codeql

mirror of https://github.com/github/codeql.git synced 2025-12-18 18:10:39 +01:00

Author	SHA1	Message	Date
Arthur Baars	035ad65e43	AlertSuppression: move library into util folder	2022-12-21 10:39:57 +01:00
Jacques	97b8126385	Fix javascript	2022-12-20 12:45:59 +09:00
Arthur Baars	a8be5d7274	AlertSuppression: add change notes	2022-12-19 17:02:52 +01:00
Calum Grant	4a37c01c5f	JavaScript: Remove references to LGTM	2022-12-19 15:15:17 +00:00
Arthur Baars	c176606be5	AlertSuppression: allow //lgtm comments to scope over the next line	2022-12-19 16:10:26 +01:00
Arthur Baars	016c7a8ca7	Merge pull request #11719 from aibaars/alert-suppression-shared Shared AlertSuppression library	2022-12-19 16:04:44 +01:00
erik-krogh	66be8cda06	remove more of the implementation into ConditionalBypassQuery.qll	2022-12-19 14:37:19 +01:00
Arthur Baars	8be882f815	Update javascript/ql/src/AlertSuppression.ql Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>	2022-12-19 14:35:16 +01:00
Arthur Baars	682bf6d3a7	Apply suggestions from code review Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>	2022-12-19 14:16:05 +01:00
Arthur Baars	23f595bea1	JavaScript: use shared AlertSuppression.qll	2022-12-19 12:25:17 +01:00
erik-krogh	442749bb7f	JS: add heuristic variants of queries that use RemoteFlowSource	2022-12-19 12:01:22 +01:00
erik-krogh	35e8d6afd4	move getACommonTld into a utility module without parameters	2022-12-18 17:23:45 +01:00
erik-krogh	26c5480ee6	share {js,rb}/regex/missing-regexp-anchor	2022-12-18 17:23:41 +01:00
turbo	1e5426fca2	Create security-experimental suite helper and all language suite implementations	2022-12-18 15:44:08 +01:00
erik-krogh	355499ea52	move `getACommonTld` to the shared pack	2022-12-17 17:26:18 +01:00
erik-krogh	f67d0bc8c0	put the shared HostnameRegexp code in the shared regex pack	2022-12-17 17:26:18 +01:00
Henry Mercer	30451ee950	Merge pull request #11681 from github/henrymercer/mergeback-3.8 Merge `rc/3.8` back to `main`	2022-12-16 17:43:12 +00:00
turbo	4ec401a3f6	Tag all security queries in supported languages' experimental directories with an experimental tag	2022-12-14 17:15:50 +01:00
Asger F	b63c658e3b	JS: recognize tiny-csrf	2022-12-14 12:30:15 +01:00
Asger F	162419138d	JS: Replace csurf -> lusca.csrf from example and qhelp	2022-12-14 12:30:15 +01:00
Henry Mercer	a3933fbf4f	Bump minor versions of packs we regularly release	2022-12-13 18:59:24 +00:00
Henry Mercer	7167f078be	Merge branch 'main' into henrymercer/mergeback-3.8	2022-12-13 18:40:53 +00:00
erik-krogh	b3a9c1ca06	Py/JS/RB: Use instanceof in more places	2022-12-12 16:06:57 +01:00
github-actions[bot]	343b7b1c8b	Post-release preparation for codeql-cli-2.11.6	2022-12-11 18:15:04 +00:00
github-actions[bot]	0b2fb4f70a	Release preparation for version 2.11.6	2022-12-10 15:49:35 +00:00
Chris Smowton	49bc524fd0	Merge remote-tracking branch 'origin/rc/3.8' into smowton/admin/merge-rc38-into-main	2022-12-08 11:12:30 +00:00
Erik Krogh Kristensen	6b9cab23d4	Merge pull request #11248 from erik-krogh/js-redosMod JS: use the shared regex pack	2022-12-05 14:48:37 +01:00
Matt Rothenberg	95f994a82b	Update RequestForgeryBad.js	2022-12-02 14:17:37 +01:00
Matt Rothenberg	7d674e7cdc	set base URL	2022-12-02 14:17:17 +01:00
Matt Rothenberg	c49e9e8503	fix: use let for subdomain assignment	2022-12-02 14:07:39 +01:00
Matt Rothenberg	a453405365	Update RequestForgeryBad.js	2022-12-02 14:03:37 +01:00
Matt Rothenberg	2ae0c7e115	Update RequestForgeryGood.js	2022-12-02 14:02:54 +01:00
github-actions[bot]	5e35785fd0	Post-release preparation for codeql-cli-2.11.5	2022-12-02 11:37:44 +00:00
github-actions[bot]	31ab22e3a0	Release preparation for version 2.11.5	2022-12-01 20:05:14 +00:00
erik-krogh	2eb6b1adb3	JS: fix two typos	2022-11-23 14:38:12 +01:00
erik-krogh	6b5cd9abc3	use RegExpTreeView insteaed of RegexTreeView in JS	2022-11-22 12:55:48 +01:00
github-actions[bot]	5b14ebf22a	Post-release preparation for codeql-cli-2.11.4	2022-11-18 11:26:00 +00:00
Chris Smowton	0219c2b02b	Copyedit Javascript changelog	2022-11-17 17:02:01 +00:00
Chris Smowton	80b2f0d3cd	Coopyedit Javascript changelog	2022-11-17 17:01:43 +00:00
github-actions[bot]	e105c13e77	Release preparation for version 2.11.4	2022-11-17 16:40:45 +00:00
Mauro Baluda	784475dd66	Merge branch 'main' into main	2022-11-16 11:06:27 +01:00
Mauro Baluda	84cb59b942	Create 2022-11-08-hapi-glue.md	2022-11-16 11:05:23 +01:00
erik-krogh	75ef5b1b0b	add support for `satisfies`-expressions	2022-11-15 22:07:24 +01:00
erik-krogh	e18ceba49e	port the JS regex/redos queries to use the shared pack	2022-11-15 17:14:38 +01:00
Asger F	5f18484fa9	JS: Change note	2022-11-14 15:09:30 +01:00
Asger F	44e94f6615	JS: Change note	2022-11-08 11:51:26 +01:00
github-actions[bot]	fca754bddd	Post-release preparation for codeql-cli-2.11.3	2022-11-05 14:30:48 +00:00
Dave Bartolomeo	013b7eff1c	Apply suggestions from code review Co-authored-by: Jeroen Ketema <93738568+jketema@users.noreply.github.com>	2022-11-04 18:46:32 -04:00
github-actions[bot]	508327235a	Release preparation for version 2.11.3	2022-11-04 20:16:23 +00:00
Erik Krogh Kristensen	c82d8cbacc	Merge pull request #11013 from erik-krogh/sndCmd JS: second-order-command-injection	2022-11-04 10:58:50 +01:00

... 12 13 14 15 16 ...

6144 Commits