
Tom Hvitved	1bd504bf61	C#: Restrict CfgScope	2024-09-25 16:43:15 +02:00